function ikeとして記録されるログの一覧と解説です。
全て開く/閉じる
| level | ログメッセージ |
|---|---|
| error |
<path>/racoon may be dead. try to restart
|
| error |
sysctl failed: <error>
|
| error |
local address is broadcast
|
| error |
remotel address is broadcast
|
| error |
phase1 negotiation failed due to associated phase2 failed.
|
| error |
can not get proposal paire
|
| error |
invalid argument (<func>).
|
| error |
invalid length (<func>)
|
| error |
can not convert to sockaddr from id.
|
| error |
unkown id type.
|
| error |
memory allocation failure (<func>)
|
| error |
failed to allocate reading buffer (<number> Bytes)
|
| error |
invalid NAT-Traversal vid.
|
| error |
NAT-D hashing failed for <address>[:<port>] (remote)"
|
| error |
NAT-D hashing failed for <address>[:<port>] (local)"
|
| error |
sockaddr duplicate failure: <address>[:<port>]
|
| error |
socket open failure: <address>[:<port>]
|
| error |
nat traversal keepalive sendfromto failed: <error>
|
| error |
cannot allocate new nat traversal keepalive info
|
| error |
pfkey spdupdate_saidx() failed (out)
|
| error |
pfkey spdupdate_saidx() failed (in)
|
| error |
unkown AF: <af>
|
| error |
no message received during phase1. the peer seems to be dead.
|
| error |
not match address family
|
| error |
local address is inet multicast
|
| error |
remote address is inet multicast
|
| error |
local address is inet6 multicast
|
| error |
remote address is inet6 multicast
|
| error |
Wrong DPD sequence number (<number>, <number expected>).
|
| error |
security policy mismatch
|
| error |
ne id payload only
|
| error |
<file> has invalid owner uid
|
| error |
<file> has weak file permission
|
| error |
<file> is an invalid file type <type>
|
| error |
<ipaddress> give up to get IPsec-SA due to time up to wait.
|
| error |
<type> message must be encrypted
|
| error |
Both IDs wasn't found in payload.
|
| error |
Commit bit on phase1 forbidden.
|
| error |
Failed to get CERT buffer.
|
| error |
Failed to get CR buffer.
|
| error |
HASH mismatched
|
| error |
HASH(3) mismatch.
|
| error |
ID mismatched with subjectAltName.
|
| error |
ID mismatched.
|
| error |
ID type mismatched. ID: <id> CERT: <cert>.
|
| error |
IDr2 payload is not immediatelly followed by IDi2. We allowed.
|
| error |
IPComp SPI size promoted from 16bit to 32bit
|
| error |
Ignored, multiple SA isn't supported.
|
| error |
Illegal protocol id=<id>
|
| error |
Invalid CERT type <type>
|
| error |
Invalid CR type <type>
|
| error |
Invalid ID length in phase 1.
|
| error |
Invalid SA length = <length>.
|
| error |
Invalid SIG.
|
| error |
Invalid authority of the CERT.
|
| error |
Invalid exchange type <type> from <ipaddress>.
|
| error |
Invalid ipsec_doi algclass: <number>
|
| error |
Invalid ipsec_doi proto: <protocol>
|
| error |
Invalid mode type: <mode>
|
| error |
Invalid payload type=<type>
|
| error |
Invalid pfkey proto: <protocol>
|
| error |
Invalid transform id: <id>
|
| error |
Multi SAs isn't supported.
|
| error |
No supported such CERT type <type>
|
| error |
No supported such CR type <type>
|
| error |
Not supported hash type: <type>
|
| error |
Not supported transform: <id>
|
| error |
PFS is specified, but peer doesn't sends KE.
|
| error |
Packet wasn't encrypted.
|
| error |
SA cannot be saved to a file
|
| error |
Unknown new group mode exchange, there is no ISAKMP-SA.
|
| error |
Why do ID [<local_address>, <remote_address>] exist already.
