Console Output CLI Console

The document contains log output from a FortiGate firewall regarding IPsec VPN connectivity. It shows: 1) The firewall configuring debug logs to monitor IPsec IKE negotiations with an IP address 61.14.7.148. 2) An IPsec tunnel establishment attempt is initiated but fails to agree on an encryption proposal between the endpoints. 3) Further IPsec connection attempts are made but continue to fail establishing an encrypted tunnel.

Uploaded by

javed.rafik.1

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

71 views

Console Output CLI Console

Uploaded by

javed.rafik.1

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

You are on page 1/ 7

FortiGate-2601F # config vdom

FortiGate-2601F (vdom) # edit vsys3

current vf=vsys3:2

FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) # diag vpn ike log-filter dst-addr4 61.14.7.148

FortiGate-2601F (vsys3) # diag debug application ike -1

Debug messages will be on for 13 minutes.

FortiGate-2601F (vsys3) # diag deb enable

FortiGate-2601F (vsys3) # ike 2:Japan_ODC:Japan_ODC: IPsec SA connect 9

192.8.202.121->61.14.7.148:0
ike 2:Japan_ODC:Japan_ODC: using existing connection
ike 2:Japan_ODC:Japan_ODC: traffic triggered, serial=1 17:10.115.90.15:36031-
>17:10.122.28.136:161
ike 2:Japan_ODC:Japan_ODC: config found
ike 2:Japan_ODC: request is on the queue
ike 2: comes 61.14.7.148:500->192.8.202.121:500,ifindex=9,vrf=0....
ike 2: IKEv2 exchange=INFORMATIONAL id=ccd4fdab6a42dd31/34e797fd7453e4bb:00000ae1
len=80
ike 2: in
CCD4FDAB6A42DD3134E797FD7453E4BB2E20250000000AE10000005000000034793828D8F78F446CFAA
C2442D5C9DE1D0FBDF74A335DD5260F0B1EAFF4C533CE
CC8CDA8E415E173041CB6AD86C12510D
ike 2:Japan_ODC: HA state master(2)
ike 2:Japan_ODC:1689768: dec
CCD4FDAB6A42DD3134E797FD7453E4BB2E20250000000AE10000002000000004
ike 2:Japan_ODC:1689768: received informational request
ike 2:Japan_ODC:1689768: enc 0F0E0D0C0B0A0908070605040302010F
ike 2:Japan_ODC:1689768: out
CCD4FDAB6A42DD3134E797FD7453E4BB2E20252800000AE1000000500000003427045AF39D87E711EB1
A2D440FE774D698BBF3B5D0700
7CDF50DFF25D279937813FCDABC417838DBDE1F227BDF1B3BBE
ike 2:Japan_ODC:1689768: sent IKE msg (INFORMATIONAL_RESPONSE): 192.8.202.121:500-
>61.14.7.148:500, len=80, vrf=0, id=ccd4fdab6a42dd31/34e
797fd7453e4bb:00000ae1
ike 2: comes 61.14.7.148:500->192.8.202.121:500,ifindex=9,vrf=0....
ike 2: IKEv2 exchange=CREATE_CHILD id=ccd4fdab6a42dd31/34e797fd7453e4bb:00000ae2
len=400
ike 2: in
CCD4FDAB6A42DD3134E797FD7453E4BB2E20240000000AE20000019029000174FBB0A36F4C5906A5379
DC4BDB940ADA078E3AF2F4941273693FB648D7A335773
717B80236AFAA46519343DBDC4C3713CCE9965768F6BE95EDFBD587BB0A0B600B04D86D8785FC4F10FE
45E36B045B100B5EC356A62F525729587A192BD67D974DD1A260E01
332D41D272A13005ADA40FD7FC4FB2DEAF71798848EB495A4B2240E559C7F0158A163A2DCA8C7AB9CFD
E22E6EB3EC4DCEDFD472EEB0BB87F5A62D6BEE13FCB535D5F6C7A65
60C7DC58ED30A3CD9B54EC9BFE2C7009AC92C657DE20D18B2FCFE10496433ED4081E68235AE6F26529B
5E0F52A3424C1FDFD45C62A950707DF386E1F7EC7AC226C1CCD3E3E
A4103B7FDCB37F42B297DA95AA048165DBC8DDADAB5CA6C2BBEDF77D112649BE26D6F904A527D185CF1
7728AD2494FF354AA4B8E4E9D6D70FE84822779C9C38EAE4082D8FB
11C37A703A53B466D9FB1CE781A8685F4A36B2B1CF8C9462A92A2E345D4160EA469233AB32E968982AF
39B667A4664CC398D38A54FA35A10FC978BED
ike 2:Japan_ODC: HA state master(2)
ike 2:Japan_ODC:1689768: dec
