Encerrado

VPN IPSEC CENTOOS7 <=lIbreswan=> FORTIGATE 60F (6.23)

VPN IPSEC

CENTOOS7 <=lIbreswan=> FORTIGATE 60F (6.23)

Estou recebendo erro no ipsec, usando o libreswan

[root@semffw03 ipsec.d]# ipsec verify

Verifying installed system and configuration files

Version check and ipsec on-path [OK]

Libreswan U3.25/K(no kernel code presently loaded) on 3.10.0-1160.6.1.el7.x86_64

Checking for IPsec support in kernel [FAILED]

The ipsec service should be started before running 'ipsec verify'

Pluto [login to view URL] syntax [PARSE ERROR]

cannot load config '/etc/[login to view URL]': /etc/ipsec.d/[login to view URL]: syntax error, unexpected KEYWORD, expecting $end [left]

Two or more interfaces found, checking IP forwarding [OK]

Checking rp_filter [OK]

Checking that pluto is running [FAILED]

Checking 'ip' command [OK]

Checking 'iptables' command [OK]

Checking 'prelink' command does not interfere with FIPS [OK]

Checking for obsolete [login to view URL] options [OBSOLETE KEYWORD]

cannot load config '/etc/[login to view URL]': /etc/ipsec.d/[login to view URL]: syntax error, unexpected KEYWORD, expecting $end [left]

ipsec verify: encountered 4 errors - see 'man ipsec_verify' for help

ipsec verify: encountered 4 errors - see 'man ipsec_verify' for help

[root@semffw03 ipsec.d]# ^C

[root@semffw03 ipsec.d]# service ipsec status

Redirecting to /bin/systemctl status [login to view URL]

● [login to view URL] - Internet Key Exchange (IKE) Protocol Daemon for IPsec

Loaded: loaded (/usr/lib/systemd/system/[login to view URL]; disabled; vendor preset: disabled)

Active: failed (Result: start-limit) since Sáb 2020-12-19 20:40:57 -03; 34s ago

Docs: man:ipsec(8)

man:pluto(8)

man:[login to view URL](5)

Process: 3741 ExecStopPost=/usr/sbin/ipsec --stopnflog (code=exited, status=0/SUCCESS)

Process: 3739 ExecStopPost=/sbin/ip xfrm state flush (code=exited, status=0/SUCCESS)

Process: 3736 ExecStopPost=/sbin/ip xfrm policy flush (code=exited, status=0/SUCCESS)

Process: 3735 ExecStartPre=/usr/libexec/ipsec/addconn --config /etc/[login to view URL] --checkconfig (code=exited, status=3)

Dez 19 20:40:57 semffw03 systemd[1]: Failed to start Internet Key Exchange (IKE) Protocol Daemon for IPsec.

Dez 19 20:40:57 semffw03 systemd[1]: Unit [login to view URL] entered failed state.

Dez 19 20:40:57 semffw03 systemd[1]: [login to view URL] failed.

Dez 19 20:40:57 semffw03 systemd[1]: [login to view URL] holdoff time over, scheduling restart.

Dez 19 20:40:57 semffw03 systemd[1]: Stopped Internet Key Exchange (IKE) Protocol Daemon for IPsec.

Dez 19 20:40:57 semffw03 systemd[1]: start request repeated too quickly for [login to view URL]

Dez 19 20:40:57 semffw03 systemd[1]: Failed to start Internet Key Exchange (IKE) Protocol Daemon for IPsec.

Dez 19 20:40:57 semffw03 systemd[1]: Unit [login to view URL] entered failed state.

Dez 19 20:40:57 semffw03 systemd[1]: [login to view URL] failed.

[root@semffw03 ipsec.d]# ^C

[root@semffw03 ipsec.d]#

Habilidades: Linux, Rede de Administração, Administrador do Sistema

Sobre o Cliente:
( 6 comentários ) São Paulo, Brazil

ID do Projeto: #28627378

2 freelancers estão ofertando em média $23 nesse trabalho

ExpertNetworkEng

Hello Dear, I am an Expert Network Engineer and I am working as Expert Network Engineer at a Multinational ISP. I have great hands-on experience for more than 15 years in various network technologies. I have Cisco C Mais

$30 USD em 1 dia
(52 Comentários)
4.6
afplays

Hello hope that you're fine. To do this job I will need more informations about it. I'm the owner of one Host and I work with various Operating Systems and Machines. Let me know if you want me to do this job. Kind r Mais

$15 USD in 3 dias
(0 Comentários)
0.0