|
| error |
address autoconfiguration failed
|
| error |
address family mismatch
|
| error |
address family mismatch, remote:<af1> local:<af2>
|
| error |
attr AUTH must be present for AH.
|
| error |
attr type=<type> isn't supported.
|
| error |
auth algorithm <algorithm> conflicts with transform <number>.
|
| error |
auth algorithm <algorithm> isn't supported.
|
| error |
auth method <type> isn't supported.
|
| error |
backuped SA failed: <protocol>/ <mode>/ <local_address>/ <remote_address>/ <spi>
|
| error |
becoming tlen < 0
|
| error |
bind 1 (<error>)
|
| error |
bind(sockname:<file>): <error>
|
| error |
buffer allocation failed.
|
| error |
can't get scope ID: family mismatch
|
| error |
can't respond new phase 1 negotiation due to no configuration found: <local_address> <=> <remote_address>
|
| error |
can't start the quick mode with <ipaddress>, there is no ISAKMP-SA, <cookie_i>: <cookie_r>: <msgid>
|
| error |
can't start the quick mode with <ipaddress>, there is no valid ISAKMP-SA, <cookie_i>: <cookie_r>: <msgid>
|
| error |
cannot clear logname: <error>
|
| error |
cannot open <file>
|
| error |
cannot register pidfile cleanup
|
| error |
configuration failure about DH group.
|
| error |
configuration read failed
|
| error |
connect (<error>)
|
| error |
couldn't find the pskey for <id>.
|
| error |
couldn't find the pskey.
|
| error |
decryption <type> failed.
|
| error |
delete payload is not proteted, ignored.
|
| error |
delete payload with invalid doi:<type>.
|
| error |
delete payload with strange spi size <length>(proto_id:<id>)
|
| error |
delete phase1 handler.
|
| error |
deletion message received, invalid proto_id: <id>
|
| error |
deletion payload with invalid length.
|
| error |
dh type <type> isn't supported.
|
| error |
encmode mismatched: my:<mode1> peer:<mode2>
|
| error |
encryption <type> failed.
|
| error |
exchange type is mismatched: db=<type1> packet=<type2>, ignore it.
|
| error |
failed get my ID
|
| error |
failed to accept admin command: <error>
|
| error |
failed to add a response packet to the tree.
|
| error |
failed to add contacted list.
|
| error |
failed to alloc buffer for admin command
|
| error |
failed to allocate admin buffer
|
| error |
failed to allocate buffer
|
| error |
failed to allocate buffer for myaddrs
|
| error |
failed to allocate key buffer.
|
| error |
failed to allocate my sa buffer
|
| error |
failed to allocate phase2 entry.
|
| error |
failed to allocate reading buffer
|
| error |
failed to allocate saprop
|
| error |
failed to allocate saproto
|
| error |
failed to allocate satrns
|
| error |
failed to begin ipsec sa negotication.
|
| error |
failed to begin ipsec sa re-negotication.
|
| error |
failed to bind (<error>).
|
| error |
failed to clean the backup file <file>
|
| error |
failed to get DH buffer.
|
| error |
failed to get ID buffer.
|
| error |
failed to get ID for <src_address>/<src_prefixlen>[src_port] <dst_address>/<dst_prefixlen>[dst_port] proto=<protocol> dir=<direction>
|
| error |
failed to get ID value.
|
| error |
failed to get ID.
|
| error |
failed to get LD buffer.
|
| error |
failed to get MY CERT.
|
| error |
failed to get PEERS CERT.
|
| error |
failed to get a attribute buffer.
|
| error |
failed to get a cookie.
|
| error |
failed to get address buffer.
|
| error |
failed to get algorithms.
|
| error |
failed to get buffer
|
| error |
failed to get buffer for payload.
|
| error |
failed to get buffer to decrypt.
|
| error |
failed to get buffer to encrypt.
|
| error |
failed to get buffer to send acquire.
|
| error |
failed to get buffer to send.
|
| error |
failed to get cert buffer
|
| error |
failed to get cert's buffer
|
| error |
failed to get cr buffer.
|
| error |
failed to get hash buffer
|
| error |
failed to get iph1->sendbuf to send.
|
| error |
failed to get iv buffer
|
| error |
failed to get key buffer
|
| error |
failed to get keymat buffer.
|
| error |
failed to get new ipsecreq.
|
| error |
failed to get newsa.
|
| error |
failed to get nonce buffer
|
| error |
failed to get notify buffer.
|
| error |
failed to get private key.
|
| error |
failed to get prop pair
|
| error |
failed to get proposal for responder.
|
| error |
failed to get psk buffer.
|
| error |
failed to get sainfo (get_sainfo_r).
|
| error |
failed to get sainfo (pk_recvacquire).
|
| error |
failed to get sainfo (quick_r1recv).
|
| error |
failed to get skeyid buffer
|
| error |
failed to get subjectAltName
|
| error |
failed to get subjectName
|
| error |
failed to get valid proposal.
|
| error |
failed to open pre_share_key file <file>
|
| error |
failed to open the backup file <file>
|
| error |
failed to pre-process packet.
|
| error |
failed to process packet.
|
| error |
failed to reallocate buffer to dump.
|
| error |
failed to receive isakmp packet
|
| error |
failed to recv admin command: <error>
|
| error |
failed to recv from pfkey (<error>)
|
| error |
failed to regist any protocol.
|
| error |
failed to select (<error>)
|
| error |
failed to send admin command: <error>
|
| error |
failed to set DH value.
|
| error |
failed to set ID for destination.
|
| error |
failed to set ID for source.
|
| error |
failed to set_signal (<error>)
|
| error |
failed to sign.
|
| error |
failed to start post getspi.
|
| error |
failed to update spi
|
| error |
family not supported: <af>.
|
| error |
few isakmp message received.
|
| error |
get spi for unknown address <ipaddress>
|
| error |
getaddrinfo(<host>[,<port>]): <error>
|
| error |
getaddrinfo(<host>[,<port>]): resolved to multiple address, taking the first one
|
| error |
getifaddrs failed: <error>
|
| error |
getsockname (<error>)
|
| error |
getting sadb policy failed.
|
| error |
hmac md5 length mismatch <length>
|
| error |
hmac sha1 length mismatch <length>
|
| error |
hmac sha2_<size> length mismatch <length>
|
| error |
ignore Acknowledged Informational
|
| error |
ignore the packet, received unexpecting payload type <type>
|
| error |
illegal format line#<number> in <file>: <error>
|
| error |
illegal format(keymat) line#<number> in <file>: <error>
|
| error |
inappropriate sadb acquire message passed.
|
| error |
inappropriate sadb add message passed.
|
| error |
inappropriate sadb expire message passed.
|
| error |
inappropriate sadb getspi message passed.
|
| error |
inappropriate sadb spd management message passed.
|
| error |
inappropriate sadb spdadd message passed.
|
| error |
inappropriate sadb spddelete message passed.
|
| error |
inappropriate sadb spddump message passed.
|
| error |
inappropriate sadb spdexpire message passed.
|
| error |
inappropriate sadb spdflush message passed.
|
| error |
inappropriate sadb spdget message passed.
|
| error |
inappropriate sadb spdupdate message passed.
|
| error |
inappropriate sadb update message passed.
|
| error |
internal error: res->l=<length1> buf->l=<length2>
|
| error |
not supported DH group <group>.
|
| error |
invalid DH parameter grp=<group>.
|
| error |
invalid ID payload.
|
| error |
invalid SPI size=<size> for IPSEC proposal.
|
| error |
invalid address family.
|
| error |
invalid algorithm class.
|
| error |
invalid attr type=<type>.