CCD4FDAB6A42DD3134E797FD7453E4BB2E20240000000AE20000016829000004210000080000400A280
000340000003001030404FE587
3ED0300000C0100000C800E0100030000080300000C0300000804000014000000080500000022000024
244B6047B86E4363DE3CCADD0053FE9CA9CD8B2CC50B8274553D763
A65D8CDB62C0000680014000050435C13E5480B82B05DE96F701D7CB7F081FE9B8D43C73B7A898210D9
7030FC5345EB9A7BF6DB52879663623A38F9105E7B4165741F2113D
8B668F91D14C3E017CCCDDFCD361A933D302077EAFEAF082AC78CC493EAA6C4F8AB61EF492757022D00
004002000000070000100000FFFF00000000FFFFFFFF08000028000
0FFFF00000000000000000000000000000000FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF00000040020000
00070000100000FFFF00000000FFFFFFFF080000280000FFFF00000
000000000000000000000000000FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
ike 2:Japan_ODC:1689768: received create-child request
ike 2:Japan_ODC:1689768: responder received CREATE_CHILD exchange
ike 2:Japan_ODC:1689768: processing notify type ESP_TFC_PADDING_NOT_SUPPORTED
ike 2:Japan_ODC:1689768: responder creating new child
ike 2:Japan_ODC:1689768:57512: peer proposal:
ike 2:Japan_ODC:1689768:57512: TSi_0 0:0.0.0.0-255.255.255.255:0
ike 2:Japan_ODC:1689768:57512: TSi_1 0:::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff:0
ike 2:Japan_ODC:1689768:57512: TSr_0 0:0.0.0.0-255.255.255.255:0
ike 2:Japan_ODC:1689768:57512: TSr_1 0:::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff:0
ike 2:Japan_ODC:1689768:Japan_ODC:57512: comparing selectors
ike 2:Japan_ODC:1689768:Japan_ODC:57512: matched by rfc-rule-3
ike 2:Japan_ODC:1689768:Japan_ODC:57512: phase2 matched by subset
ike 2:Japan_ODC:1689768:Japan_ODC:57512: accepted proposal:
ike 2:Japan_ODC:1689768:Japan_ODC:57512: TSi_0 0:0.0.0.0-255.255.255.255:0
ike 2:Japan_ODC:1689768:Japan_ODC:57512: TSr_0 0:0.0.0.0-255.255.255.255:0
ike 2:Japan_ODC:1689768:Japan_ODC:57512: autokey
ike 2:Japan_ODC:1689768:Japan_ODC:57512: incoming child SA proposal:
ike 2:Japan_ODC:1689768:Japan_ODC:57512: proposal id = 1:
ike 2:Japan_ODC:1689768:Japan_ODC:57512: protocol = ESP:
ike 2:Japan_ODC:1689768:Japan_ODC:57512: encapsulation = TUNNEL
ike 2:Japan_ODC:1689768:Japan_ODC:57512: type=ENCR, val=AES_CBC (key_len =
256)
ike 2:Japan_ODC:1689768:Japan_ODC:57512: type=INTEGR, val=SHA256
ike 2:Japan_ODC:1689768:Japan_ODC:57512: type=DH_GROUP, val=ECP384
ike 2:Japan_ODC:1689768:Japan_ODC:57512: type=ESN, val=NO
ike 2:Japan_ODC:1689768:Japan_ODC:57512: my proposal:
ike 2:Japan_ODC:1689768:Japan_ODC:57512: proposal id = 1:
ike 2:Japan_ODC:1689768:Japan_ODC:57512: protocol = ESP:
ike 2:Japan_ODC:1689768:Japan_ODC:57512: encapsulation = TUNNEL
ike 2:Japan_ODC:1689768:Japan_ODC:57512: type=ENCR, val=AES_CBC (key_len =
256)
ike 2:Japan_ODC:1689768:Japan_ODC:57512: type=INTEGR, val=SHA256
ike 2:Japan_ODC:1689768:Japan_ODC:57512: type=DH_GROUP, val=MODP1536
ike 2:Japan_ODC:1689768:Japan_ODC:57512: type=ESN, val=NO
ike 2:Japan_ODC:1689768:Japan_ODC:57512: lifetime=3600
ike 2:Japan_ODC:1689768:Japan_ODC:57512: no proposal chosen
ike Negotiate SA Error: ike ike [1481]
ike 2:Japan_ODC:1689768:Japan_ODC:57512: responder preparing CREATE_CHILD message
ike 2:Japan_ODC:1689768: enc 000000080000000E0706050403020107
ike 2:Japan_ODC:1689768: out
CCD4FDAB6A42DD3134E797FD7453E4BB2E20242800000AE2000000502900003424743FF2E596428A130
847EE0982490C71D0FF9DB3F9A
