2016年05月02日
このエントリーをはてなブックマークに追加
2つの拠点間で同一セグメントのネットワークを構築する

上記サイトと同じように設定を行いました。
L2TP の設定ですが、 ipsec の設定を入れるようです。

show status l2tp で、現在の設定が確認できます。

ここで状態を確認すると、wait_ctl_reply というメッセージがでてきました。
これが具体的に何を意味するのか分かりませんが、おそらく接続するための、コントロールパケットのリプライ待ちということなのでしょう。※原因は、 ipsec ike remote address の設定が any になっていたため、接続がうまくいっていないためでした。

syslog debug on にすることがトラブル解決に有効でした。
つながると、 established になっていました。


2016/04/30 16:38:40: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:38:34: [L2TPv3] set (59)message digest MD5
2016/04/30 16:38:34: [L2TPv3] set (0)message type ACK
2016/04/30 16:38:34: [L2TPv3] (59)message digest MD5
2016/04/30 16:38:34: [L2TPv3] (0)message type HELLO
2016/04/30 16:38:34: [L2TPv3] recv message AVPs :
2016/04/30 16:38:34: [L2TPv3] recv ACK from 10.10.10.1
2016/04/30 16:38:34: [L2TPv3] (59)message digest MD5
2016/04/30 16:38:34: [L2TPv3] (0)message type ACK
2016/04/30 16:38:34: [L2TPv3] recv message AVPs :
2016/04/30 16:38:34: [L2TPv3] keepalive HELLO send to 10.10.10.1
2016/04/30 16:38:34: [L2TPv3] set (59)message digest MD5
2016/04/30 16:38:34: [L2TPv3] set (0)message type HELLO
2016/04/30 16:38:32: [IKE] still connected : no message
2016/04/30 16:38:32: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:38:30: [IKE] still connected : no message
2016/04/30 16:38:30: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:38:22: [IKE] still connected : no message
2016/04/30 16:38:22: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:38:20: [IKE] still connected : no message
2016/04/30 16:38:20: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:38:12: [IKE] still connected : no message
2016/04/30 16:38:12: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:38:10: [IKE] still connected : no message
2016/04/30 16:38:10: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:38:02: [IKE] still connected : no message
2016/04/30 16:38:02: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:38:00: [IKE] still connected : no message
2016/04/30 16:38:00: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:37:52: [IKE] still connected : no message
2016/04/30 16:37:52: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:37:50: [IKE] still connected : no message
2016/04/30 16:37:50: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:37:42: [IKE] still connected : no message
2016/04/30 16:37:42: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:37:40: [IKE] still connected : no message
2016/04/30 16:37:40: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:37:39: LAN1: PORT4 link down
2016/04/30 16:37:34: [L2TPv3] set (59)message digest MD5
2016/04/30 16:37:34: [L2TPv3] set (0)message type ACK
2016/04/30 16:37:34: [L2TPv3] (59)message digest MD5
2016/04/30 16:37:34: [L2TPv3] (0)message type HELLO
2016/04/30 16:37:34: [L2TPv3] recv message AVPs :
2016/04/30 16:37:34: [L2TPv3] recv ACK from 10.10.10.1
2016/04/30 16:37:34: [L2TPv3] (59)message digest MD5
2016/04/30 16:37:34: [L2TPv3] (0)message type ACK
2016/04/30 16:37:34: [L2TPv3] recv message AVPs :
2016/04/30 16:37:34: [L2TPv3] keepalive HELLO send to 10.10.10.1
2016/04/30 16:37:34: [L2TPv3] set (59)message digest MD5
2016/04/30 16:37:34: [L2TPv3] set (0)message type HELLO
2016/04/30 16:37:32: [IKE] still connected : no message
2016/04/30 16:37:32: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:37:30: [IKE] still connected : no message
2016/04/30 16:37:30: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:37:22: [IKE] still connected : no message
2016/04/30 16:37:22: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:37:20: [IKE] still connected : no message
2016/04/30 16:37:20: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:37:12: [IKE] still connected : no message
2016/04/30 16:37:12: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:37:10: [IKE] still connected : no message
2016/04/30 16:37:10: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:37:02: [IKE] still connected : no message
2016/04/30 16:37:02: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:37:00: [IKE] still connected : no message
2016/04/30 16:37:00: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:36:52: [IKE] still connected : no message
2016/04/30 16:36:52: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:36:50: [IKE] still connected : no message
2016/04/30 16:36:50: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:36:42: [IKE] still connected : no message
2016/04/30 16:36:42: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:36:40: [IKE] still connected : no message
2016/04/30 16:36:40: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:36:34: [L2TPv3] TUNNEL[1] session 36458 established
2016/04/30 16:36:34: [L2TPv3] send ACK to 10.10.10.1
2016/04/30 16:36:34: [L2TPv3] set (59)message digest MD5
2016/04/30 16:36:34: [L2TPv3] set (0)message type ACK
2016/04/30 16:36:34: [L2TPv3] recv ICCN in wait_connect from 10.10.10.1
2016/04/30 16:36:34: [L2TPv3] (64)remote session id 36458
2016/04/30 16:36:34: [L2TPv3] (63)local session id 58465
2016/04/30 16:36:34: [L2TPv3] (59)message digest MD5
2016/04/30 16:36:34: [L2TPv3] (0)message type ICCN
2016/04/30 16:36:34: [L2TPv3] recv message AVPs :
2016/04/30 16:36:34: [L2TPv3] send ICRP to 10.10.10.1
2016/04/30 16:36:34: [L2TPv3] set (71)circuit status Nbit:1 Abit:1
2016/04/30 16:36:34: [L2TPv3] set (64)remote session id 58465
2016/04/30 16:36:34: [L2TPv3] set (63)local session id 36458
2016/04/30 16:36:34: [L2TPv3] set (59)message digest MD5
2016/04/30 16:36:34: [L2TPv3] set (0)message type ICRP
2016/04/30 16:36:34: [L2TPv3] send message AVPs :
2016/04/30 16:36:34: [L2TPv3] recv ICRQ in idle from 10.10.10.1
2016/04/30 16:36:34: [L2TPv3] (71)circuit status Nbit:1 Abit:1
2016/04/30 16:36:34: [L2TPv3] (5)tie breaker
2016/04/30 16:36:34: [L2TPv3] (66)remote end id 1234
2016/04/30 16:36:34: [L2TPv3] (68)pseudowire type 0x0005
2016/04/30 16:36:34: [L2TPv3] (15)call serial number 0
2016/04/30 16:36:34: [L2TPv3] (64)remote session id 0
2016/04/30 16:36:34: [L2TPv3] (63)local session id 58465
2016/04/30 16:36:34: [L2TPv3] (59)message digest MD5
2016/04/30 16:36:34: [L2TPv3] (0)message type ICRQ
2016/04/30 16:36:34: [L2TPv3] recv message AVPs :
2016/04/30 16:36:34: [L2TPv3] TUNNEL[1] tunnel 7861 established
2016/04/30 16:36:34: [L2TPv3] send ACK to 10.10.10.1