|
| error |
invalid attribute type <type>
|
| error |
invalid auth algorithm=<algorithm>
|
| error |
invalid auth method <type>.
|
| error |
invalid authentication algorithm: <algorithm>
|
| error |
invalid authentication method <type>
|
| error |
invalid authentication type <type>
|
| error |
invalid authmethod <type> why ?
|
| error |
invalid command: <command>
|
| error |
invalid dh type <type>.
|
| error |
invalid encmode <mode>
|
| error |
invalid encryption algorithm <algorithm>
|
| error |
invalid encryption algorithm <algorithm>, or invalid key length <length>.
|
| error |
invalid encryption mode=<mode>
|
| error |
invalid etype <type>
|
| error |
invalid etype for this hash function
|
| error |
invalid family: <af>
|
| error |
invalid flag 0x<number>
|
| error |
invalid getcert_mothod: <type>
|
| error |
invalid group description=<group>
|
| error |
invalid hash algoriym <algorithm>.
|
| error |
invalid hash type <type>.
|
| error |
invalid hmac algorithm <algorithm>.
|
| error |
invalid iph1 passed id_p == NULL
|
| error |
invalid isakmp SA handler. no remote address.
|
| error |
invalid length <length> for TLV attribute <type>
|
| error |
invalid length of LD
|
| error |
invalid length of payload
|
| error |
invalid level: <level>
|
| error |
invalid life duration.
|
| error |
invalid major version <version>
|
| error |
invalid minor version <version>
|
| error |
invalid mode: <mode>
|
| error |
invalid msg length.
|
| error |
invalid pcheck_level why?
|
| error |
invalid policy type.
|
| error |
invalid proposal with length <length>
|
| error |
invalid proto type: <type>
|
| error |
invalid proto_id <id>
|
| error |
invalid protocol: <protocol>
|
| error |
invalid situation <id>
|
| error |
invalid spi size <size>.
|
| error |
invalid spi_size in notification payload.
|
| error |
invalid transform-id=<id1> in proto_id=<id2>.
|
| error |
invalid transform-id=<id> in AH.
|
| error |
invalid transform-id=<id> in ESP.
|
| error |
invalid value of DOI <type>
|
| error |
invalid value passed as "ident" (len=<length>)
|
| error |
invalid vendor ID index: <id>
|
| error |
invalied encryption algorithm=<type>
|
| error |
invalied hash algorithm=<type>
|
| error |
invalied padding len=<length1>, buflen=<length2>.
|
| error |
ioctl(<command>) failed: <error>
|
| error |
ipsec_set_policy (<error>)
|
| error |
ipseclib failed send getspi (<error>)
|
| error |
key length <length> is not multiple of 8
|
| error |
key length defined but not ESP
|
| error |
key length is not allowed
|
| error |
key length out of range
|
| error |
keylen <length>: not multiple of 8
|
| error |
keylen must not be specified for encryption algorithm <algorithm>
|
| error |
length <length> of life duration isn't supported.
|
| error |
libipsec failed dump: <error>
|
| error |
libipsec failed pfkey align (<error>)
|
| error |
libipsec failed pfkey check (<error>)
|
| error |
libipsec failed pfkey open (<error>)
|
| error |
libipsec failed send add (<error>)
|
| error |
libipsec failed send flush (<error>)
|
| error |
libipsec failed send spdadd2 (<error>)
|
| error |
libipsec failed send spddelete (<error>)
|
| error |
libipsec failed send spdupdate2 (<error>)
|
| error |
libipsec failed send update (<error>)
|
| error |
libipsec sending spddump failed: <error>
|
| error |
life duration must follow ltype
|
| error |
lifebyte mismatched in a proposal, prev:<lifetime1> curr:<lifetime2>.
|
| error |
lifebyte mismatched: my:<lifetime1> peer:<lifetime2>
|
| error |
lifetime mismatched in a proposal, prev:<lifetime1> curr:<lifetime2>.
|
| error |
lifetime mismatched: my:<lifetime1> peer:<lifetime2>
|
| error |
listen(sockname:<name>): <error>
|
| error |
long lifebyte proposed: my:<lifetime1> peer:<lifetime2>
|
| error |
long lifetime proposed: my:<lifetime1> peer:<lifetime2>
|
| error |
malformed cookie received or the initiator's cookies collide
|
| error |
malformed cookie received.
|
| error |
message id should be zero in phase1.
|
| error |
mismatched ID was returned.
|
| error |
msg has to be NULL in this function.
|
| error |
multi transforms replyed.
|
| error |
multiple authtype exist in a transform.
|
| error |
must be TV when AUTH.
|
| error |
must be TV when ENC_MODE.
|
| error |
must be TV when GRP_DESC.
|
| error |
must be TV when KEY_LENGTH.
|
| error |
must be TV when LD_TYPE.
|
| error |
no AH algorithm.
|
| error |
no CERT RR found.
|
| error |
no CERT defined.
|
| error |
no ESP algorithm.
|
| error |
no ID nor CERT found.
|
| error |
no ID payload was passed.
|
| error |
no IPCOMP algorithm.
|
| error |
no PFS is specified, but peer sends KE.
|
| error |
no Proposal found.
|
| error |
no SIG payload was passed.
|
| error |
no SKEYID found.
|
| error |
no address could be bound.
|
| error |
no algorithms found
|
| error |
no approvaled SAs found.
|
| error |
no auth algorithm found
|
| error |
no authentication algorithm found but protocol is AH.
|
| error |
no buffer found as sendbuf
|
| error |
no cert defined.
|
| error |
no configuration found for <ipaddress>
|
| error |
no configuration found for peer address
|
| error |
no encryption algorithm found
|
| error |
no ipcomp algorithm found
|
| error |
no iph2 found: <protocol>/ <mode>/ <local_address>/ <remote_address>/ <spi>
|
| error |
no outbound policy found: <src_address>/<src_prefixlen>[src_port] <dst_address>/<dst_prefixlen>[dst_port] proto=<protocol> dir=<direction>
|
| error |
no peer's CERT file found.
|
| error |
no peer's CERT payload found.
|
| error |
no policy found for spid:<id>.
|
| error |
no policy found: <src_address>/<src_prefixlen>[src_port] <dst_address>/<dst_prefixlen>[dst_port] proto=<protocol> dir=<direction>
|
| error |
no policy found: id:<id>.
|
| error |
no proper subjectAltName.
|
| error |
no proposal received.
|
| error |
no socket matches address family <af>
|
| error |
no suitable policy found.
|
| error |
no suitable proposal found.
|
| error |
no suitable transform found.
|
| error |
no supported certtype <type>
|
| error |
not acceptable <mode> mode
|
| error |
not support transform-id=<id> in AH.
|
| error |
not support transform-id=<id> in ESP.
|
| error |
not supported authentication method <type>
|
| error |
not supported authentication type <type>
|
| error |
not supported authmethod type <type>
|
| error |
not supported certtype <type>
|
| error |
not supported nested SA.
|
| error |
oakley attribute <type> must be TV.
|
| error |
oakley_prf memory overflow
|
| error |
packet shorter than isakmp header size (size).
|
| error |
pfkey <command> failed: <error>
|
| error |
pfkey DELETE received: <protocol>/ <mode>/ <local_address>/ <remote_address>/ <spi>
|
| error |
pfkey spdupdate2(inbound) failed.
|
| error |
pfkey spdupdate2(outbound) failed.
|
| error |
pfkey update failed.
|
| error |
pfkey_check (<error>)
|
| error |
pfs group mismatched: my:<group1> peer:<group2>
|
| error |
pfs_group mismatched in a proposal.
|
| error |
phase1 negotiation failed due to time up. <local_address><=><remote_address> spi:<spi>
|
| error |
phase1 negotiation failed.
|
| error |
phase2 negotiation failed due to time up waiting for phase1. <protocol>[/<mode>] <local_address>-><remote_address> spi=<spi>(0x<spi16>)
|
| error |
phase2 negotiation failed due to time up. <local_address><=><remote_address> spi:<spi>
|
| error |
phase2 negotiation failed.
|
| error |
policy found, but no IPsec required: <spi>
|
| error |
pp_peer is inconsistency, ignore it.
|
| error |
proposal mismathed.
|
| error |
proto_id mismatched: my:<id1> peer:<id2>
|
| error |
read(PF_ROUTE) failed: <error>
|
| error |
read(PF_ROUTE) short read
|
| error |
received invalid length, why ?
|
| error |
received invalid next payload type <type1>, expecting <type2>.
|
| error |
received next payload type <type> in wrong place (must be the first payload).
|
| error |
received too many ID payloads.
|
| error |
received unknown notification type <type>
|
| error |
recvmsg (<error>)
|
| error |
reject the packet, expecting the packet encrypted.
|
| error |
reject the packet, received unexpecting payload type <type>
|
| error |
rejected authmethod: DB(prop#<number1>:trns#<number2>): Peer(prop#<number3>: trns#<numner4>) = <algorithm1>: <algorithm2>
|
| error |
rejected dh_group: DB(prop#<number1>:trns#<number2>): Peer(prop#<number3>: trns#<number4>) = <group1>:<group2>
|
| error |
rejected enctype: DB(prop#<number1>:trns#<number2>): Peer(prop#<number3>: trns#<number4>) = <algorithm1>:<algorithm2>
|
| error |
rejected hashtype: DB(prop#<number1>:trns#<number2>): Peer(prop#<number3>: trns#<number4>) = <algorithm1>:<algorithm2>
|
| error |
rejected lifetime-of-byte: DB(prop#<number1>:trns#<number2>): Peer(prop#<number3>: trns#<number4>) = <lifetime1>:<lifetime2>
|
| error |
rejected lifetime-of-time: DB(prop#<number1>:trns#<number2>): Peer(prop#<number3>: trns#<number4>) = <lifetime1>:<lifetime2>
|
| error |
restore SA filed line#<number> in <file>: <error>
|
| error |
routing socket version mismatch
|
| error |
scope ID is not supported except of lladdr.
|
| error |
sendfromto failed
|
| error |
sendmsg (<error>)
|
| error |
sendto (<error>)
|
| error |
setsockopt (<error>)
|
| error |
setuid'ed execution not allowed
|
| error |
should never reach here
|
| error |
situation 0x<id> unsupported yet.
|
| error |
socket (<error>)
|
| error |
socket(SOCK_DGRAM) failed: <error>
|
| error |
socket: <error>
|
| error |
spisize mismatched: my:<size1> peer:<size2>
|
| error |
src port == 0 (valid as UDP but not with IKE)
|
| error |
status mismatch (db:<status1> msg:<status2>)
|
| error |
status mismatched <status>
|
| error |
such a cert type isn't supported: <type>
|
| error |
the negotiation is stopped, because there is no suitable ISAKMP-SA.
|
| error |
trns_id mismatched: my:<id1> peer:<id2>
|
| error |
unable to hash vendor ID string
|
| error |
unexpected error
|
| error |
unexpected error: src.ss_len:<length1> dst.ss_len:<length2>
|
| error |
unexpected inconsistency: <af> <length>
|
| error |
unknown IPsec protocol.
|
| error |
unknown Informational exchange received.
|
| error |
unknown algclass <algorithm>
|
| error |
unknown notify message, no phase2 handle found.
|
| error |
unknown proto_id (<id>)
|
| error |
unsuitable ifaddr: <ipaddress>
|
| error |
unsupported AF <af>
|
| error |
unsupported DH group type <id>.