A1A86DB88D429536C139DBD495C85B1498C633843654FEF423C
ike 2:Japan_ODC:1689768: sent IKE msg (CREATE_CHILD_RESPONSE): 192.8.202.121:500-
>61.14.7.148:500, len=80, vrf=0, id=ccd4fdab6a42dd31/34e7
97fd7453e4bb:00000ae2
ike 2:Japan_ODC:1689768:57512: no proposal chosen
ike 2:Japan_ODC:Japan_ODC: IPsec SA connect 9 192.8.202.121->61.14.7.148:0
ike 2:Japan_ODC:Japan_ODC: using existing connection
ike 2:Japan_ODC:Japan_ODC: traffic triggered, serial=1 17:10.115.90.15:47171-
>17:10.115.93.244:161
ike 2:Japan_ODC:Japan_ODC: config found
ike 2:Japan_ODC: request is on the queue
ike 2:Japan_ODC:Japan_ODC: IPsec SA connect 9 192.8.202.121->61.14.7.148:0
ike 2:Japan_ODC:Japan_ODC: using existing connection
ike 2:Japan_ODC:Japan_ODC: config found
ike 2:Japan_ODC: request is on the queue
ike 2:Japan_ODC:Japan_ODC: IPsec SA connect 9 192.8.202.121->61.14.7.148:0
ike 2:Japan_ODC:Japan_ODC: using existing connection
ike 2:Japan_ODC:Japan_ODC: traffic triggered, serial=1 17:10.115.90.15:48011-
>17:10.115.93.244:161
ike 2:Japan_ODC:Japan_ODC: config found
ike 2:Japan_ODC: request is on the queue
ike 2: comes 61.14.7.148:500->192.8.202.121:500,ifindex=9,vrf=0....
ike 2: IKEv2 exchange=INFORMATIONAL id=ccd4fdab6a42dd31/34e797fd7453e4bb:00000ae3
len=80
ike 2: in
CCD4FDAB6A42DD3134E797FD7453E4BB2E20250000000AE300000050000000343CAB3B022642325DF3D
4886FF901070363B97335CA5A715E626D7F1909943B11
61AF98F17E3F52674EE1DFF5E132FDEB
ike 2:Japan_ODC: HA state master(2)
ike 2:Japan_ODC:1689768: dec
CCD4FDAB6A42DD3134E797FD7453E4BB2E20250000000AE30000002000000004
ike 2:Japan_ODC:1689768: received informational request
ike 2:Japan_ODC:1689768: enc 0F0E0D0C0B0A0908070605040302010F
ike 2:Japan_ODC:1689768: out
CCD4FDAB6A42DD3134E797FD7453E4BB2E20252800000AE3000000500000003413B177C35D66CC6D011
9A7EF857C969B6166D8DDD6350
5633BA5A7C62543E6C76D626B947F5BAB770E231C872D3646CB
ike 2:Japan_ODC:1689768: sent IKE msg (INFORMATIONAL_RESPONSE): 192.8.202.121:500-
>61.14.7.148:500, len=80, vrf=0, id=ccd4fdab6a42dd31/34e
797fd7453e4bb:00000ae3
ike 2: comes 61.14.7.148:500->192.8.202.121:500,ifindex=9,vrf=0....
ike 2: IKEv2 exchange=CREATE_CHILD id=ccd4fdab6a42dd31/34e797fd7453e4bb:00000ae4
len=400
ike 2: in
CCD4FDAB6A42DD3134E797FD7453E4BB2E20240000000AE4000001902900017441FC139EFA27472330C
CDF4390C397EE82AC9F9F0663F423B2DF346070C900BF
2D461D1CA8793E86F3D46CE0CAE55D564B7341DD52E2C11F32F55A0F3FB70893DB7D3EBB4C198C89420
B9471734D675A84E15BA5812960FF32C9F84144E047FD1870F5A0EA
5B0A8165310C8A46C5DF3F6BA906984362C87C45A35CAA77080057D096344DF012BD450477B852A2823
639ABB276920ADC3D2321613866DF367D7D24CD2EEE6CB2D4ED6F59
E566E82649A87D7BFC195598CB258A0D4D73D779DC6921F843041368E6C76EC69110BB85FF418097F04
6BA9C7D6111B4F534F041C184EFD22F7B90CF1BBBF280D5C330A85A
8FB3A37073082B305458D444B80B90A76FB35BCC17BEAC4B34CEE5F3264C6F7FE57D8855C68E04AF841
907CF9448D93B7AE92E51543BE7C04B8D43345690B4E5C56965E25E
26039DE2CBF96271E96FCC63555F5914AAD1D2556B7D352BF6C2D903F3B13E29C76DDE810B40E67A0F3
ED1A013FA98D18B68DE19C2FF881244E2C969
ike 2:Japan_ODC: HA state master(2)
ike 2:Japan_ODC:1689768: dec
CCD4FDAB6A42DD3134E797FD7453E4BB2E20240000000AE40000016829000004210000080000400A280
000340000003001030404AD1ED
3400300000C0100000C800E0100030000080300000C0300000804000014000000080500000022000024
0FCBB6B6FBD57E0D6ED224C66F49E7F47F7A42F47A9F10C32FED67A
