VMware VSHIELD MANAGER 4.1.0 UPDATE 1 - API Manuel d'utilisateur Page 143
- Page / 162
- Table des matières
- DEPANNAGE
- MARQUE LIVRES
Noté. / 5. Basé sur avis des utilisateurs
VMware, Inc. 143
Appendix B vShield Edge VPN Configuration Examples
Phase 2 Not Matching
vShield Edge
vShieldEdgehangsatSTATE_QUICK_I1.AlogmessageshowsthatthepeersentaNO_PROPOSAL_CHOSEN
message.
000 #2: "s1-c1":500 STATE_QUICK_I1 (sent QI1, expecting QR1); EVENT_RETRANSMIT in 11s;
lastdpd=-1s(seq in:0 out:0); idle; import:admin initiate
Aug 26 12:33:54 weiqing-desktop pluto[6933]: | got payload 0x800(ISAKMP_NEXT_N) needed: 0x0 opt:
0x0
Aug 26 12:33:54 weiqing-desktop pluto[6933]: | ***parse ISAKMP Notification Payload:
Aug 26 12:33:54 weiqing-desktop pluto[6933]: | next payload type: ISAKMP_NEXT_NONE
Aug 26 12:33:54 weiqing-desktop pluto[6933]: | length: 32
Aug 26 12:33:54 weiqing-desktop pluto[6933]: | DOI: ISAKMP_DOI_IPSEC
Aug 26 12:33:54 weiqing-desktop pluto[6933]: | protocol ID: 3
Aug 26 12:33:54 weiqing-desktop pluto[6933]: | SPI size: 16
Aug 26 12:33:54 weiqing-desktop pluto[6933]: | Notify Message Type: NO_PROPOSAL_CHOSEN
Aug 26 12:33:54 weiqing-desktop pluto[6933]: "s1-c1" #3: ignoring informational payload, type
NO_PROPOSAL_CHOSEN msgid=00000000
Cisco
DebugmessageshowthatPhase1iscompleted,butPhase2failedbecauseofpolicynegotiationfailure.
Aug 26 16:03:49 [IKEv1]: Group = 10.20.129.80, IP = 10.20.129.80, PHASE 1 COMPLETED
Aug 26 16:03:49 [IKEv1]: IP = 10.20.129.80, Keep-alive type for this connection: DPD
Aug 26 16:03:49 [IKEv1 DEBUG]: Group = 10.20.129.80, IP = 10.20.129.80, Starting P1 rekey timer:
21600 seconds.
Aug 26 16:03:49 [IKEv1]: IP = 10.20.129.80, IKE_DECODE RECEIVED Message (msgid=b2cdcb13) with
payloads : HDR + HASH (8) + SA (1) + NONCE (10) + KE (4) + ID (5) + ID (5) + NONE
(0) total length : 288
.
.
.
Aug 26 16:03:49 [IKEv1]: Group = 10.20.129.80, IP = 10.20.129.80, Session is being torn down.
Reason: Phase 2 Mismatch
PFS Mismatch
PFSisnegotiatedaspartofPhase2.IfPFSdoesnotmatch,thebehaviorissimilartothefailurecasedescribed
in“Phase2NotMatching”onpage 143.
vShield Edge
000 #4: "s1-c1":500 STATE_QUICK_I1 (sent QI1, expecting QR1); EVENT_RETRANSMIT in 8s;
lastdpd=-1s(seq in:0 out:0); idle; import:admin initiate
Aug 26 12:35:52 weiqing-desktop pluto[7312]: | got payload 0x800(ISAKMP_NEXT_N) needed: 0x0 opt:
0x0
Aug 26 12:35:52 weiqing-desktop pluto[7312]: | ***parse ISAKMP Notification Payload:
Aug 26 12:35:52 weiqing-desktop pluto[7312]: | next payload type: ISAKMP_NEXT_NONE
Aug 26 12:35:52 weiqing-desktop pluto[7312]: | length: 32
Aug 26 12:35:52 weiqing-desktop pluto[7312]: | DOI: ISAKMP_DOI_IPSEC
Aug 26 12:35:52 weiqing-desktop pluto[7312]: | protocol ID: 3
Aug 26 12:35:52 weiqing-desktop pluto[7312]: | SPI size: 16
Aug 26 12:35:52 weiqing-desktop pluto[7312]: | Notify Message Type: NO_PROPOSAL_CHOSEN
Aug 26 12:35:52 weiqing-desktop pluto[7312]: "s1-c1" #1: ignoring informational payload, type
NO_PROPOSAL_CHOSEN msgid=00000000
Aug 26 12:35:52 weiqing-desktop pluto[7312]: | info: fa 16 b3 e5 91 a9 b0 02 a3 30 e1 d9 6e
5a 13 d4
Aug 26 12:35:52 weiqing-desktop pluto[7312]: | info: 93 e5 e4 d7
Aug 26 12:35:52 weiqing-desktop pluto[7312]: | processing informational NO_PROPOSAL_CHOSEN (14)
- vShield Administration Guide 1
- 2 VMware, Inc 2
- Contents 3
- 4 VMware, Inc 4
- 11 vShieldAppManagement 61 5
- 12 FlowMonitoring 65 5
- 13 AppFirewallManagement 71 5
- Appendixes 6
- C Troubleshooting 149 7
- VMware, Inc. 8 8
- About This Book 9
- Support Offerings 10
- VMware Professional Services 10
- VMware, Inc. 11 11
- 12 VMware, Inc 12
- Overview of vShield 13
- 14 VMware, Inc 14
- VMware Tools 15
- 16 VMware, Inc 16
- VMware, Inc. 17 17
- Accessing the Online Help 18
- VMware, Inc. 19 19
- 20 VMware, Inc 20
- Management System Settings 21
- Identify DNS Services 22
