<html><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">Hi,<div><br class="webkit-block-placeholder"></div><div><span class="Apple-style-span" style="font-family: 'Lucida Grande'; font-size: 11px; "><span class="Apple-tab-span" style="white-space:pre"> </span>I keep getting the following error, can anyone help me fix this?</span></div><div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><br class="webkit-block-placeholder"></span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> Plutorun started on Wed Nov 7 21:47:18 GMT 2007</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> Starting Pluto (Openswan Version openswan-2.4.9-31.el4 PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR; Vendor ID OEa\134LNewa~Br)</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> Setting NAT-Traversal port-4500 floating to on</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> port floating activation criteria nat_t=1/port_fload=1</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> including NAT-Traversal patch (Version 0.6c)</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> | opening /dev/urandom</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> | inserting event EVENT_REINIT_SECRET, timeout in 3600 seconds</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> | inserting event EVENT_PENDING_PHASE2, timeout in 120 seconds</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> ike_alg_register_enc(): Activating OAKLEY_AES_CBC: Ok (ret=0)</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> starting up 3 cryptographic helpers</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> | opening /dev/urandom</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> started helper pid=31315 (fd:5)</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> ! helper 0 waiting on fd: 6</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> | opening /dev/urandom</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> started helper pid=31317 (fd:6)</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> | opening /dev/urandom</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> started helper pid=31319 (fd:7)</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> | process 31311 listening for PF_KEY_V2 on file descriptor 8</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> Using NETKEY IPsec interface code on 2.6.16.53-070731a</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> ! helper 1 waiting on fd: 7</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> ! helper 2 waiting on fd: 8</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span> <b>FATAL ERROR: Failed to bind bcast socket in init_netlink() - Perhaps kernel has no CONFIG_XFRM_USER support. Errno 2: No such file or directory</b></span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"> </span></font></div></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span>I keep finding reference to XFRM_USER, but I have no idea what this is or how to repair, can someone point me in the right direction?</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><br class="webkit-block-placeholder"></span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-tab-span" style="white-space:pre"> </span>I've attached ipsec barf if that helps.