пропозиції роботи
Szymon
Maciejewski
Student, Uniwersytet
Gdański
Temat: Juniper SSG i VPN
Witajcie.Skonfigurowałem VPN na SSG5 zgodnie z dokumentacją na stronach Junipera (route-based VPN).
Calosc przebiegla dość sprawnie, problem miałem z ustawieniem algorytmów i tu się własnie wysupuje połączenie.
Czy ktoś mógłby rzucić okiem i powiedzieć gdzie jest problem (zle algorytmy czy błąd z kluczem)?
1.1.1.1 to moj juniper, 2.2.2.2 to druga strona (skonfigurowana dobrze)
2011-12-19 12:28:07 system info 00536 IKE 2.2.2.2 Phase 1: Responder
starts MAIN mode negotiations.
2011-12-19 12:27:53 system info 00536 IKE 2.2.2.2 Phase 1:
Retransmission limit has been reached.
2011-12-19 12:27:52 system info 00536 IKE 2.2.2.2: Phase 2 negotiation
request is already in the task list.
2011-12-19 12:27:12 system info 00536 IKE 2.2.2.2: Added Phase 2
session tasks to the task list.
2011-12-19 12:27:05 system info 00536 Rejected an IKE packet on ethernet0/0
from 2.2.2.2:500 to 1.1.1.1:
500 with cookies 376de609fe415d6f and
fa6ff34584c61fa7 because Phase 1
negotiations failed. (The preshared
keys might not match.).
2011-12-19 12:27:05 system info 00536 IKE 2.2.2.2 phase 1:The symmetric
crypto key has been generated
successfully.
2011-12-19 12:27:05 system info 00536 IKE 2.2.2.2: Phase 1 SA (my
cookie:029fefb0) was removed due to a
simultaneous rekey.
2011-12-19 12:27:05 system info 00536 IKE 2.2.2.2 Phase 1: Responder
starts MAIN mode negotiations.
2011-12-19 12:26:57 system info 00536 Rejected an IKE packet on ethernet0/0
from 1.1.1.1:500 to 2.2.2.2:
500 with cookies a628747ec6fa9b69 and
a3a49fd693b9bb29 because The peer sent
a packet with a message ID before
Phase 1 authentication was done.
2011-12-19 12:26:57 system info 00536 IKE 2.2.2.2 phase 1:The symmetric
crypto key has been generated
successfully.