0E7FC119E2C000068001400009E60194A53DAADA6D256AB4FA1CC845DB4EBDCAC0F8EBB24209A7F225A
EA8EC21F627A50C4E0AD528EE0973FF965319E87A001526BA6F08B0
3288F535AC4A2A358F4D8DF575DDDB01F2038008252BB34ADB772C7ECB7A1705C4CBD777E6E9E472D00
004002000000070000100000FFFF00000000FFFFFFFF08000028000
0FFFF00000000000000000000000000000000FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF00000040020000
00070000100000FFFF00000000FFFFFFFF080000280000FFFF00000
000000000000000000000000000FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
ike 2:Japan_ODC:1689768: received create-child request
ike 2:Japan_ODC:1689768: responder received CREATE_CHILD exchange
ike 2:Japan_ODC:1689768: processing notify type ESP_TFC_PADDING_NOT_SUPPORTED
ike 2:Japan_ODC:1689768: responder creating new child
ike 2:Japan_ODC:1689768:57528: peer proposal:
ike 2:Japan_ODC:1689768:57528: TSi_0 0:0.0.0.0-255.255.255.255:0
ike 2:Japan_ODC:1689768:57528: TSi_1 0:::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff:0
ike 2:Japan_ODC:1689768:57528: TSr_0 0:0.0.0.0-255.255.255.255:0
ike 2:Japan_ODC:1689768:57528: TSr_1 0:::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff:0
ike 2:Japan_ODC:1689768:Japan_ODC:57528: comparing selectors
ike 2:Japan_ODC:1689768:Japan_ODC:57528: matched by rfc-rule-3
ike 2:Japan_ODC:1689768:Japan_ODC:57528: phase2 matched by subset
ike 2:Japan_ODC:1689768:Japan_ODC:57528: accepted proposal:
ike 2:Japan_ODC:1689768:Japan_ODC:57528: TSi_0 0:0.0.0.0-255.255.255.255:0
ike 2:Japan_ODC:1689768:Japan_ODC:57528: TSr_0 0:0.0.0.0-255.255.255.255:0
ike 2:Japan_ODC:1689768:Japan_ODC:57528: autokey
ike 2:Japan_ODC:1689768:Japan_ODC:57528: incoming child SA proposal:
ike 2:Japan_ODC:1689768:Japan_ODC:57528: proposal id = 1:
ike 2:Japan_ODC:1689768:Japan_ODC:57528: protocol = ESP:
ike 2:Japan_ODC:1689768:Japan_ODC:57528: encapsulation = TUNNEL
ike 2:Japan_ODC:1689768:Japan_ODC:57528: type=ENCR, val=AES_CBC (key_len =
256)
ike 2:Japan_ODC:1689768:Japan_ODC:57528: type=INTEGR, val=SHA256
ike 2:Japan_ODC:1689768:Japan_ODC:57528: type=DH_GROUP, val=ECP384
ike 2:Japan_ODC:1689768:Japan_ODC:57528: type=ESN, val=NO
ike 2:Japan_ODC:1689768:Japan_ODC:57528: my proposal:
ike 2:Japan_ODC:1689768:Japan_ODC:57528: proposal id = 1:
ike 2:Japan_ODC:1689768:Japan_ODC:57528: protocol = ESP:
ike 2:Japan_ODC:1689768:Japan_ODC:57528: encapsulation = TUNNEL
ike 2:Japan_ODC:1689768:Japan_ODC:57528: type=ENCR, val=AES_CBC (key_len =
256)
ike 2:Japan_ODC:1689768:Japan_ODC:57528: type=INTEGR, val=SHA256
ike 2:Japan_ODC:1689768:Japan_ODC:57528: type=DH_GROUP,
al=MODP1536
ike 2:Japan_ODC:1689768:Japan_ODC:57528: type=ESN, val=NO
ike 2:Japan_ODC:1689768:Japan_ODC:57528: lifetime=3600
ike 2:Japan_ODC:1689768:Japan_ODC:57528: no proposal chosen
ike Negotiate SA Error: ike ike [1481]
ike 2:Japan_ODC:1689768:Japan_ODC:57528: responder preparing CREATE_CHILD message
ike 2:Japan_ODC:1689768: enc 000000080000000E0706050403020107
ike 2:Japan_ODC:1689768: out
CCD4FDAB6A42DD3134E797FD7453E4BB2E20242800000AE4000000502900003415F11A887676D36C360
4A2EB4C4F5408C83698B590421
67DA5594FF20E89780E0E1554B2554F442880AFB5D7E895B00B
ike 2:Japan_ODC:1689768: sent IKE msg (CREATE_CHILD_RESPONSE): 192.8.202.121:500-
>61.14.7.148:500, len=80, vrf=0, id=ccd4fdab6a42dd31/34e7
97fd7453e4bb:00000ae4
ike 2:Japan_ODC:1689768:57528: no proposal chosen

FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) # ike 2:Japan_ODC:Japan_ODC: IPsec SA connect 9
192.8.202.121->61.14.7.148:0
ike 2:Japan_ODC:Japan_ODC: using existing connection
ike 2:Japan_ODC:Japan_ODC: traffic triggered, serial=1 1:10.115.90.15:2048-
>1:10.122.28.144:0
ike 2:Japan_ODC:Japan_ODC: config found
ike 2:Japan_ODC: request is on the queue
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) # ike 2: comes 61.14.7.148:500-
>192.8.202.121:500,ifindex=9,vrf=0....
ike 2: IKEv2 exchange=INFORMATIONAL id=ccd4fdab6a42dd31/34e797fd7453e4bb:00000ae5
len=80
ike 2: in
CCD4FDAB6A42DD3134E797FD7453E4BB2E20250000000AE500000050000000344769112900CB639A6FC
505D577053B63E0FD327BE04F19F993D7E5731B8C3FBD
CC08C10370C680D22CD212FAE8D7A3D1
ike 2:Japan_ODC: HA state master(2)
ike 2:Japan_ODC:1689768: dec
CCD4FDAB6A42DD3134E797FD7453E4BB2E20250000000AE50000002000000004
ike 2:Japan_ODC:1689768: received informational request
ike 2:Japan_ODC:1689768: enc 0F0E0D0C0B0A0908070605040302010F
ike 2:Japan_ODC:1689768: out
CCD4FDAB6A42DD3134E797FD7453E4BB2E20252800000AE50000005000000034496E299643AE0C0C3FC
7E351B6C9DE6BED071A9F508E4
351DFAF492138527DCC276DFB1E35E2647BF7E5E84498DF2A7A
ike 2:Japan_ODC:1689768: sent IKE msg (INFORMATIONAL_RESPONSE): 192.8.202.121:500-
>61.14.7.148:500, len=80, vrf=0, id=ccd4fdab6a42dd31/34e
797fd7453e4bb:00000ae5
ike 2:Japan_ODC:Japan_ODC: IPsec SA connect 9 192.8.202.121->61.14.7.148:0
ike 2:Japan_ODC:Japan_ODC: using existing connection
ike 2:Japan_ODC:Japan_ODC: traffic triggered, serial=1 1:10.115.90.15:2048-
>1:10.122.28.144:0
ike 2:Japan_ODC:Japan_ODC: config found
ike 2:Japan_ODC: request is on the queue
ike 2:Japan_ODC:Japan_ODC: IPsec SA connect 9 192.8.202.121->61.14.7.148:0
ike 2:Japan_ODC:Japan_ODC: using existing connection
ike 2:Japan_ODC:Japan_ODC: traffic triggered, serial=1 1:10.115.90.15:2048-
>1:10.122.28.144:0
ike 2:Japan_ODC:Japan_ODC: config found
ike 2:Japan_ODC: request is on the queue
ike 2: comes 61.14.7.148:500->192.8.202.121:500,ifindex=9,vrf=0....
ike 2: IKEv2 exchange=CREATE_CHILD id=ccd4fdab6a42dd31/34e797fd7453e4bb:00000ae6
len=400
ike 2: in
CCD4FDAB6A42DD3134E797FD7453E4BB2E20240000000AE60000019029000174323B09A2A6F520E252B
8FA644FA0B6D910519AEA57A595C02505661B2D9A46F6
560A167A9177374B8433F870B884647F3205AFC4764EC35655AE11E02336CA2FDA41DC1DADE9C048784
F0CE047A6EFAC6AD98E4716EF678FF63C243D78F1029D6C2FD36340
6D56D70C95D38B5EA6C2988BCB2E88D4F162FBAEE5E4F40343B4056EEAAD5D20E29A80AA58EF902A2F3
21A515738EF39F62BC9AB7D02A8171E44458F3C8674902D9CC2C4D2
37C9721A21C2AC288DBF29338A0A6E202715751880F14622268917E71CEAB37A49ACD2C037956011261
774D30AA19648F9EC16455166B115223E058C0959DFF89CEEFB0077
DC381C578004350104CB5A74DE4121905298D344F07BFCB66D33668E4F7897C9BC762CA8AB34999C885
EF6C634FCD3C2F01B21C0C2A6BB73946F32568194D156EAD44BC8C2
4A3AFFD2E6702C3EB846290B4EB57EBE67FD9C927FD404CCE40E35D8AE4AA90FB7743404511A86648A2
05AD2E0DE70700C0588BFB5499F9FC704FB1C
ike 2:Japan_ODC: HA state master(2)
ike 2:Japan_ODC:1689768: dec
CCD4FDAB6A42DD3134E797FD7453E4BB2E20240000000AE60000016829000004210000080000400A280
000340000003001030404CF495
1AA0300000C0100000C800E0100030000080300000C0300000804000014000000080500000022000024
F2846D91EBD374D6C2A7F64D18779C96A46D067473A31C1435F2839