<br class="webkit-block-placeholder"></span></font></div><div><br></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;">Thanks</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><br class="webkit-block-placeholder"></span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;">Andrew</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><br class="webkit-block-placeholder"></span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;">----</span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><br class="webkit-block-placeholder"></span></font></div><div><font class="Apple-style-span" face="'Lucida Grande'" size="3"><span class="Apple-style-span" style="font-size: 11px;"><span class="Apple-style-span" style="font-family: Times; font-size: 13px; -webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px; ">s15272210.onlinehome-server.info<br>Wed Nov 7 21:50:12 GMT 2007<br>+ _________________________ version<br>+ ipsec --version<br>Linux Openswan U2.4.9/K2.6.16.53-070731a (netkey)<br>See `ipsec --copyright' for copyright information.<br>+ _________________________ /proc/version<br>+ cat /proc/version<br>Linux version 2.6.16.53-070731a (root@buildd-amd64) (gcc version 3.3.5 (Debian 1:3.3.5-13)) #1 SMP Tue Jul 31 10:46:54 CEST 2007<br>+ _________________________ /proc/net/ipsec_eroute<br>+ test -r /proc/net/ipsec_eroute<br>+ _________________________ netstat-rn<br>+ netstat -nr<br>+ head -n 100<br>Kernel IP routing table<br>Destination Gateway Genmask Flags MSS Window irtt Iface<br>10.255.255.1 0.0.0.0 255.255.255.255 UH 0 0 0 eth0<br>169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0<br>0.0.0.0 10.255.255.1 0.0.0.0 UG 0 0 0 eth0<br>+ _________________________ /proc/net/ipsec_spi<br>+ test -r /proc/net/ipsec_spi<br>+ _________________________ /proc/net/ipsec_spigrp<br>+ test -r /proc/net/ipsec_spigrp<br>+ _________________________ /proc/net/ipsec_tncfg<br>+ test -r /proc/net/ipsec_tncfg<br>+ _________________________ /proc/net/pfkey<br>+ test -r /proc/net/pfkey<br>+ cat /proc/net/pfkey<br>sk RefCnt Rmem Wmem User Inode<br>+ _________________________ ip-xfrm-state<br>+ ip xfrm state<br>Cannot send dump request: Connection refused<br>+ _________________________ ip-xfrm-policy<br>+ ip xfrm policy<br>Cannot send dump request: Connection refused<br>+ _________________________ /proc/sys/net/ipsec-star<br>+ test -d /proc/sys/net/ipsec<br>+ _________________________ ipsec/status<br>+ ipsec auto --status<br>whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>+ _________________________ ifconfig-a<br>+ ifconfig -a<br>eth0 Link encap:Ethernet HWaddr 00:E0:81:49:BE:32 <br> inet addr:87.106.135.51 Bcast:87.106.135.51 Mask:255.255.255.255<br> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1<br> RX packets:3111437 errors:0 dropped:0 overruns:0 frame:0<br> TX packets:2877243 errors:0 dropped:0 overruns:0 carrier:0<br> collisions:0 txqueuelen:1000<br> RX bytes:2012722165 (1.8 GiB) TX bytes:208777683 (199.1 MiB)<br> Base address:0xdc00 Memory:ff680000-ff6a0000<br><br>lo Link encap:Local Loopback <br> inet addr:127.0.0.1 Mask:255.0.0.0<br> UP LOOPBACK RUNNING MTU:16436 Metric:1<br> RX packets:4 errors:0 dropped:0 overruns:0 frame:0<br> TX packets:4 errors:0 dropped:0 overruns:0 carrier:0<br> collisions:0 txqueuelen:0<br> RX bytes:336 (336.0 b) TX bytes:336 (336.0 b)<br><br>+ _________________________ ip-addr-list<br>+ ip addr list<br>1: eth0: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000<br> link/ether 00:e0:81:49:be:32 brd ff:ff:ff:ff:ff:ff<br> inet 87.106.135.51/32 brd 87.106.135.51 scope global eth0<br>2: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue<br> link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00<br> inet 127.0.0.1/8 scope host lo<br>+ _________________________ ip-route-list<br>+ ip route list<br>10.255.255.1 dev eth0 scope link<br>169.254.0.0/16 dev eth0 scope link<br>default via 10.255.255.1 dev eth0<br>+ _________________________ ip-rule-list<br>+ ip rule list<br>+ _________________________ ipsec_verify<br>+ ipsec verify --nocolour<br>Checking your system to see if IPsec got installed and started correctly:<br>Version check and ipsec on-path [OK]<br>Linux Openswan U2.4.9/K2.6.16.53-070731a (netkey)<br>Checking for IPsec support in kernel [OK]<br>NETKEY detected, testing for disabled ICMP send_redirects [OK]<br>NETKEY detected, testing for disabled ICMP accept_redirects [OK]<br>Checking for RSA private key (/etc/ipsec.d/hostkey.secrets) [OK]<br>Checking that pluto is running [FAILED]<br> whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>Checking for 'ip' command [OK]<br>Checking for 'iptables' command [OK]<br>Opportunistic Encryption Support [DISABLED]<br>+ _________________________ mii-tool<br>+ '[' -x /sbin/mii-tool ']'<br>+ /sbin/mii-tool -v<br>eth0: negotiated 100baseTx-FD, link ok<br> product info: vendor 00:aa:00, model 56 rev 0<br> basic mode: autonegotiation enabled<br> basic status: autonegotiation complete, link ok<br> capabilities: 100baseTx-FD 100baseTx-HD 10baseT-FD 10baseT-HD<br> advertising: 100baseTx-FD 100baseTx-HD 10baseT-FD 10baseT-HD flow-control<br> link partner: 100baseT4 100baseTx-FD 100baseTx-HD 10baseT-FD 10baseT-HD<br>+ _________________________ ipsec/directory<br>+ ipsec --directory<br>/usr/local/lib/ipsec<br>+ _________________________ hostname/fqdn<br>+ hostname --fqdn<br>s15272210.onlinehome-server.info<br>+ _________________________ hostname/ipaddress<br>+ hostname --ip-address<br>87.106.135.51<br>+ _________________________ uptime<br>+ uptime<br> 21:50:12 up 8:10, 1 user, load average: 0.22, 0.10, 0.09<br>+ _________________________ ps<br>+ ps alxwf<br>+ egrep -i 'ppid|pluto|ipsec|klips'<br>F UID PID PPID PRI NI VSZ RSS WCHAN STAT TTY TIME COMMAND<br>0 0 6830 5911 22 0 65824 1272 wait S+ pts/0 0:00 \_ /bin/sh /usr/local/libexec/ipsec/barf<br>0 0 6928 6830 18 0 5992 592 pipe_w S+ pts/0 0:00 | \_ egrep -i ppid|pluto|ipsec|klips<br>0 0 6831 5911 18 0 58836 568 pipe_w S+ pts/0 0:00 \_ tee ipsec.barf<br>1 0 6553 1 17 0 10752 484 wait S pts/0 0:00 /bin/sh /usr/lib/ipsec/_plutorun --re --debug all --uniqueids yes --nocrsend --strictcrlpolicy --nat_traversal yes --keep_alive --protostack auto --force_keepalive --disable_port_floating --virtual_private --crlcheckinterval 0 --ocspuri --nhelpers --dump --opts --stderrlog /var/tmp/pluto.log --wait no --pre --post --log daemon.error --pid /var/run/pluto/pluto.pid<br>1 0 6700 1 17 0 10748 480 wait S pts/0 0:00 /bin/sh /usr/lib/ipsec/_plutorun --re --debug all --uniqueids yes --nocrsend --strictcrlpolicy --nat_traversal yes --keep_alive --protostack auto --force_keepalive --disable_port_floating --virtual_private --crlcheckinterval 0 --ocspuri --nhelpers --dump --opts --stderrlog /var/tmp/pluto.log --wait no --pre --post --log daemon.error --pid /var/run/pluto/pluto.pid<br>1 0 6860 1 17 0 10752 484 wait S pts/0 0:00 /bin/sh /usr/lib/ipsec/_plutorun --re --debug all --uniqueids yes --nocrsend --strictcrlpolicy --nat_traversal yes --keep_alive --protostack auto --force_keepalive --disable_port_floating --virtual_private --crlcheckinterval 0 --ocspuri --nhelpers --dump --opts --stderrlog /var/tmp/pluto.log --wait no --pre --post --log daemon.error --pid /var/run/pluto/pluto.pid<br>+ _________________________ ipsec/showdefaults<br>+ ipsec showdefaults<br>routephys=eth0<br>routevirt=ipsec0<br>routeaddr=87.106.135.51<br>routenexthop=10.255.255.1<br>+ _________________________ ipsec/conf<br>+ ipsec _include /etc/ipsec.conf<br>+ ipsec _keycensor<br><br>#< /etc/ipsec.conf 1<br># /etc/ipsec.conf - Openswan IPsec configuration file<br>#<br># Manual: ipsec.conf.5<br>#<br># Please place your own config files in /etc/ipsec.d/ ending in .conf<br><br>version 2.0 # conforms to second version of ipsec.conf specification<br><br># basic configuration<br>config setup<br> # Debug-logging controls: "none" for (almost) none, "all" for lots.<br> # klipsdebug=none<br> # plutodebug="control parsing"<br> plutodebug="all"<br> plutostderrlog=/var/tmp/pluto.log<br> nat_traversal=yes<br><br><br>#< /etc/ipsec.d/no_oe.conf 1<br># 'include' this file to disable Opportunistic Encryption.<br># See /usr/share/doc/openswan/policygroups.html for details.<br>#<br># RCSID $Id: no_oe.conf.in,v 1.2 2004/10/03 19:33:10 paul Exp $<br>conn block<br> auto=ignore<br><br>conn private<br> auto=ignore<br><br>conn private-or-clear<br> auto=ignore<br><br>conn clear-or-private<br> auto=ignore<br><br>conn clear<br> auto=ignore<br><br>conn packetdefault<br> auto=ignore<br><br>#> /etc/ipsec.conf 19<br>+ _________________________ ipsec/secrets<br>+ ipsec _include /etc/ipsec.secrets<br>+ ipsec _secretcensor<br><br>#< /etc/ipsec.secrets 1<br><br>#< /etc/ipsec.d/comstock.secrets 1<br>: PSK "[sums to db9b...]"<br><br>#< /etc/ipsec.d/hostkey.secrets 1<br>: RSA {<br> # RSA 2192 bits s15272210.onlinehome-server.info Wed Nov 7 11:33:14 2007<br> # for signatures only, UNSAFE FOR ENCRYPTION<br> #pubkey=[keyid AQNvMg0zc]<br> Modulus: [...]<br> PublicExponent: [...]<br> # everything after this point is secret<br> PrivateExponent: [...]<br> Prime1: [...]<br> Prime2: [...]<br> Exponent1: [...]<br> Exponent2: [...]<br> Coefficient: [...]<br> }<br># do not change the indenting of that "[sums to 7d9d...]"<br><br>#> /etc/ipsec.secrets 2<br>+ _________________________ ipsec/listall<br>+ ipsec auto --listall<br>whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>+ '[' /etc/ipsec.d/policies ']'<br>+ for policy in '$POLICIES/*'<br>++ basename /etc/ipsec.d/policies/block<br>+ base=block<br>+ _________________________ ipsec/policies/block<br>+ cat /etc/ipsec.d/policies/block<br># This file defines the set of CIDRs (network/mask-length) to which<br># communication should never be allowed.<br>#<br># See /usr/share/doc/openswan/policygroups.html for details.<br>#<br># $Id: block.in,v 1.4 2003/02/17 02:22:15 mcr Exp $<br>#<br><br>+ for policy in '$POLICIES/*'<br>++ basename /etc/ipsec.d/policies/clear<br>+ base=clear<br>+ _________________________ ipsec/policies/clear<br>+ cat /etc/ipsec.d/policies/clear<br># This file defines the set of CIDRs (network/mask-length) to which<br># communication should always be in the clear.<br>#<br># See /usr/share/doc/openswan/policygroups.html for details.<br>#<br># $Id: clear.in,v 1.4.30.3 2006/11/21 19:49:51 paul Exp $<br>#<br>#<br># Michael's idea: Always have ROOT NAMESERVERS in the clear.