F1070系统日志
- 0关注
- 0收藏,478浏览
问题描述:
F1070防火墙报如下错误,导致SSL VPN无法连接,怎么消除如下告警:
%Mar 13 02:17:27:118 2024 H3C_F1070_WaiWang DIAG/1/DIAG_STORAGE_EXCEED_THRESHOLD: The usage of flash: (98%) exceeded the threshold of 95%.
- 2024-03-14提问
- 举报
-
(0)
sslvpn 登录不上不应该和flash 满了有关系呀 !
你先关闭一下安全日志,在清除一下系统的日志,看看vpn 好用不了
清除点空间,在看看ssl vpn 的日志
- 2024-03-14回答
- 评论(6)
- 举报
-
(0)
清楚日志后,还是无法连接SSL VPN,当前配置和之前VPN正常连接时配置一致;刷新网关失败,debugging显示如下信息:
[H3C_F1070_WaiWang]*Mar 14 11:24:42:360 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_EVENT: -COntext=1; IPAC: The check result of the referenced address pool is 1.
*Mar 14 11:24:42:360 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_DEBUG_KSSL_HANDSHAKE: -COntext=1; Receive: TLS 1.2ApplicationData [length 0060].
*Mar 14 11:24:42:360 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_KSSL_PACKET: -COntext=1;
17 03 03 00 60
*Mar 14 11:24:42:360 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_EVENT: -COntext=1; IPAC: Reveived 56 bytes of user traffic: cOntextID=0x1, OnlineID=0x9d
*Mar 14 11:24:42:360 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_EVENT: -COntext=1; IPAC: No uri-acl or no matched.
*Mar 14 11:24:42:360 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_EVENT: -COntext=1; IPAC: The ACL check result was permit.
*Mar 14 11:24:42:360 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; SSLVPN-AC11 input packet:
*Mar 14 11:24:42:360 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0000 45 00 00 34 65 86 40 00 40 06 c3 f2 01 02 03 01
*Mar 14 11:24:42:360 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0010 0a 28 03 21 dd ea 1e 00 c6 15 b7 d5 00 00 00 00
*Mar 14 11:24:42:360 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0020 80 02 fa f0 e8 fd 00 00 02 04 05 b4 01 03 03 08
*Mar 14 11:24:42:360 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0030 01 01 04 02
*Mar 14 11:24:42:360 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_EVENT: -COntext=1; IPAC: Found peer 1.2.3.1.
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_EVENT: -COntext=1; IPAC: The check result of the referenced address pool is 1.
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_DEBUG_KSSL_HANDSHAKE: -COntext=1; Receive: TLS 1.2ApplicationData [length 0100].
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_KSSL_PACKET: -COntext=1;
17 03 03 01 00
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_EVENT: -COntext=1; IPAC: Reveived 209 bytes of user traffic: cOntextID=0x1, OnlineID=0x9d
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_EVENT: -COntext=1; IPAC: No uri-acl or no matched.
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_EVENT: -COntext=1; IPAC: The ACL check result was permit.
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; SSLVPN-AC11 input packet:
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0000 45 00 00 cd 12 c8 00 00 01 11 b2 5b 01 02 03 01
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0010 ef ff ff fa d3 64 07 6c 00 b9 b5 92 4d 2d 53 45
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0020 41 52 43 48 20 2a 20 48 54 54 50 2f 31 2e 31 0d
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0030 0a 48 4f 53 54 3a 20 32 33 39 2e 32 35 35 2e 32
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0040 35 35 2e 32 35 30 3a 31 39 30 30 0d 0a 4d 41 4e
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0050 3a 20 22 73 73 64 70 3a 64 69 73 63 6f 76 65 72
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0060 22 0d 0a 4d 58 3a 20 31 0d 0a 53 54 3a 20 75 72
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0070 6e 3a 64 69 61 6c 2d 6d 75 6c 74 69 73 63 72 65
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0080 65 6e 2d 6f 72 67 3a 73 65 72 76 69 63 65 3a 64
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 0090 69 61 6c 3a 31 0d 0a 55 53 45 52 2d 41 47 45 4e
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 00a0 54 3a 20 33 36 30 e5 ae 89 e5 85 a8 e6 b5 8f e8
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 00b0 a7 88 e5 99 a8 2f 31 35 2e 30 2e 31 33 32 31 2e
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_PACKET: -COntext=1; 00c0 30 20 57 69 6e 64 6f 77 73 0d 0a 0d 0a
*Mar 14 11:24:43:075 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_EVENT: -COntext=1; IPAC: Found peer 1.2.3.1.
