Appendix A Log Descriptions
ZyWALL USG 20/20W User’s Guide
763
[DPD] No response from
peer. Using existing
Phase-1 SA in %u
seconds. Trying with
Phase-1 rekey.
The device’s DPD feature has not detected a response from
the remote IPSec router. %u is the retry time.
[HASH] : Tunnel [%s]
Phase 1 hash mismatch
%s is the tunnel name. When negotiating Phase-1, the
exchange hash did not match.
[HASH] : Tunnel [%s]
Phase 2 hash mismatch"
%s is the tunnel name. When negotiating Phase-2, the
calculated quick mode authentication hash did not match.
[ID] : Invalid ID
information
ID payload is not valid (in Phase-1 is local/peer ID, in Phase-2
is local/remote policy).
[ID] : Tunnel [%s]
Local IP mismatch
%s is the tunnel name. When negotiating Phase-1, the local
tunnel IP did not match the My IP in VPN gateway.
[ID] : Tunnel [%s] My
IP mismatch
%s is the tunnel name. When negotiating Phase-1 and
selecting matched proposal, My IP Address could not be
resolved.
[ID] : Tunnel [%s]
Phase 1 ID mismatch
%s is the tunnel name. When negotiating Phase-1, the peer ID
did not match.
[ID] : Tunnel [%s]
Phase 2 Local ID
mismatch
%s is the tunnel name. When negotiating Phase-2 and
checking IPsec SAs or the ID is IPv6 ID.
[ID] : Tunnel [%s]
Phase 2 Remote ID
mismatch
%s is the tunnel name. When negotiating Phase-2 and
checking IPsec SAs or the ID is IPv6 ID.
[ID] : Tunnel [%s]
Remote IP mismatch
%s is the tunnel name. When negotiating Phase-1, the peer
tunnel IP did not match the secure gateway address in VPN
gateway.
[SA] : Malformed IPSec
SA proposal
When selecting a matched proposal, some protocol was given
more than once.
[SA] : No proposal
chosen
When selecting a matched proposal in phase-1 or phase-2, so
proposal was selected.
[SA] : Tunnel [%s]
Phase 1 authentication
algorithm mismatch
%s is the tunnel name. When negotiating Phase-1, the
authentication algorithm did not match.
[SA] : Tunnel [%s]
Phase 1 authentication
method mismatch
%s is the tunnel name. When negotiating Phase-1, the
authentication method did not match.
[SA] : Tunnel [%s]
Phase 1 encryption
algorithm mismatch
%s is the tunnel name. When negotiating Phase-1, the
encryption algorithm did not match.
[SA] : Tunnel [%s]
Phase 1 invalid
protocol
%s is the tunnel name. When negotiating Phase-1, the packet
was not a ISKAMP packet in the protocol field.
[SA] : Tunnel [%s]
Phase 1 invalid
transform
%s is the tunnel name. When negotiating Phase-1, the
transform ID was invalid.
Table 247 IKE Logs (continued)
LOG MESSAGE DESCRIPTION
To Next Page
Loading...