<br># It will make OE work much better on machines running caching<br># resolvers.<br>#<br># Based on: <a href="https://outlook.hostedservice2.net/exchweb/bin/redir.asp?URL=http://www.internic.net/zones/named.root" target="_blank">http://www.internic.net/zones/named.root</a><br># This file holds the information on root name servers needed to<br># last update: Jan 29, 2004<br># related version of root zone: 2004012900<br>198.41.0.4/32<br>192.228.79.201/32<br>192.33.4.12/32<br>128.8.10.90/32<br>192.203.230.10/32<br>192.5.5.241/32<br>192.112.36.4/32<br>128.63.2.53/32<br>192.36.148.17/32<br>192.58.128.30/32<br>193.0.14.129/32<br>198.32.64.12/32<br>202.12.27.33/32<br>+ for policy in '$POLICIES/*'<br>++ basename /etc/ipsec.d/policies/clear-or-private<br>+ base=clear-or-private<br>+ _________________________ ipsec/policies/clear-or-private<br>+ cat /etc/ipsec.d/policies/clear-or-private<br># This file defines the set of CIDRs (network/mask-length) to which<br># we will communicate in the clear, or, if the other side initiates IPSEC,<br># using encryption. This behaviour is also called "Opportunistic Responder".<br>#<br># See /usr/share/doc/openswan/policygroups.html for details.<br>#<br># $Id: clear-or-private.in,v 1.4 2003/02/17 02:22:15 mcr Exp $<br>#<br>+ for policy in '$POLICIES/*'<br>++ basename /etc/ipsec.d/policies/private<br>+ base=private<br>+ _________________________ ipsec/policies/private<br>+ cat /etc/ipsec.d/policies/private<br># This file defines the set of CIDRs (network/mask-length) to which<br># communication should always be private (i.e. encrypted).<br># See /usr/share/doc/openswan/policygroups.html for details.<br>#<br># $Id: private.in,v 1.4 2003/02/17 02:22:15 mcr Exp $<br>#<br>+ for policy in '$POLICIES/*'<br>++ basename /etc/ipsec.d/policies/private-or-clear<br>+ base=private-or-clear<br>+ _________________________ ipsec/policies/private-or-clear<br>+ cat /etc/ipsec.d/policies/private-or-clear<br># This file defines the set of CIDRs (network/mask-length) to which<br># communication should be private, if possible, but in the clear otherwise.<br>#<br># If the target has a TXT (later IPSECKEY) record that specifies<br># authentication material, we will require private (i.e. encrypted)<br># communications. If no such record is found, communications will be<br># in the clear.<br>#<br># See /usr/share/doc/openswan/policygroups.html for details.<br>#<br># $Id: private-or-clear.in,v 1.5 2003/02/17 02:22:15 mcr Exp $<br>#<br><br>0.0.0.0/0<br>+ _________________________ ipsec/ls-libdir<br>+ ls -l /usr/local/lib/ipsec<br>total 240<br>-rwxr-xr-x 1 root root 15848 Nov 7 15:40 _confread<br>-rwxr-xr-x 1 root root 15848 Nov 7 15:38 _confread.old<br>-rwxr-xr-x 1 root root 16894 Nov 7 15:40 _copyright<br>-rwxr-xr-x 1 root root 16894 Nov 7 15:38 _copyright.old<br>-rwxr-xr-x 1 root root 2379 Nov 7 15:40 _include<br>-rwxr-xr-x 1 root root 2379 Nov 7 15:38 _include.old<br>-rwxr-xr-x 1 root root 1475 Nov 7 15:40 _keycensor<br>-rwxr-xr-x 1 root root 1475 Nov 7 15:38 _keycensor.old<br>-rwxr-xr-x 1 root root 3586 Nov 7 15:40 _plutoload<br>-rwxr-xr-x 1 root root 3586 Nov 7 15:38 _plutoload.old<br>-rwxr-xr-x 1 root root 8069 Nov 7 15:40 _plutorun<br>-rwxr-xr-x 1 root root 8069 Nov 7 15:38 _plutorun.old<br>-rwxr-xr-x 1 root root 12480 Nov 7 15:40 _realsetup<br>-rwxr-xr-x 1 root root 12480 Nov 7 15:38 _realsetup.old<br>-rwxr-xr-x 1 root