从几周前开始突然连不上了,ipsec start --nofork 前台运行打印的日志显示
15[NET] received packet: from 116.253.84.217[500] to 162.243.153.127[500] (604 bytes)
15[ENC] parsed IKE_SA_INIT request 0 [ SA KE No N(REDIR_SUP) N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) ]
15[IKE] 116.253.84.217 is initiating an IKE_SA
15[IKE] remote host is behind NAT
15[IKE] sending cert request for "C=CN, O=TrustAsia Technologies, Inc., OU=Domain Validated SSL, CN=TrustAsia TLS RSA CA G8"
15[ENC] generating IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) CERTREQ N(FRAG_SUP) N(MULT_AUTH) ]
15[NET] sending packet: from 162.243.153.127[500] to 116.253.84.217[500] (473 bytes)
16[NET] received packet: from 116.253.84.217[500] to 162.243.153.127[500] (604 bytes)
16[ENC] parsed IKE_SA_INIT request 0 [ SA KE No N(REDIR_SUP) N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) ]
16[IKE] received retransmit of request with ID 0, retransmitting response
16[NET] sending packet: from 162.243.153.127[500] to 116.253.84.217[500] (473 bytes)
12[NET] received packet: from 116.253.84.217[500] to 162.243.153.127[500] (604 bytes)
12[ENC] parsed IKE_SA_INIT request 0 [ SA KE No N(REDIR_SUP) N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) ]
12[IKE] received retransmit of request with ID 0, retransmitting response
12[NET] sending packet: from 162.243.153.127[500] to 116.253.84.217[500] (473 bytes)
15[JOB] deleting half open IKE_SA after timeout
似乎是握手超时?各种客户端都试了,差不多都这样。
扫一扫
5051
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
