EZD1779I

Explanation
 A new Security Association (SA) has been created
with the specified characteristics.
 In the message text:  version 
The IKE protocol version used to create the SA.
sa_generation 
The number used to differentiate SAs for the same tunnel.  The
first SA created for a given tunnel is number 1.
tunnel_id 
The  tunnel prefix and number used to identify the dynamic tunnel.
 The tunnel prefix is Y.
encap_mode
The tunnel encapsulation mode, which is either TUNNEL or TRANSPORT.
encr_function 
The name of the encryption function used by the dynamic tunnel
to provide data confidentiality.
integ_function
The name of the integrity function used by the dynamic tunnel
to provide data integrity. 
lifetime
The length of time that the SA lives in seconds.
lifesize
The SA lifesize, in kilobytes.
vpn_life
Specifies how long IPsec SAs should continue to be rekeyed, in
seconds. The vpn_life value is set for a dynamic
tunnel when the first SA is established for the tunnel. 
dh_group_name
The  Diffie-Hellman (DH) group ID used for perfect forward secrecy.
  For IKE version 2.0, the first IPsec SA created under each IKE SA
uses the DH group that is configured for the IKE SA, regardless of
what was configured in the policy for that IPsec SA.  In all other
cases, the DH group used is the one that is configured in the policy
for the IPsec SA. 

System action
 IKE daemon processing continues.

Operator response
 None.

System programmer response
 None.

User response
 Not applicable.

Problem determination
 None.

Source
 z/OS® Communications
Server TCP/IP: IKE daemon

Module
 IKEv2ChildSA.cpp

Routing code
 11

Descriptor code
 7

Automation
 This message is output to the syslog.

Example
  EZD1779I IKE version 1.0 Security Association 1 for tunnel Y2 has the following  attributes - 
         encapsulation : TRANSPORT encryption : DES_CBC_8 integrity :  HMAC_SHA1 lifetime : 14400 
         lifesize : NONE VpnLife : NONE PFS : GROUP1