C42049F9E2C00006800140000953FB418CA58399150089DD792A5A0FD1A489ED11DC38BA222B7D3F9F1
839FD050C1FE3D3CD5B30019644BD0542EC6DB916175CE12D4CC7FD
E0DB9EBF16F002ABC6E026A57259D45D45E44660DB3E5E0E208EE089EE9AC257E273D52AFA635672D00
004002000000070000100000FFFF00000000FFFFFFFF08000028000
0FFFF00000000000000000000000000000000FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF00000040020000
00070000100000FFFF00000000FFFFFFFF080000280000FFFF00000
000000000000000000000000000FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
ike 2:Japan_ODC:1689768: received create-child request
ike 2:Japan_ODC:1689768: responder received CREATE_CHILD exchange
ike 2:Japan_ODC:1689768: processing notify type ESP_TFC_PADDING_NOT_SUPPORTED
ike 2:Japan_ODC:1689768: responder creating new child
ike 2:Japan_ODC:1689768:57544: peer proposal:
ike 2:Japan_ODC:1689768:57544: TSi_0 0:0.0.0.0-255.255.255.255:0
ike 2:Japan_ODC:1689768:57544: TSi_1 0:::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff:0
ike 2:Japan_ODC:1689768:57544: TSr_0 0:0.0.0.0-255.255.255.255:0
ike 2:Japan_ODC:1689768:57544: TSr_1 0:::-ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff:0
ike 2:Japan_ODC:1689768:Japan_ODC:57544: comparing selectors
ike 2:Japan_ODC:1689768:Japan_ODC:57544: matched by rfc-rule-3
ike 2:Japan_ODC:1689768:Japan_ODC:57544: phase2 matched by subset
ike 2:Japan_ODC:1689768:Japan_ODC:57544: accepted proposal:
ike 2:Japan_ODC:1689768:Japan_ODC:57544: TSi_0 0:0.0.0.0-255.255.255.255:0
ike 2:Japan_ODC:1689768:Japan_ODC:57544: TSr_0 0:0.0.0.0-255.255.255.255:0
ike 2:Japan_ODC:1689768:Japan_ODC:57544: autokey
ike 2:Japan_ODC:1689768:Japan_ODC:57544: incoming child SA proposal:
ike 2:Japan_ODC:1689768:Japan_ODC:57544: proposal id = 1:
ike 2:Japan_ODC:1689768:Japan_ODC:57544: protocol = ESP:
ike 2:Japan_ODC:1689768:Japan_ODC:57544: encapsulation = TUNNEL
ike 2:Japan_ODC:1689768:Japan_ODC:57544: type=ENCR, val=AES_CBC (key_len =
256)
ike 2:Japan_ODC:1689768:Japan_ODC:57544: type=INTEGR, val=SHA256
ike 2:Japan_ODC:1689768:Japan_ODC:57544: type=DH_GROUP, val=ECP384
ike 2:Japan_ODC:1689768:Japan_ODC:57544: type=ESN, val=NO
ike 2:Japan_ODC:1689768:Japan_ODC:57544: my proposal:
ike 2:Japan_ODC:1689768:Japan_ODC:57544: proposal id = 1:
ike 2:Japan_ODC:1689768:Japan_ODC:57544: protocol = ESP:
ike 2:Japan_ODC:1689768:Japan_ODC:57544: encapsulation = TUNNEL
ike 2:Japan_ODC:1689768:Japan_ODC:57544: type=ENCR, val=AES_CBC (key_len =
256)
ike 2:Japan_ODC:1689768:Japan_ODC:57544: type=INTEGR, val=SHA256
ike 2:Japan_ODC:1689768:Japan_ODC:57544: type=DH_GROUP, val=MODP1536
ike 2:Japan_ODC:1689768:Japan_ODC:57544: type=ESN, val=NO
ike 2:Japan_ODC:1689768:Japan_ODC:57544: lifetime=3600
ike 2:Japan_ODC:1689768:Japan_ODC:57544: no proposal chosen
ike Negotiate SA Error: ike ike [1481]
ike 2:Japan_ODC:1689768:Japan_ODC:57544: responder preparing CREATE_CHILD message
ike 2:Japan_ODC:1689768: enc 000000080000000E0706050403020107
ike 2:Japan_ODC:1689768: out
CCD4FDAB6A42DD3134E797FD7453E4BB2E20242800000AE60000005029000034ECC27C78A32EA6D25D8
2800754F2BD668C8CF139D542F
6A2AC4E4CACF460244435291220D6C990DCAEC8A48155F97F0D
ike 2:Japan_ODC:1689768: sent IKE msg (CREATE_CHILD_RESPONSE): 192.8.202.121:500-
>61.14.7.148:500, len=80, vrf=0, id=ccd4fdab6a42dd31/34e7
97fd7453e4bb:00000ae6
ike 2:Japan_ODC:1689768:57544: no proposal chosen

FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) # di de ike 2:Japan_ODC:Japan_ODC: IPsec SA connect 9
192.8.202.121->61.14.7.148:0
ike 2:Japan_ODC:Japan_ODC: using existing connection
ike 2:Japan_ODC:Japan_ODC: traffic triggered, serial=1 1:10.115.90.15:2048-
>1:10.115.93.243:0
ike 2:Japan_ODC:Japan_ODC: config found
ike 2:Japan_ODC: request is on the queue
di

FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) # di de di

FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #
FortiGate-2601F (vsys3) #

Network Security All-in-one: ASA Firepower WSA Umbrella VPN ISE Layer 2 Security
From Everand
Network Security All-in-one: ASA Firepower WSA Umbrella VPN ISE Layer 2 Security
Redouane MEDDANE
No ratings yet
Evaluate The Effectiveness of Legal and Non
100% (2)
Evaluate The Effectiveness of Legal and Non
3 pages
Site To Site VPN Troubleshooting Sop
No ratings yet
Site To Site VPN Troubleshooting Sop
7 pages
Security+ SY0-501 PDF
No ratings yet
Security+ SY0-501 PDF
588 pages
Console Output CLI Console Manila
No ratings yet
Console Output CLI Console Manila
40 pages
Console Output CLI Console
No ratings yet
Console Output CLI Console
4 pages
JNCIE
No ratings yet
JNCIE
15 pages
New 16
No ratings yet
New 16
6 pages
IPSEC - Debug Logs
No ratings yet
IPSEC - Debug Logs
7 pages
Console Output CLI Console
No ratings yet
Console Output CLI Console
20 pages
Console Output CLI Console Manila1
No ratings yet
Console Output CLI Console Manila1
67 pages
Case Study On Troubleshooting BGP Flaps Over IPSec Using FFT
No ratings yet
Case Study On Troubleshooting BGP Flaps Over IPSec Using FFT
12 pages
epdg_internal_flow
No ratings yet
epdg_internal_flow
4 pages
Tshooting Cisco VPN Solutions
No ratings yet
Tshooting Cisco VPN Solutions
107 pages
Hillstone-IKEv1-NAT-T-IPsec-VPN-Test
No ratings yet
Hillstone-IKEv1-NAT-T-IPsec-VPN-Test
11 pages
SDWAN Ipsec IKEV2
No ratings yet
SDWAN Ipsec IKEV2
2 pages
Technical Note: Fortios V4.0 Mr3 L2Tp/Ipsec and Windows7 With PSK
No ratings yet
Technical Note: Fortios V4.0 Mr3 L2Tp/Ipsec and Windows7 With PSK
12 pages
Ikev 2 Avec 3 Sites
No ratings yet
Ikev 2 Avec 3 Sites
4 pages
3806.MFDESFire EV1 NFC T4ATP
No ratings yet
3806.MFDESFire EV1 NFC T4ATP
3 pages
Nagad2 Telnet
No ratings yet
Nagad2 Telnet
1 page
Ikev2: Mubeen Nevrekar July 2021
No ratings yet
Ikev2: Mubeen Nevrekar July 2021
23 pages
Hillstone Solution VFW IKEv2 IPsec VPN
No ratings yet
Hillstone Solution VFW IKEv2 IPsec VPN
10 pages
MSOFTX3000 - UserInterface - 2019 11 05 16 25 20
No ratings yet
MSOFTX3000 - UserInterface - 2019 11 05 16 25 20
162 pages
DMC
No ratings yet
DMC
3 pages
Assignment 7 GRP-B (Distance)
No ratings yet
Assignment 7 GRP-B (Distance)
6 pages
RFC 5996
No ratings yet
RFC 5996
139 pages
Knowledge Base - Palo Alto Network
No ratings yet
Knowledge Base - Palo Alto Network
8 pages
ASDM 6.4 Site To Site VPN Tunnel With IKEv2
No ratings yet
ASDM 6.4 Site To Site VPN Tunnel With IKEv2
8 pages
Packet analyzer
No ratings yet
Packet analyzer
19 pages
ISAKMP - IKE Phase 1 Connections
No ratings yet
ISAKMP - IKE Phase 1 Connections
10 pages
IPSEC Troubleshooting
No ratings yet
IPSEC Troubleshooting
11 pages
PT Lab 17 - Site To Site IPSEC VPN With ASA 5505
No ratings yet
PT Lab 17 - Site To Site IPSEC VPN With ASA 5505
10 pages
VPN Error Report
No ratings yet
VPN Error Report
3 pages
Configuring GRE Over Ipsec
No ratings yet
Configuring GRE Over Ipsec
8 pages
Borda PIT
No ratings yet
Borda PIT
79 pages
IOS-VPNs-Cheatsheet
No ratings yet
IOS-VPNs-Cheatsheet
11 pages
Flex VPN With Spoke TO Spoke-1
No ratings yet
Flex VPN With Spoke TO Spoke-1
5 pages
Ipsec Between SRX and Vyos
100% (1)
Ipsec Between SRX and Vyos
6 pages
Ikev2 Avec 2 Sites
No ratings yet
Ikev2 Avec 2 Sites
2 pages
LoRaWAN at A Glance
No ratings yet
LoRaWAN at A Glance
5 pages
VPNs Part of The CCIE EI Workbook Orhan Ergun
No ratings yet
VPNs Part of The CCIE EI Workbook Orhan Ergun
46 pages
UGW9811 Product Documentati IPSEC
No ratings yet
UGW9811 Product Documentati IPSEC
15 pages
LinuxKongress2009 Strongswan
100% (1)
LinuxKongress2009 Strongswan
83 pages
PartnetIPsec TTEPOC STS Tunnel Config
No ratings yet
PartnetIPsec TTEPOC STS Tunnel Config
2 pages
NSE7_EFW-7.2 (67 Questions)
No ratings yet
NSE7_EFW-7.2 (67 Questions)
6 pages
Learn Digital and Microprocessor Techniques On Your Smartphone: Portable Learning, Reference and Revision Tools.
From Everand
Learn Digital and Microprocessor Techniques On Your Smartphone: Portable Learning, Reference and Revision Tools.