- Identify a Proxy Server 23
- Back Up vShield Manager Data 24
- Field Description 25
- 26 VMware, Inc 26
- Zones Firewall Management 27
- Default Rules 28
- Create a Zones Firewall Rule 29
- Criteria Description 30
- Password: 31
- Delete a Zones Firewall Rule 32
- User Management 33
- Add a User 34
- Edit a User Account 34
- Delete a User Account 35
- 36 VMware, Inc 36
- Updating System Software 37
- Review the Update History 38
- VMware, Inc. 39 39
- Restore a Backup 40
- System Events and Audit Logs 41
- System Event Notifications 42
- Syslog Format 42
- View the Audit Log 43
- 44 VMware, Inc 44
- VMware, Inc. 45 45
- 46 VMware, Inc 46
- VMware, Inc. 47 47
- 48 VMware, Inc 48
- VMware, Inc. 49 49
- 50 VMware, Inc 50
- Manage NAT Rules 51
- Manage DHCP Service 52
- Manage VPN Service 53
- 54 VMware, Inc 54
- Manage Load Balancer Service 55
- Upgrade vShield Edge Software 56
- VMware, Inc. 57 57
- 58 VMware, Inc 58
- VMware, Inc. 59 59
- 60 VMware, Inc 60
- VMware, Inc. 61 61
- 62 VMware, Inc 62
- Restart a vShield App 63
- 64 VMware, Inc 64
- Flow Monitoring 65
- L4:TCPorUDP 66
- VMware, Inc. 67 67
- Chapter 12 Flow Monitoring 67
- Delete All Recorded Flows 68
- Editing Port Mappings 68
- Hide the Port Mappings Table 69
- 70 VMware, Inc 70
- App Firewall Management 71
- Create an App Firewall Rule 73
- 74 VMware, Inc 74
- Add a Security Group 75
- Delete an App Firewall Rule 77
- Using SpoofGuard 77
- SpoofGuard Screen Options 78
- Enable SpoofGuard 78
- Approve IP Addresses 78
- Edit an IP Address 79
- Delete an IP Address 79
- 80 VMware, Inc 80
- View vShield Endpoint Status 81
- Host Alarms 82
- SVM Alarms 82
- VM Alarms 83
- 84 VMware, Inc 84
- VMware, Inc. 85 85
- Audit Messages 86
- 88 VMware, Inc 88
- Command Line Interface 89
- CLI Syntax 90
- Moving Around in the CLI 90
- Getting Help within the CLI 91
- 92 VMware, Inc 92
- Command Reference 93
- CLI Mode Commands 94
- VMware, Inc. 95 95
- 96 VMware, Inc 96
- Configuration Commands 97
- 98 VMware, Inc 98
- VMware, Inc. 99 99
- 100 VMware, Inc 100
- VMware, Inc. 101 101
- 102 VMware, Inc 102
- VMware, Inc. 103 103
- Debug Commands 104
- VMware, Inc. 105 105
- 106 VMware, Inc 106
- VMware, Inc. 107 107
- 108 VMware, Inc 108
- Show Commands 109
- 110 VMware, Inc 110
- VMware, Inc. 111 111
- 112 VMware, Inc 112
- VMware, Inc. 113 113
- 114 VMware, Inc 114
- VMware, Inc. 115 115
- 116 VMware, Inc 116
- VMware, Inc. 117 117
- 118 VMware, Inc 118
- VMware, Inc. 119 119
- 120 VMware, Inc 120
- VMware, Inc. 121 121
- 122 VMware, Inc 122
- VMware, Inc. 123 123
- 124 VMware, Inc 124
- VMware, Inc. 125 125
- 126 VMware, Inc 126
- VMware, Inc. 127 127
- User Administration Commands 128
- USERNAME 129
- PASSWORD 129
- Terminal Commands 130
- Deprecated Commands 131
- 132 VMware, Inc 132
- Examples 133
- Terminology 134
- IKE Phase 1 and Phase 2 134
- VMware, Inc. 135 135
- 136 VMware, Inc 136
- Configure IKE Policy 137
- 138 VMware, Inc 138
- Using a Cisco ASA 5510 139
- 140 VMware, Inc 140
- Troubleshooting 141
- Phase 1 Policy Not Matching 142
- Phase 2 Not Matching 143
- PFS Mismatch 143
- PSK Not Matching 144
- VMware, Inc. 145 145
- 146 VMware, Inc 146
- VMware, Inc. 147 147
- 148 VMware, Inc 148
- 150 VMware, Inc 150
- Solution 151
- Validate the Data Path 152
- VMware, Inc. 153 153
- Appendix C Troubleshooting 153
- Load-Balancer Does Not Work 154
- VPN Does Not Work 155
- Thin Agent Logging 155
- 156 VMware, Inc 156
- VMware, Inc. 157 157
- 158 VMware, Inc 158
- VMware, Inc. 159 159
- 160 VMware, Inc 160
- VMware, Inc. 161 161
- 162 VMware, Inc 162
Produits connexes et manuels pour Logiciel de gestion du système VMware VSHIELD MANAGER 4.1.0 UPDATE 1 - API
(436 pages)© 2020, manymanuals.fr. Tous droits réservés | 0.021 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels