Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
EZD1090I z/OS Communications Server: IP Messages Volume 2 (EZB, EZD) SC27-3655-01 |
|
EZD1090I Initiation of a phase 2 Security Association negotiation
for a new dynamic tunnel failed because the remote security endpoint
is a security gateway ExplanationWhen traversing a NAT, a local initiation of a phase 2 Security Association (SA) for a new dynamic tunnel with a remote security endpoint that is a security gateway is not supported. To use this configuration, the remote security endpoint must be the initiator. z/OS® is providing NAT traversal support for a defined group of configurations where z/OS is running the IKE daemon. See the information about IP security in z/OS Communications Server: IP Configuration Guide for a description of the supported configurations. System actionThe phase 2 SA negotiation fails; IKE daemon processing continues. Operator responseContact the system programmer. System programmer responseNotify the administrator of the remote security endpoint that it must be the initiator when using this configuration. Modulesa.cpp Procedure nameNone. |
Copyright IBM Corporation 1990, 2014
|