|
| error |
unsupported DH parameters grp=<group>.
|
| error |
unsupported ID type <type>
|
| error |
unsupported address family <af>
|
| error |
unsupported mode <number>
|
| error |
vdup (<error>)
|
| error |
weakkey was generated.
|
| error |
why isn't the function defined.
|
| error |
why peer's CERT file is defined though getcert method is dns ?
|
| error |
wrong state <status>
|
| error |
#of proposal mismatched.
|
| warn |
CERT payload is unnecessary in DNSSEC
|
| warn |
CERT payload is unnecessary in DNSSEC. ignore it.
|
| warn |
CERT payload is unnecessary in DNSSEC. ignore this CERT payload.
|
| warn |
CR received, ignore it. It should be in other exchange.
|
| warn |
ID type mismatched.
|
| warn |
ID value mismatched.
|
| warn |
Inproper idtype:<type> in this function.
|
| warn |
SPI size isn't zero, but IKE proposal.
|
| warn |
attribute has been modified.
|
| warn |
failed to register <protocol> (<error>)
|
| warn |
ignore 2nd CERT payload.
|
| warn |
ignore CONNECTED notification.
|
| warn |
ignore INITIAL-CONTACT notification, because it is only accepted after phase1.
|
| warn |
ignore REPLAY-STATUS notification.
|
| warn |
ignore this payload, same payload type exist.
|
| warn |
invalid DH parameter found, use default.
|
| warn |
invalid life duration type. use default
|
| warn |
invalid proposal number:<number> received.
|
| warn |
less key length proposed, mine:<length1> peer:<length2>. Use initiator's one.
|
| warn |
listening to wildcard address, broadcast IKE packet may kill you
|
| warn |
not supported authentication method <type>
|
| warn |
pfs_group mismatch. mine:<group1> peer:<group2>
|
| warn |
port <port1> expected, but <port2>
|
| warn |
proposal #<number1> mismatched, expected #<number2>.
|
| warn |
protocol ID and Port mismatched. proto_id:<id> port:<port>
|
| warn |
received RESPONDER-LIFETIME notification.
|
| warn |
remote address mismatched. db=<ipaddress1>, act=<ipaddress2>
|
| warn |
remote address mismatched. db=<ipaddress>
|
| warn |
reserved field should be zero.
|
| warn |
such ID type <type> is not proper.
|
| warn |
the expire message is received but the handler has not been established.
|
| warn |
the packet retransmitted in a short time from <address>
|
| warn |
transform number has been modified.
|
| warn |
unsupported proto_id <id>
|
| warn |
#of transform is <number>,but expected 1.
|
| notice |
There is a difference between the in/out bound policies in SPD.
|
| notice |
couldn't find the proper pskey, try to get one by the peer's address.
|
| notice |
no in-bound policy found: <src_address>/<src_prefixlen>[src_port] <dst_address>/<dst_prefixlen>[dst_port] proto=<protocol> dir=<direction>
|
| notice |
the packet is retransmitted by <ipaddress>
|
| notice |
use own lifebyte: my:<lifetime1> peer:<lifetime2>
|
| notice |
use own lifetime: my:<lifetime1> peer:<lifetime2>
|
| info |
spawn <path>/racoon
|
| info |
racoon: ERROR: phase 1 for <local> -> <remote> not found
|
| info |
racoon: ERROR: cannot allocate memory
|
| info |
racoon: INFO: Flushing all SAs for peer <remote>
|
| info |
racoon: ERROR: unsupported proto for admin: <protocol>
|
| info |
racoon: ERROR: glob found no matches for path
|
| info |
racoon: ERROR: Unexpected proposal_check value
|
| info |
racoon: ERROR: invalied encryption algorithm=<type>
|
| info |
racoon: ERROR: invalied hash algorithm=<type>
|
| info |
racoon: ERROR: attr AUTH must be present for ESP NULL encryption.
