L-14 Log Descriptions
VPN Responder IPSec Log
The following figure shows a typical log from the VPN connection peer.
Diagram L-2 Example VPN Responder IPSec Log
Index:
Date/Time:
------------------------------------------------------------
001
01 Jan 08:08:07
002
01 Jan 08:08:07
003
01 Jan 08:08:08
004
01 Jan 08:08:08
005
01 Jan 08:08:10
006
01 Jan 08:08:10
007
01 Jan 08:08:10
008
01 Jan 08:08:10
009
01 Jan 08:08:10
010
01 Jan 08:08:10
011
01 Jan 08:08:10
012
01 Jan 08:08:10
Clear IPSec Log (y/n):
This menu is useful for troubleshooting. A log index number, the date and time the
log was created and a log message are displayed.
Double exclamation marks (!!) denote an error or warning message.
The following table shows sample log messages during IKE key exchange.
A PYLD_MALFORMED packet usually means that the two ends of the
Chart L-10 Sample IKE Key Exchange Logs
LOG MESSAGE
Send <Symbol> Mode request to <IP>
Send <Symbol> Mode request to <IP>
Recv <Symbol> Mode request from <IP>
Recv <Symbol> Mode request from <IP>
317517-A Rev 00
Log:
Recv Main Mode request from <192.168.100.100>
Recv:<SA>
Send:<SA>
Recv:<KE><NONCE>
Send:<KE><NONCE>
Recv:<ID><HASH>
Send:<ID><HASH>
Phase 1 IKE SA process done
Recv:<HASH><SA><NONCE><ID><ID>
Start Phase 2: Quick Mode
Send:<HASH><SA><NONCE><ID><ID>
Recv:<HASH>
VPN tunnel are not using the same pre-shared key.
The Contivity 221 has started negotiation with the
peer.
The Contivity 221 has received an IKE negotiation
request from the peer.
DESCRIPTION