root 1975 Nov 7 15:40 _secretcensor<br>-rwxr-xr-x 1 root root 1975 Nov 7 15:38 _secretcensor.old<br>-rwxr-xr-x 1 root root 11027 Nov 7 15:40 _startklips<br>-rwxr-xr-x 1 root root 11027 Nov 7 15:38 _startklips.old<br>-rwxr-xr-x 1 root root 13918 Nov 7 15:40 _updown<br>-rwxr-xr-x 1 root root 13918 Nov 7 15:38 _updown.old<br>-rwxr-xr-x 1 root root 15746 Nov 7 15:40 _updown_x509<br>-rwxr-xr-x 1 root root 15746 Nov 7 15:38 _updown_x509.old<br>+ _________________________ ipsec/ls-execdir<br>+ ls -l /usr/local/libexec/ipsec<br>total 7656<br>-rwxr-xr-x 1 root root 33358 Nov 7 15:40 _pluto_adns<br>-rwxr-xr-x 1 root root 33358 Nov 7 15:38 _pluto_adns.old<br>-rwxr-xr-x 1 root root 18891 Nov 7 15:40 auto<br>-rwxr-xr-x 1 root root 18891 Nov 7 15:38 auto.old<br>-rwxr-xr-x 1 root root 11367 Nov 7 15:40 barf<br>-rwxr-xr-x 1 root root 11367 Nov 7 15:38 barf.old<br>-rwxr-xr-x 1 root root 816 Nov 7 15:40 calcgoo<br>-rwxr-xr-x 1 root root 816 Nov 7 15:38 calcgoo.old<br>-rwxr-xr-x 1 root root 238336 Nov 7 15:41 eroute<br>-rwxr-xr-x 1 root root 238336 Nov 7 15:40 eroute.old<br>-rwxr-xr-x 1 root root 77025 Nov 7 15:40 ikeping<br>-rwxr-xr-x 1 root root 77025 Nov 7 15:38 ikeping.old<br>-rwxr-xr-x 1 root root 153623 Nov 7 15:41 klipsdebug<br>-rwxr-xr-x 1 root root 153623 Nov 7 15:40 klipsdebug.old<br>-rwxr-xr-x 1 root root 1836 Nov 7 15:40 livetest<br>-rwxr-xr-x 1 root root 1836 Nov 7 15:38 livetest.old<br>-rwxr-xr-x 1 root root 2604 Nov 7 15:40 look<br>-rwxr-xr-x 1 root root 2604 Nov 7 15:38 look.old<br>-rwxr-xr-x 1 root root 7094 Nov 7 15:40 mailkey<br>-rwxr-xr-x 1 root root 7094 Nov 7 15:38 mailkey.old<br>-rwxr-xr-x 1 root root 16015 Nov 7 15:40 manual<br>-rwxr-xr-x 1 root root 16015 Nov 7 15:38 manual.old<br>-rwxr-xr-x 1 root root 1951 Nov 7 15:40 newhostkey<br>-rwxr-xr-x 1 root root 1951 Nov 7 15:38 newhostkey.old<br>-rwxr-xr-x 1 root root 130457 Nov 7 15:41 pf_key<br>-rwxr-xr-x 1 root root 130457 Nov 7 15:40 pf_key.old<br>-rwxr-xr-x 1 root root 2251641 Nov 7 15:40 pluto<br>-rwxr-xr-x 1 root root 2251641 Nov 7 15:38 pluto.old<br>-rwxr-xr-x 1 root root 28450 Nov 7 15:40 ranbits<br>-rwxr-xr-x 1 root root 28450 Nov 7 15:38 ranbits.old<br>-rwxr-xr-x 1 root root 66797 Nov 7 15:40 rsasigkey<br>-rwxr-xr-x 1 root root 66797 Nov 7 15:38 rsasigkey.old<br>-rwxr-xr-x 1 root root 766 Nov 7 15:40 secrets<br>-rwxr-xr-x 1 root root 766 Nov 7 15:38 secrets.old<br>lrwxrwxrwx 1 root root 22 Nov 7 15:40 setup -> /etc/rc.d/init.d/ipsec<br>-rwxr-xr-x 1 root root 1054 Nov 7 15:40 showdefaults<br>-rwxr-xr-x 1 root root 1054 Nov 7 15:38 showdefaults.old<br>-rwxr-xr-x 1 root root 4845 Nov 7 15:40 showhostkey<br>-rwxr-xr-x 1 root root 4845 Nov 7 15:38 showhostkey.old<br>-rwxr-xr-x 1 root root 391768 Nov 7 15:41 spi<br>-rwxr-xr-x 1 root root 391768 Nov 7 15:40 spi.old<br>-rwxr-xr-x 1 root root 191690 Nov 7 15:41 spigrp<br>-rwxr-xr-x 1 root root 191690 Nov 7 15:40 spigrp.old<br>-rwxr-xr-x 1 root root 34512 Nov 7 15:41 tncfg<br>-rwxr-xr-x 1 root root 34512 Nov 7 15:40 tncfg.old<br>-rwxr-xr-x 1 root root 13530 Nov 7 15:40 verify<br>-rwxr-xr-x 1 root root 13530 Nov 7 15:38 verify.old<br>-rwxr-xr-x 1 root root 195302 Nov 7 15:40 whack<br>-rwxr-xr-x 1 root root 195302 Nov 7 15:38 whack.old<br>+ _________________________ ipsec/updowns<br>++ ls /usr/local/libexec/ipsec<br>++ egrep updown<br>+ _________________________ /proc/net/dev<br>+ cat /proc/net/dev<br>Inter-| Receive | Transmit<br> face |bytes