The Internet Key Exchange (IKE) daemon could not find an applicable KeyExchangeRule statement for the specified classification. The classification consists of the local security endpoint IP address (LSIP), remote security endpoint IP address (RSIP), local security endpoint identity (LSID), and remote security endpoint identity (RSID). If the remote system is behind a NAT, ensure that the RemoteSecurityEndpoint location in the KeyExchangeRule is the public address of the remote system.
The Security Association (SA) activation failed; IKE daemon processing continues.
Add a suitable KeyExchangeRule statement for the classification to the IPSec policy, if necessary. See the information about Policy Agent and policy applications in z/OS Communications Server: IP Configuration Reference for more information about configuring policy.
None.
policymgr.cpp
None.