档案
日志
相册
视频
分享
2008-09-04 | inbound packet failed authentication
Synopsis
What Does the Log Viewer Message 'inbound packet failed authentication' Mean?
Problem
Environment:
- NetScreen configured with Dial Up VPN
- VPN Monitor enabled on NetScreen
- Pre-shared IKE VPN
Symptoms & Errors:
- Log Viewer Message: inbound packet failed authentication
Solution
An inbound packet failed authentication message occurs in the Log Viewer when there is a NetScreen device to a non-NetScreen device VPN or a NetScreen-Remote VPN to a NetScreen device configured with VPN Monitor.
In ScreenOS 4.0.0, a NetScreen VPN Monitor heartbeat message will be understood by NetScreen-Remote; provided the NetScreen-Remote client does not reside behind a NAT device. This is because the VPN Monitor is not supported with NAT traversal.
To enable VPN Monitor interoperability with NetScreen-Remote or any non-NetScreen device, perform the following steps:
Open the CLI. For more information on how to open the CLI, go to Accessing the Command Line Interface Using Telnet.
Enter: set vpn name monitor source-interface e1 and then press ENTER.
In this example, e1 represents the trust interface that the NetScreen-Remote is connecting to. This is important for Global Pro, as it will now be able to track VPN uptime with Report Manager.
In ScreenOS 3.1.0 and below, the NetScreen device will send a VPN Monitor
本文摘自Juniper官方网站(www.juniper.net)
分享
评论
想第一时间抢沙发么?