*Mar 14 11:24:44:077 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_EVENT: -COntext=1; IPAC: The check result of the referenced address pool is 1.
*Mar 14 11:24:44:077 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_DEBUG_KSSL_HANDSHAKE: -COntext=1; Receive: TLS 1.2ApplicationData [length 0100].
*Mar 14 11:24:44:077 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_KSSL_PACKET: -COntext=1;
17 03 03 01 00
*Mar 14 11:24:58:562 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_DEBUG_KSSL_HANDSHAKE: -COntext=1; Send: TLS 1.0Alert [length 0002].
*Mar 14 11:24:58:562 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_KSSL_PACKET: -COntext=1;
15 03 01 00 02
*Mar 14 11:24:58:562 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_DEBUG_KSSL_HANDSHAKE: -COntext=1; Send: TLS 1.0Alert [length 0002], level: fatal, reason: protocol_version.
*Mar 14 11:24:58:562 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_KSSL_PACKET: -COntext=1;
02 46
*Mar 14 11:24:58:562 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_DEBUG_KSSL_INFO: -COntext=1; SSL3 alert write, level: fatal, reason: protocol version.
*Mar 14 11:24:58:562 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_DEBUG_KSSL_INFO: -COntext=1; SSL_accept: error in error.
*Mar 14 11:24:58:686 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_DEBUG_KSSL_INFO: -COntext=1; SSL_accept: before SSL initialization.
*Mar 14 11:24:58:686 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_DEBUG_KSSL_HANDSHAKE: -COntext=1; Receive: TLS 1.0Handshake [length 00c2].
*Mar 14 11:24:58:686 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_KSSL_PACKET: -COntext=1;
16 03 01 00 c2
*Mar 14 11:24:58:686 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_DEBUG_KSSL_INFO: -COntext=1; SSL_accept: before SSL initialization.
*Mar 14 11:24:58:686 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_DEBUG_KSSL_HANDSHAKE: -COntext=1; Receive: TLS 1.0 [length 00c2], message type: ClientHello.
*Mar 14 11:24:58:686 2024 H3C_F1070_WaiWang SSLVPNK/7/SSLVPN_KSSL_PACKET: -COntext=1;
01 00 00 be 03 01 f9 1c 92 38
9d 80 30 f7 0c 1c b7 e4 6d 11
c5 ca 91 78 a0 99 b6 1a 93 0f
21 67 d8 e9 17 9d d1 7f 00 00
64 c0 14 c0 0a 00 39 00 38 00
37 00 36 00 88 00 87 00 86 00
85 c0 0f c0 05 00 35 00 84 c0
13 c0 09 00 33 00 32 00 31 00
30 00 9a 00 99 00 98 00 97 00
45 00 44 00 43 00 42 c0 0e c0
04 00 2f 00 96 00 41 00 07 c0
11 c0 07 c0 0c c0 02 00 05 00
04 c0 12 c0 08 00 16 00 13 00
10 00 0d c0 0d c0 03 00 0a 00
ff 01 00 00 31 00 0b 00 04 03
00 01 02 00 0a 00 1c 00 1a 00
17 00 19 00 1c 00 1b 00 18 00
1a 00 16 00 0e 00 0d 00 0b 00
0c 00 09 00 0a 00 23 00 00 00
0f 00 01 01
- 2024-03-14回答
- 评论(0)
- 举报
-
(0)
编辑答案
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
- 1. 您举报的内容是什么?(请在邮件中列出您举报的内容和链接地址)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
- 3. 是哪家企业?(营业执照,单位登记证明等证件)
- 4. 您与该企业的关系是?(您是企业法人或被授权人,需提供企业委托授权书)
抄袭了我的内容
×
原文链接或出处
诽谤我
×
- 1. 您举报的内容以及侵犯了您什么权益?(请在邮件中列出您举报的内容、链接地址,并给出简短的说明)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
对根叔社区有害的内容
×
不规范转载
×
举报说明