ZyXEL Communications ZyWall USG 2000 User Manual page 951
Unified security gateway
Hide thumbs
Also See for ZyWall USG 2000:
- User manual (1081 pages) ,
- Manual (964 pages) ,
- Support notes (227 pages)
Table of Contents
Advertisement
Table 283 IKE Logs
LOG MESSAGE
Peer has not announced
DPD capability
[COOKIE] Invalid
cookie, no sa found
[DPD] No response from
peer. Using existing
Phase-1 SA in %u
seconds. Trying with
Phase-1 rekey.
[HASH] : Tunnel [%s]
Phase 1 hash mismatch
[HASH] : Tunnel [%s]
Phase 2 hash mismatch"
[ID] : Invalid ID
information
[ID] : Tunnel [%s]
Local IP mismatch
[ID] : Tunnel [%s] My
IP mismatch
[ID] : Tunnel [%s]
Phase 1 ID mismatch
[ID] : Tunnel [%s]
Phase 2 Local ID
mismatch
[ID] : Tunnel [%s]
Phase 2 Remote ID
mismatch
[ID] : Tunnel [%s]
Remote IP mismatch
[SA] : Malformed IPSec
SA proposal
[SA] : No proposal
chosen
[SA] : Tunnel [%s]
Phase 1 authentication
algorithm mismatch
[SA] : Tunnel [%s]
Phase 1 authentication
method mismatch
[SA] : Tunnel [%s]
Phase 1 encryption
algorithm mismatch
ZyWALL USG 2000 User's Guide
DESCRIPTION
The remote IPSec router has not announced its dead peer
detection (DPD) capability to this device.
Cannot find SA according to the cookie.
The device's DPD feature has not detected a response from
the remote IPSec router. %u is the retry time.
%s is the tunnel name. When negotiating Phase-1, the
exchange hash did not match.
%s is the tunnel name. When negotiating Phase-2, the
calculated quick mode authentication hash did not match.
ID payload is not valid (in Phase-1 is local/peer ID, in Phase-2
is local/remote policy).
%s is the tunnel name. When negotiating Phase-1, the local
tunnel IP did not match the My IP in VPN gateway.
%s is the tunnel name. When negotiating Phase-1 and
selecting matched proposal, My IP Address could not be
resolved.
%s is the tunnel name. When negotiating Phase-1, the peer ID
did not match.
%s is the tunnel name. When negotiating Phase-2 and
checking IPsec SAs or the ID is IPv6 ID.
%s is the tunnel name. When negotiating Phase-2 and
checking IPsec SAs or the ID is IPv6 ID.
%s is the tunnel name. When negotiating Phase-1, the peer
tunnel IP did not match the secure gateway address in VPN
gateway.
When selecting a matched proposal, some protocol was given
more than once.
When selecting a matched proposal in phase-1 or phase-2, so
proposal was selected.
%s is the tunnel name. When negotiating Phase-1, the
authentication algorithm did not match.
%s is the tunnel name. When negotiating Phase-1, the
authentication method did not match.
%s is the tunnel name. When negotiating Phase-1, the
encryption algorithm did not match.
Appendix A Log Descriptions
951
Advertisement
Table of Contents
Troubleshooting
Related Manuals for ZyXEL Communications ZyWall USG 2000
Related Products for ZyXEL Communications ZyWall USG 2000
- ZyXEL Communications ZYWALL USG 20W
- ZyXEL Communications USG210
- ZyXEL Communications ZyWall USG20W-VPN
- ZyXEL Communications ZyWall USG20-VPN
- ZyXEL Communications ZYWALL USG 300
- ZyXEL Communications USG-50 - V2.21 ED 1
- ZyXEL Communications USG-100@USG-200 - V2.20 ED 2
- ZyXEL Communications USG-300 - V2.20 ED 2