VPN настроен по описанию
http://www.dlink.ru/technical/faq_vpn_23.php . Первоначально VPN поднимается и работает. Но после перезагрузки DFL-200 происходит следующее:
на DFL-900
================
2006-07-03 12:14:51 INFO responde new phase 2 negotiation
2006-07-03 12:14:51 INFO Begin Identity Protection mode.
2006-07-03 12:14:51 ERROR Only a single transform payload is allowed during phase 1 processing.
2006-07-03 12:14:51 ERROR DB(prop#1:trns#1):Peer(prop#0:trns#0) = 3DES-CBC:7
2006-07-03 12:14:51 ERROR DB(prop#1:trns#1):Peer(prop#0:trns#0) = MD5:SHA
2006-07-03 12:14:51 ERROR no suitable proposal found.
2006-07-03 12:14:51 ERROR Failed to get valid proposal.
2006-07-03 12:14:52 ERROR Failed to process Packet.
2006-07-03 12:14:52 INFO responde new phase 2 negotiation
2006-07-03 12:14:52 INFO Begin Identity Protection mode.
2006-07-03 12:14:52 ERROR Only a single transform payload is allowed during phase 1 processing.
2006-07-03 12:14:52 ERROR DB(prop#1:trns#1):Peer(prop#0:trns#0) = 3DES-CBC:7
2006-07-03 12:14:52 ERROR DB(prop#1:trns#1):Peer(prop#0:trns#0) = MD5:SHA
2006-07-03 12:14:52 ERROR no suitable proposal found.
2006-07-03 12:14:52 ERROR Failed to get valid proposal.
2006-07-03 12:14:52 ERROR Failed to process Packet.
2006-07-03 12:14:53 INFO responde new phase 2 negotiation
2006-07-03 12:14:53 INFO Begin Identity Protection mode.
2006-07-03 12:14:53 ERROR Only a single transform payload is allowed during phase 1 processing.
2006-07-03 12:14:53 ERROR DB(prop#1:trns#1):Peer(prop#0:trns#0) = 3DES-CBC:7
2006-07-03 12:14:53 ERROR DB(prop#1:trns#1):Peer(prop#0:trns#0) = MD5:SHA
2006-07-03 12:14:53 ERROR no suitable proposal found.
2006-07-03 12:14:53 ERROR Failed to get valid proposal.
2006-07-03 12:14:53 ERROR Failed to process Packet.
2006-07-03 12:14:55 INFO responde new phase 2 negotiation
2006-07-03 12:14:55 INFO Begin Identity Protection mode.
2006-07-03 12:14:55 ERROR Only a single transform payload is allowed during phase 1 processing.
2006-07-03 12:14:55 ERROR DB(prop#1:trns#1):Peer(prop#0:trns#0) = 3DES-CBC:7
2006-07-03 12:14:55 ERROR DB(prop#1:trns#1):Peer(prop#0:trns#0) = MD5:SHA
2006-07-03 12:14:55 ERROR no suitable proposal found.
2006-07-03 12:14:55 ERROR Failed to get valid proposal.
2006-07-03 12:14:55 ERROR Failed to process Packet.
2006-07-03 12:14:59 INFO responde new phase 2 negotiation
2006-07-03 12:14:59 INFO Begin Identity Protection mode.
2006-07-03 12:14:59 ERROR Only a single transform payload is allowed during phase 1 processing.
2006-07-03 12:14:59 ERROR DB(prop#1:trns#1):Peer(prop#0:trns#0) = 3DES-CBC:7
2006-07-03 12:14:59 ERROR DB(prop#1:trns#1):Peer(prop#0:trns#0) = MD5:SHA
2006-07-03 12:14:59 ERROR no suitable proposal found.
2006-07-03 12:14:59 ERROR Failed to get valid proposal.
2006-07-03 12:14:59 ERROR Failed to process Packet.
========================================
на DFL-200
[2006-07-03 12:16:46] <6>EFW: IPSEC: prio=1 Phase-1 [initiator] between ipv4(udp:500,[0..3]=217.151.71.14) and ipv4(udp:500,[0..3]=85.21.235.2) failed; Aborted notification.
[2006-07-03 12:16:36] <6>EFW: IPSEC: prio=1 Phase-1 [initiator] between ipv4(udp:500,[0..3]=217.151.71.14) and ipv4(udp:500,[0..3]=85.21.235.2) failed; Aborted notification.
[2006-07-03 12:16:29] <5>EFW: CONN: rule=IPsecBeforeRules conn=close connipproto=UDP connrecvif=WAN connsrcip=85.21.235.2 connsrcport=500 conndestif=core conndestip=217.151.71.14 conndestport=500 origsent=960 termsent=0
[2006-07-03 12:16:26] <6>EFW: IPSEC: prio=1 Phase-1 [initiator] between ipv4(udp:500,[0..3]=217.151.71.14) and ipv4(udp:500,[0..3]=85.21.235.2) failed; Aborted notification.
[2006-07-03 12:16:16] <6>EFW: IPSEC: prio=1 Phase-1 [initiator] between ipv4(udp:500,[0..3]=217.151.71.14) and ipv4(udp:500,[0..3]=85.21.235.2) failed; Aborted notification.
[2006-07-03 12:16:08] <6>EFW: IPSEC: prio=1 Phase-1 [initiator] between ipv4(udp:500,[0..3]=217.151.71.14) and ipv4(udp:500,[0..3]=85.21.235.2) failed; Timeout.
[2006-07-03 12:14:16] <6>EFW: IPSEC: prio=1 Phase-1 [initiator] between ipv4(udp:500,[0..3]=217.151.71.14) and ipv4(udp:500,[0..3]=85.21.235.2) failed; Aborted notification.
[2006-07-03 12:14:10] <6>EFW: IPSEC: prio=1 Phase-1 [initiator] between ipv4(udp:500,[0..3]=217.151.71.14) and ipv4(udp:500,[0..3]=85.21.235.2) failed; Aborted notification.
[2006-07-03 12:14:07] <6>EFW: IPSEC: prio=1 Phase-1 [initiator] between ipv4(udp:500,[0..3]=217.151.71.14) and ipv4(udp:500,[0..3]=85.21.235.2) failed; Aborted notification.
===========================================
Причем всего в компании используется три DFL-200, и на двух других такой проблемы нет. Версии прошивок: DFL-900
Firmware Version: NetOS Ver2.105 (WALL) #b: Fri Sep 9 18:31:08 CST 2005 , DFL-200 1.33.00-SU1
========================
как быть ?
Вход
Регистрация
FAQ
Поиск