|
| info |
racoon: ERROR: no suitable proposal was created.
|
| info |
racoon: INFO: NAT detected -> UDP encapsulation (ENC_MODE <mode>-><mode>).
|
| info |
not support id type (<type>).
|
| info |
NAT detected on our side.
|
| info |
NAT detected on peer side.
|
| info |
NAT-Traversal enabled. [(<vendor_id>)]
|
| info |
use alternative port: <address>[:<port>] <=> <address>[:<port>]
|
| info |
delay phase2 start for <number> sec.
|
| info |
security policy updated.
|
| info |
security policy updated.
|
| info |
dead peer detection enabled.
|
| info |
dead peer detection disabled.
|
| info |
there is no valid ISAKMP-SA to send R-U-THERE. rekeying ISAKMP-SA.
|
| info |
the peer is not there. <address>[:<port>]-<address>[:<port>]
|
| info |
@(#) This product linked <version> (http://www.openssl.org/)
|
| info |
@(#)internal version <version>
|
| info |
@(#)package version <version>
|
| info |
IPsec-SA established: <protocol>/ <mode>/ <local_address>/ <remote_address>/ <spi>
|
| info |
IPsec-SA expired: <protocol>/ <mode>/ <local_address>/ <remote_address>/ <spi>
|
| info |
IPsec-SA request for <ipaddress> queued due to no phase1 found.
|
| info |
ISAKMP-SA deleted <local_address>-<remote_address> spi:<spi>
|
| info |
ISAKMP-SA established <local_address>-<remote_address> spi:<spi>
|
| info |
ISAKMP-SA expired <local_address>-<remote_address> spi:<spi>
|
| info |
accept a request to establish IKE-SA: <ipaddress>
|
| info |
begin <mode> mode
|
| info |
can't initiate phase2 negotiation because already responded: <local_address><=><remote_address> spi: <spi>
|
| info |
can't respond phase2 negotiation because already initiated: <local_address><=><remote_address> spi: <spi>
|
| info |
caught signal <number>
|
| info |
delete phase 2 handler.
|
| info |
initiate new phase 1 negotiation: <local_address><=><remote_address>
|
| info |
initiate new phase 2 negotiation: <local_address><=><remote_address>
|
| info |
no policy found, try to generate the policy : <src_address>/<src_prefixlen>[src_port] <dst_address>/<dst_prefixlen>[dst_port] proto=<protocol> dir=<direction>
|
| info |
phase2 sa deleted <local_address>-<remote_address>
|
| info |
phase2 sa expired <local_address>-<remote_address>
|
| info |
purged IPsec-SA proto_id=<id> spi=<spi>.
|
| info |
purged ISAKMP-SA proto_id=<id> spi=<spi>
|
| info |
purging spi=<spi>(0x<spi16>).
|
| info |
racoon shutdown
|
| info |
received Vendor ID: <string>
|
| info |
request for establishing IPsec-SA was queued due to no phase1 found.
|
| info |
respond new phase 1 negotiation: <local_address><=><remote_address>
|
| info |
respond new phase 2 negotiation: <local_address><=><remote_address>
|
| info |
unsupported exchange <mode> received
|
| debug |
racoon: DEBUG: Public PlainRSA keyfile parsed: <path>
|
| debug |
racoon: DEBUG: Private PlainRSA keyfile parsed: <path>
|
| debug |
racoon: DEBUG: reading config file <file>
|
| debug |
racoon: DEBUG: UDP encapsulation requested
|
| debug |
<ipaddress> used as isakmp port (fd=<number>)
|
| debug |
authtype mismatched: my:<type1> peer:<type2>
|
| debug |
not matched
|
| debug |
such policy already exists. anyway replace it: <src_address>/<src_prefixlen>[src_port] <dst_address>/<dst_prefixlen>[dst_port] proto=<protocol> dir=<direction>
|