2016/04/30 16:36:34: [L2TPv3] set (59)message digest MD5
2016/04/30 16:36:34: [L2TPv3] set (0)message type ACK
2016/04/30 16:36:34: [L2TPv3] recv SCCCN in wait_ctl_conn from 10.10.10.1
2016/04/30 16:36:34: [L2TPv3] (59)message digest MD5
2016/04/30 16:36:34: [L2TPv3] (0)message type SCCCN
2016/04/30 16:36:34: [L2TPv3] recv message AVPs :
2016/04/30 16:36:34: [L2TPv3] TUNNEL[1] connected from 10.10.10.1
2016/04/30 16:36:34: [L2TPv3] send SCCRP to 10.10.10.1
2016/04/30 16:36:34: [L2TPv3] set (73)CtrlMessageAuthNonce
2016/04/30 16:36:34: [L2TPv3] set (62)pseudowire capabilities list
2016/04/30 16:36:34: [L2TPv3] set (61)assigned control connection id 7861
2016/04/30 16:36:34: [L2TPv3] set (60)router id c0 a8 b1 10
2016/04/30 16:36:34: [L2TPv3] set (8)vendorname YAMAHA Corporation
2016/04/30 16:36:34: [L2TPv3] set (7)hostname test
2016/04/30 16:36:34: [L2TPv3] set (59)message digest MD5
2016/04/30 16:36:34: [L2TPv3] set (0)message type SCCRP
2016/04/30 16:36:34: [L2TPv3] send message AVPs :
2016/04/30 16:36:34: [L2TPv3] recv SCCRQ in idle from 10.10.10.1
2016/04/30 16:36:34: [L2TPv3] (73)control message auth nonce
2016/04/30 16:36:34: [L2TPv3] Ethernet VLAN Pseudowire Type
2016/04/30 16:36:34: [L2TPv3] Ethernet Pseudowire Type
2016/04/30 16:36:34: [L2TPv3] (62)pseudowire capabilities list:
2016/04/30 16:36:34: [L2TPv3] (61)assigned ccid 35287
2016/04/30 16:36:34: [L2TPv3] (60)router id c0 a8 b1 0f
2016/04/30 16:36:34: [L2TPv3] (8)vendorname YAMAHA Corporation
2016/04/30 16:36:34: [L2TPv3] (7)hostname test
2016/04/30 16:36:34: [L2TPv3] (59)message digest MD5
2016/04/30 16:36:34: [L2TPv3] (0)message type SCCRQ
2016/04/30 16:36:34: [L2TPv3] recv message AVPs :
2016/04/30 16:36:32: [IKE] still connected : no message
2016/04/30 16:36:32: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:36:31: [IKE] delete IPsec context [4] 11cb066045ac1944 0d6e78db
2016/04/30 16:36:31: [IKE] delete IPsec context [5] 11cb066045ac1944 b92dd650
2016/04/30 16:36:31: [IKE] inactivate context [5] 11cb066045ac1944 b92dd650
2016/04/30 16:36:31: [IKE] inactivate context [4] 11cb066045ac1944 0d6e78db
2016/04/30 16:36:30: [IKE] still connected : no message
2016/04/30 16:36:30: [IKE] receive heartbeat message from 10.10.10.1
2016/04/30 16:36:29: [L2TPv3] TUNNEL[1] disconnect tunnel 32348 complete
2016/04/30 16:36:29: [L2TPv3] set (59)message digest MD5
2016/04/30 16:36:29: [L2TPv3] set (0)message type ACK
2016/04/30 16:36:29: [L2TPv3] recv StopCCN in established from 10.10.10.1
2016/04/30 16:36:29: [L2TPv3] (61)assigned StopCCN ccid 38667
2016/04/30 16:36:29: [L2TPv3] (1)result code 1
2016/04/30 16:36:29: [L2TPv3] (59)message digest MD5
2016/04/30 16:36:29: [L2TPv3] (0)message type StopCCN
2016/04/30 16:36:29: [L2TPv3] recv message AVPs :
2016/04/30 16:36:25: [L2TPv3] recv ACK from 10.10.10.1
2016/04/30 16:36:25: [L2TPv3] (59)message digest MD5
2016/04/30 16:36:25: [L2TPv3] (0)message type ACK
2016/04/30 16:36:25: [L2TPv3] recv message AVPs :
2016/04/30 16:36:25: [L2TPv3] TUNNEL[1] session 48564 established
2016/04/30 16:36:25: [L2TPv3] send ICCN to 10.10.10.1
2016/04/30 16:36:25: [L2TPv3] set (64)remote session id 7168
