TMS zl Management and Configuration Guide ST.1.2.100916
C-12
Log Messages
Log Message Formats and Fields
VPN: IKEv1
Log messages from IKE version 1 (id=vpn_ikev1) may contain these fields in
addition to the VPN fields:
Table C-7. VPN IKEv1 Message Family Fields
Field Name Value Format Description
respcookie hexadecimal The responder cookie, which is one parameter that is used to
uniquely identify an ISAKMP/IKE SA
initcookie hexadecimal The initiator cookie, which is one parameter that is used to uniquely
identify an ISAKMP/IKE SA
localidtype [ipv4addr | FQDN | USERFQDN
| DER_ANS1_DN | KEY_ID]
The local endpoint’s authentication data type for IKE
exchangetype [QUICK_MODE |
MAIN_MODE]
Whether the IKE exchange mode was main or “quick” (aggressive)
remoteidtype [ipv4addr | FQDN | USERFQDN
| DER_ANS1_DN | KEY_ID]
The remote endpoint’s authentication data type for IKE
localiddata [x.x.x.x | user@domain.tld |
subdomain.domain.tld | DN |
integer]
The local endpoint’s authentication data for IKE
authmethod [Pre_sharedkey | Certificates] IKE key exchange type
payload text Message in the protocol’s payload, such as the ID, KE, nonce, and
so on
remoteiddata [x.x.x.x | user@domain.tld |
subdomain.domain.tld | DN |
integer]
The remote endpoint’s authentication data for IKE
notifypayldtype text The Notify payload type, such as No_Proposal_Chosen or Invalid_ID
secprotocol [ISAKMP | ESP | AH] The security protocol used in negotiation or for generation of
Informational exchanges
virtualip [x.x.x.x] The virtual IP that was assigned to the client in the case of IKE mode
config
certtype [RSA | DSA] The certificate type used in the negotiation
casubname text The CA certificate subject name
serialno alphanumeric The CA certificate serial number
xauthusername text The XAUTH username that is configured in the case where the DUT
is acting as an IPsec host