ECS内建 l2tp+ipsec 连接问题
"L2TP-PSK-NAT"[2] 122.96.44.113 #3: responding to Main Mode from unknown peer 122.96.44.113 on port 46212 Jul 21 10:50:53 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #3: WARNING: connection L2TP-PSK-NAT PSK length of 6 bytes is too short for sha2_256 PRF in FIPS mode (16 bytes required) Jul 21 10:50:53 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #3: STATE_MAIN_R1: sent MR1, expecting MI2 Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #3: STATE_MAIN_R2: sent MR2, expecting MI3 Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #3: ignoring informational payload IPSEC_INITIAL_CONTACT, msgid=00000000, length=28 Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: | ISAKMP Notification Payload Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: | 00 00 00 1c 00 00 00 01 01 10 60 02 Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #3: Peer ID is ID_IPV4_ADDR: '10.55.44.204' Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #3: STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=PRESHARED_KEY cipher=aes_256 integ=sha2_256 group=MODP2048} Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #3: the peer proposed: 47.101.64.207/32:17/1701 -> 10.55.44.204/32:17/0 Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #3: NAT-Traversal: received 2 NAT-OA. Using first, ignoring others Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #4: responding to Quick Mode proposal {msgid:51d35df9} Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #4: us: 172.19.129.109<172.19.129.109>:17/1701 Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #4: them: 122.96.44.113:17/61613===10.55.44.204/32 Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #4: STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2 transport mode {ESP/NAT=>0x01864d1a <0x1907e9f8 xfrm=AES_CBC_256-HMAC_SHA1_96 NATOA=10.55.44.204 NATD=122.96.44.113:45221 DPD=active} Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #4: STATE_QUICK_R2: IPsec SA established transport mode {ESP/NAT=>0x01864d1a <0x1907e9f8 xfrm=AES_CBC_256-HMAC_SHA1_96 NATOA=10.55.44.204 NATD=122.96.44.113:45221 DPD=active} Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #3: received Delete SA(0x01864d1a) payload: deleting IPSEC State #4 Jul 21 10:50:54 iZuf68x5n54wbdkm88m2bkZ pluto[18643]: "L2TP-PSK-NAT"[2] 122.96.44.113 #4: deleting other state #4 (STATE_QUICK_R2) and sending notification
版权声明:本文内容由阿里云实名注册用户自发贡献,版权归原作者所有,阿里云开发者社区不拥有其著作权,亦不承担相应法律责任。具体规则请查看《阿里云开发者社区用户服务协议》和《阿里云开发者社区知识产权保护指引》。如果您发现本社区中有涉嫌抄袭的内容,填写侵权投诉表单进行举报,一经查实,本社区将立刻删除涉嫌侵权内容。