2016/04/30 16:36:25: [L2TPv3] set (63)local session id 48564
2016/04/30 16:36:25: [L2TPv3] set (59)message digest MD5
2016/04/30 16:36:25: [L2TPv3] set (0)message type ICCN
2016/04/30 16:36:25: [L2TPv3] send message AVPs :
2016/04/30 16:36:25: [L2TPv3] recv ICRP in wait_reply from 10.10.10.1
2016/04/30 16:36:25: [L2TPv3] (71)circuit status Nbit:1 Abit:1
2016/04/30 16:36:25: [L2TPv3] (64)remote session id 48564
2016/04/30 16:36:25: [L2TPv3] (63)local session id 7168
2016/04/30 16:36:25: [L2TPv3] (59)message digest MD5
2016/04/30 16:36:25: [L2TPv3] (0)message type ICRP
2016/04/30 16:36:25: [L2TPv3] recv message AVPs :
2016/04/30 16:36:25: [L2TPv3] send ICRQ to 10.10.10.1
2016/04/30 16:36:25: [L2TPv3] set (71)circuit status Nbit:1 Abit:1
2016/04/30 16:36:25: [L2TPv3] set (5)tie breaker 3232280848
2016/04/30 16:36:25: [L2TPv3] set (66)remote end id 1234
2016/04/30 16:36:25: [L2TPv3] set (68)pseudowire type 0x0005
2016/04/30 16:36:25: [L2TPv3] set (15)call serial number 0
2016/04/30 16:36:25: [L2TPv3] set (64)remote session id 0
2016/04/30 16:36:25: [L2TPv3] set (63)local session id 48564
2016/04/30 16:36:25: [L2TPv3] set (59)message digest MD5
2016/04/30 16:36:25: [L2TPv3] set (0)message type ICRQ
2016/04/30 16:36:25: [L2TPv3] send message AVPs :
2016/04/30 16:36:25: [L2TPv3] recv ACK from 10.10.10.1
2016/04/30 16:36:25: [L2TPv3] (59)message digest MD5
2016/04/30 16:36:25: [L2TPv3] (0)message type ACK
2016/04/30 16:36:25: [L2TPv3] recv message AVPs :
2016/04/30 16:36:25: [L2TPv3] TUNNEL[1] tunnel 32348 established
2016/04/30 16:36:25: [L2TPv3] send SCCCN to 10.10.10.1
2016/04/30 16:36:25: [L2TPv3] set (59)message digest MD5
2016/04/30 16:36:25: [L2TPv3] set (0)message type SCCCN
2016/04/30 16:36:25: [L2TPv3] send message AVPs :
2016/04/30 16:36:25: [L2TPv3] recv SCCRP in wait_ctl_reply from 10.10.10.1
2016/04/30 16:36:25: [L2TPv3] (73)control message auth nonce
2016/04/30 16:36:25: [L2TPv3] Ethernet VLAN Pseudowire Type
2016/04/30 16:36:25: [L2TPv3] Ethernet Pseudowire Type
2016/04/30 16:36:25: [L2TPv3] (62)pseudowire capabilities list:
2016/04/30 16:36:25: [L2TPv3] (61)assigned ccid 38667
2016/04/30 16:36:25: [L2TPv3] (60)router id c0 a8 b1 0f
2016/04/30 16:36:25: [L2TPv3] (8)vendorname YAMAHA Corporation
2016/04/30 16:36:25: [L2TPv3] (7)hostname test
2016/04/30 16:36:25: [L2TPv3] (59)message digest MD5
2016/04/30 16:36:25: [L2TPv3] (0)message type SCCRP
2016/04/30 16:36:25: [L2TPv3] recv message AVPs :
2016/04/30 16:36:25: [L2TPv3] send SCCRQ to 10.10.10.1
2016/04/30 16:36:25: [L2TPv3] set (73)CtrlMessageAuthNonce
2016/04/30 16:36:25: [L2TPv3] set (62)pseudowire capabilities list
2016/04/30 16:36:25: [L2TPv3] set (61)assigned control connection id 32348
2016/04/30 16:36:25: [L2TPv3] set (60)router id c0 a8 b1 10
2016/04/30 16:36:25: [L2TPv3] set (8)vendorname YAMAHA Corporation
2016/04/30 16:36:25: [L2TPv3] set (7)hostname test
2016/04/30 16:36:25: [L2TPv3] set (59)message digest MD5
2016/04/30 16:36:25: [L2TPv3] set (0)message type SCCRQ
2016/04/30 16:36:25: [L2TPv3] send message AVPs :


stock_value at 16:50│Comments(0)技術:2016年 

この記事にコメントする

名前:
URL:
  情報を記憶: 評価: 顔