Clive W. Humphris
No ratings yet
Exam Nse7 - Efw: IT Certification Guaranteed, The Easy Way!
No ratings yet
Exam Nse7 - Efw: IT Certification Guaranteed, The Easy Way!
45 pages
PNBO563
No ratings yet
PNBO563
8 pages
SA3通訊
No ratings yet
SA3通訊
15 pages
Ymrtc Log
No ratings yet
Ymrtc Log
19 pages
Error OTP Logs
No ratings yet
Error OTP Logs
2 pages
Ymrtc Log
No ratings yet
Ymrtc Log
8 pages
Log Iotc
No ratings yet
Log Iotc
649 pages
Troubleshooting VPN Phase I
No ratings yet
Troubleshooting VPN Phase I
14 pages
IPSEC Tunnel Config and Explain
No ratings yet
IPSEC Tunnel Config and Explain
5 pages
Difference Between Ikev1 and Ikev2 Key Exchange
No ratings yet
Difference Between Ikev1 and Ikev2 Key Exchange
2 pages
V1 Sample
No ratings yet
V1 Sample
2 pages
Ymrtc Log
No ratings yet
Ymrtc Log
237 pages
icmp_dump
No ratings yet
icmp_dump
1,003 pages
PLC: Programmable Logic Controller – Arktika.: EXPERIMENTAL PRODUCT BASED ON CPLD.
From Everand
PLC: Programmable Logic Controller – Arktika.: EXPERIMENTAL PRODUCT BASED ON CPLD.
Franco Mario
No ratings yet
Projects With Microcontrollers And PICC
From Everand
Projects With Microcontrollers And PICC
Guillermo Perez Guillen
5/5 (1)
Digital and Microprocessor Techniques V10
From Everand
Digital and Microprocessor Techniques V10
Clive W. Humphris
No ratings yet
53 SD WAN Through FortiManager
No ratings yet
53 SD WAN Through FortiManager
265 pages
Types of Laziness
No ratings yet
Types of Laziness
9 pages
Console Output CLI Console
No ratings yet
Console Output CLI Console
8 pages
NSE8 812 Demo
No ratings yet
NSE8 812 Demo
7 pages
FortiManager Training
No ratings yet
FortiManager Training
206 pages
Issue Tracker
No ratings yet
Issue Tracker
8 pages
Sample
No ratings yet
Sample
4 pages
Forti - NAC Juniper SW Backup
No ratings yet
Forti - NAC Juniper SW Backup
12 pages
FCX Certification
No ratings yet
FCX Certification
6 pages
BGP Summary
No ratings yet
BGP Summary
1 page
Saml User Log
No ratings yet
Saml User Log
2 pages
Pre Dac Paper
No ratings yet
Pre Dac Paper
3 pages
COMP4337 Lab1 Report
No ratings yet
COMP4337 Lab1 Report
7 pages
2023 LODD Fatality Report
No ratings yet
2023 LODD Fatality Report
14 pages
Fire Fight V2 Faction Lists Public Beta 0.1
No ratings yet
Fire Fight V2 Faction Lists Public Beta 0.1
91 pages
CEBRI-Revista - Malta-Kira
No ratings yet
CEBRI-Revista - Malta-Kira
18 pages
Women and Cyberworld PPT s1
No ratings yet
Women and Cyberworld PPT s1
45 pages
CISM Syllabus
No ratings yet
CISM Syllabus
4 pages
Crypto
No ratings yet
Crypto
34 pages
Security and Protection System
No ratings yet
Security and Protection System
4 pages
Cs 703 A Cryptography and Information Security Dec 2020
No ratings yet
Cs 703 A Cryptography and Information Security Dec 2020
2 pages
Anatomy of A SOC
No ratings yet
Anatomy of A SOC
37 pages
Ciclo de Vida Del Ransomware
No ratings yet
Ciclo de Vida Del Ransomware
1 page
Action Plan DRRM
No ratings yet
Action Plan DRRM
2 pages
FM 34-36 Special Operations Forces Intelligence and Electronic Warfare Operations (SEP 1991)
100% (1)
FM 34-36 Special Operations Forces Intelligence and Electronic Warfare Operations (SEP 1991)
164 pages
National Police Force of IRELAND
No ratings yet
National Police Force of IRELAND
4 pages
Edward Snowden Case Study
100% (1)
Edward Snowden Case Study
7 pages
Disaster Risk Reduction in Education in Emergencies
No ratings yet
Disaster Risk Reduction in Education in Emergencies
31 pages
Soal UTS K3LL Gasal 2020-2021
No ratings yet
Soal UTS K3LL Gasal 2020-2021
3 pages
Full Insider Risk and Personnel Security An Introduction 1st Edition Martin PDF All Chapters
100% (4)
Full Insider Risk and Personnel Security An Introduction 1st Edition Martin PDF All Chapters
62 pages
CSF PF To Sp800 53r5 Mappings
No ratings yet
CSF PF To Sp800 53r5 Mappings
285 pages
GF - Orc Marauders v2.50
No ratings yet
GF - Orc Marauders v2.50
3 pages
Applied Quantum-Safe Security: Quantum-Resistant Algorithms and Quantum Key Distribution
No ratings yet
Applied Quantum-Safe Security: Quantum-Resistant Algorithms and Quantum Key Distribution
19 pages
CISSE v011 I01 p16
No ratings yet
CISSE v011 I01 p16
6 pages
Cips 2017
No ratings yet
Cips 2017
37 pages
15 Aspects of Security
No ratings yet
15 Aspects of Security
9 pages
IMAS 09.31 Ed.1
No ratings yet
IMAS 09.31 Ed.1
22 pages
Curriculum Vitae Security
No ratings yet
Curriculum Vitae Security
4 pages
Lock Security Device
No ratings yet
Lock Security Device
12 pages
Risk Analysis 17
No ratings yet
Risk Analysis 17
5 pages