- 论坛徽章:
- 0
|
我用openswan在进行ipsec的协商,出现了如下问题,不知道是什么原因:
002 listening for IKE messages
002 found mast0 device already present
002 device mast0 already in use
002 adding interface mast0/eth1 10.10.17.1:500 (fd=11)
002 adding interface mast0/eth0 192.168.1.17:500 (fd=12)
002 loading secrets from "17.secret"
002 loaded private key for keyid: PPK_RSA:AQOf5acKq
002 added connection description "0fa41cbcef9d3f0563ffebdfcd102b2b"
002 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: initiating Main Mode
104 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: STATE_MAIN_I1: initiate
003 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: received Vendor ID payload [Openswan (this version) 2.6.28 ]
003 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: received Vendor ID payload [Dead Peer Detection]
002 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: transition from state STATE_MAIN_I1 to state STATE_MAIN_I2
106 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: STATE_MAIN_I2: sent MI2, expecting MR2
002 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: transition from state STATE_MAIN_I2 to state STATE_MAIN_I3
108 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: STATE_MAIN_I3: sent MI3, expecting MR3
003 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: ignoring informational payload, type INVALID_KEY_INFORMATION msgid=00000000
003 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: received and ignored informational message
010 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: STATE_MAIN_I3: retransmission; will wait 20s for response
003 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: discarding duplicate packet; already STATE_MAIN_I3
003 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: discarding duplicate packet; already STATE_MAIN_I3
010 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: STATE_MAIN_I3: retransmission; will wait 40s for response
031 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: max number of retransmissions (2) reached STATE_MAIN_I3. Possible authentication failure: no acceptable response to our first encrypted message
000 "0fa41cbcef9d3f0563ffebdfcd102b2b" #1: starting keying attempt 2 of at most 3, but releasing whack |
|