Table of Contents
Advertisement
H-10 Log Descriptions
Chart H-8 Sample IKE Key Exchange Logs
LOG MESSAGE
!! Remote IP <IP start> / <IP end>
conflicts
!! Active connection allowed
exceeded
!! IKE Packet Retransmit
!! Failed to send IKE Packet
!! Too many errors! Deleting SA
!! ID type mismatch
!! ID content mismatch
!! No known phase 1 ID type
found
vs. My Remote <IP address>
vs. My Local <IP address>
-> <symbol>
317516-A Rev 00
DESCRIPTION
If the security gateway is "0.0.0.0", the Contivity 251
will use the peer's "Local Addr" as its "Remote Addr". If
a peer's "Local Addr" range conflicts with other
connections, then the Contivity 251 will not accept
VPN connection requests from this peer.
The Contivity 251 limits the number of simultaneous
Phase 2 SA negotiations. The IKE key exchange
process fails if this limit is exceeded.
The Contivity 251 did not receive a response from the
peer and so retransmits the last packet sent.
The Contivity 251 cannot send IKE packets due to a
network error.
The Contivity 251 deletes an SA when too many errors
occur.
The ID type of an incoming packet does not match the
local's peer ID type.
The ID content of an incoming packet does not match
the local's peer ID content.
The ID type of an incoming packet does not match any
known ID type.
The IP address type or IP address of an incoming
packet does not match the peer IP address type or IP
address configured on the local router. The log
displays this router's configured remote IP address
type or IP address that the incoming packet did not
match.
The IP address type or IP address of an incoming
packet does not match the peer IP address type or IP
address configured on the local router. The log
displays this router's configured local IP address type
or IP address that the incoming packet did not match.
The router sent a payload type of IKE packet.
Advertisement
Table of Contents
