Expert Advice

N3T_IPSec_Key_Msgs_Replayed  
Situation Description
Suggested Actions
Situation Description

Key exchange messages used to negotiate Internet Key Exchange (IKE) tunnels have been replayed by the remote security endpoint.

 

Suggested Actions

This situation is an indication of a networking problem or a configuration mismatch problem. Evaluate the UNIX syslog and identify the reason for the IKE daemon dropping messages.

This warning situation uses the CHANGE function and the IKE Total Replayed Key Messages attribute to determine if the total number of replayed key messages was more than five for three consecutive evaluations for the situation. During IKE tunnel negotiation the IKE daemon replays 10 messages before declaring a failed activation attempt. Key messages will be replayed periodically for an activation attempt. The five replayed messages in a sample interval may or may not be for the same activation attempt. An attribute is not highlighted when the CHANGE function is used, and the Current Situation Value Table may not display data.

By default, this situation is evaluated every 15 minutes and is not run at startup.

 

Copyright IBM Corp. 2007 All Rights Reserved US Government Users Restricted Rights - Use, duplication or disclosure restricted by GSA ADP Schedule Contract with IBM Corp. Contact IBM