我正在尝试通过 VPN 将我的 Google Cloud VPC 连接到安全网络。
我无法连接并且日志显示以下内容:
D generating IKE_AUTH response 1 [ N(AUTH_FAILED) ]
D no matching peer config found
D looking for peer configs matching YYY.YYY.YYY.YYY[%any]...XXX.XXX.XXX.XXX[192.168.0.2]
D parsed IKE_AUTH request 1 [ IDi N(INIT_CONTACT) AUTH SA TSi TSr ]
D received packet: from XXX.XXX.XXX.XXX[4500] to YYY.YYY.YYY.YYY[4500] (204 bytes)
D sending packet: from YYY.YYY.YYY.YYY[500] to XXX.XXX.XXX.XXX[500] (440 bytes)
D generating IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(MULT_AUTH) ]
D remote host is behind NAT
I XXX.XXX.XXX.XXX is initiating an IKE_SA
我遗漏了什么?对等网络网关 IP 配置为 XXX.XXX.XXX.XXX,而我的 Google Cloud IP 是 YYY.YYY.YYY.YYY。
以下链接提到了创建 VPN 的步骤:https://cloud.google.com/compute/docs/vpn/creating-vpns#creating_a_gateway_and_a_tunnel_for_an_auto_mode_vpc_network_using_only_the_gateway_subnet
可能出了什么问题?
所有配置均按照文档中提到的设置:https://cloud.google.com/files/CloudVPNGuide-UsingCloudVPNwithFortinetFortiGate300C.pdf