Nortel Networks 620 User Manual
Chapter 5
Troubleshooting SpeedTouch™ IPSec
E-DOC-CTC-20051017-0169 v0.1
169
Syslog messages
The following table shows the syslog messages.
Severity
Contents
ERROR
unable to delete old SPD entry
ERROR
Peer local ID not configured
ERROR
unable to delete SPD entry
NOTICE
invalid certificate <REASON>
INFO
new phase 2 sa: from <IPADDRESS/PORT>
INFO
Cert status unknown; no ISAKMP <to/from> <ip-address>
INFO
Cert not usable; no ISAKMP <to/from> <ip-address>
INFO
added SPDB entry: (<DIRECTION>) <IPRANGE> ->
<IPRANGE> (if <IP_IFINDEX>)
<IPRANGE> (if <IP_IFINDEX>)
INFO
added SADB entry: dir(<DIRECTION>) spi(<SPI>)
enc(<ENC_ALG>) auth(<AUTH_ALG>)
enc(<ENC_ALG>) auth(<AUTH_ALG>)
INFO
connection profile <PROFILE_NAME> in use
INFO
establish request for connection <PROFILE_NAME>
INFO
Cannot create authentication. Maximum licensed number
<NUMBER> has already been reached.
<NUMBER> has already been reached.
INFO
Cannot create peer. Maximum licensed number
<NUMBER> has already been reached.
<NUMBER> has already been reached.
INFO
peer profile <PROFILE_NAME> in use
INFO
Cannot create connection. Maximum licensed number
<NUMBER> has already been reached.
<NUMBER> has already been reached.
INFO
phase <1|2> sa delete: ID(local:<ID> remote:<ID>)
INFO
phase 2 sa delete: from <IPADDRESS/PORT?
INFO
new phase <1|2> sa: ID(local:<ID> remote:<ID>)
INFO
Cannot create IKE session. Maximum licensed number
<NUMBER> has already been reached.
<NUMBER> has already been reached.
INFO
Certificate not found
INFO
delete SADB spi(in 0x<SPI>/ out 0x<SPI>)
INFO
delete SPDB spi(in 0x<SPI>/ out 0x<SPI>)
INFO
ipsec <DIRECTIOM> drop: <IPADDRESS> -> <IPADDRESS>
proto <PROTOCOL_NUM> spi <SPI> seq <SEQ> reason
<REASON>
proto <PROTOCOL_NUM> spi <SPI> seq <SEQ> reason
<REASON>