packets errs drop fifo frame compressed multicast|bytes packets errs drop fifo colls carrier compressed<br> eth0:2012722165 3111437 0 0 0 0 0 0 208777683 2877243 0 0 0 0 0 0<br> lo: 336 4 0 0 0 0 0 0 336 4 0 0 0 0 0 0<br>+ _________________________ /proc/net/route<br>+ cat /proc/net/route<br>Iface Destination Gateway Flags RefCnt Use Metric Mask MTU Window IRTT <br>eth0 01FFFF0A 00000000 0005 0 0 0 FFFFFFFF 0 0 0 <br>eth0 0000FEA9 00000000 0001 0 0 0 0000FFFF 0 0 0 <br>eth0 00000000 01FFFF0A 0003 0 0 0 00000000 0 0 0 <br>+ _________________________ /proc/sys/net/ipv4/ip_forward<br>+ cat /proc/sys/net/ipv4/ip_forward<br>0<br>+ _________________________ /proc/sys/net/ipv4/tcp_ecn<br>+ cat /proc/sys/net/ipv4/tcp_ecn<br>0<br>+ _________________________ /proc/sys/net/ipv4/conf/star-rp_filter<br>+ cd /proc/sys/net/ipv4/conf<br>+ egrep '^' all/rp_filter default/rp_filter eth0/rp_filter lo/rp_filter<br>all/rp_filter:0<br>default/rp_filter:1<br>eth0/rp_filter:1<br>lo/rp_filter:0<br>+ _________________________ /proc/sys/net/ipv4/conf/star-rp_filter<br>+ cd /proc/sys/net/ipv4/conf<br>+ egrep '^' all/rp_filter default/rp_filter eth0/rp_filter lo/rp_filter<br>all/rp_filter:0<br>default/rp_filter:1<br>eth0/rp_filter:1<br>lo/rp_filter:0<br>+ _________________________ /proc/sys/net/ipv4/conf/star-star-redirects<br>+ cd /proc/sys/net/ipv4/conf<br>+ egrep '^' all/accept_redirects all/secure_redirects all/send_redirects default/accept_redirects default/secure_redirects default/send_redirects eth0/accept_redirects eth0/secure_redirects eth0/send_redirects lo/accept_redirects lo/secure_redirects lo/send_redirects<br>all/accept_redirects:0<br>all/secure_redirects:1<br>all/send_redirects:0<br>default/accept_redirects:0<br>default/secure_redirects:1<br>default/send_redirects:0<br>eth0/accept_redirects:0<br>eth0/secure_redirects:1<br>eth0/send_redirects:0<br>lo/accept_redirects:0<br>lo/secure_redirects:1<br>lo/send_redirects:0<br>+ _________________________ /proc/sys/net/ipv4/tcp_window_scaling<br>+ cat /proc/sys/net/ipv4/tcp_window_scaling<br>1<br>+ _________________________ /proc/sys/net/ipv4/tcp_adv_win_scale<br>+ cat /proc/sys/net/ipv4/tcp_adv_win_scale<br>2<br>+ _________________________ uname-a<br>+ uname -a<br>Linux s15272210.onlinehome-server.info 2.6.16.53-070731a #1 SMP Tue Jul 31 10:46:54 CEST 2007 x86_64 x86_64 x86_64 GNU/Linux<br>+ _________________________ config-built-with<br>+ test -r /proc/config_built_with<br>+ _________________________ distro-release<br>+ for distro in /etc/redhat-release /etc/debian-release /etc/SuSE-release /etc/mandrake-release /etc/mandriva-release /etc/gentoo-release<br>+ test -f /etc/redhat-release<br>+ cat /etc/redhat-release<br>Fedora Core release 6 (Zod)<br>+ for distro in /etc/redhat-release /etc/debian-release /etc/SuSE-release /etc/mandrake-release /etc/mandriva-release /etc/gentoo-release<br>+ test -f /etc/debian-release<br>+ for distro in /etc/redhat-release /etc/debian-release /etc/SuSE-release /etc/mandrake-release /etc/mandriva-release /etc/gentoo-release<br>+ test -f /etc/SuSE-release<br>+ for distro in /etc/redhat-release /etc/debian-release /etc/SuSE-release /etc/mandrake-release /etc/mandriva-release /etc/gentoo-release<br>+ test -f /etc/mandrake-release<br>+ for distro in /etc/redhat-release /etc/debian-release /etc/SuSE-release /etc/mandrake-release /etc/mandriva-release /etc/gentoo-release<br>+ test -f /etc/mandriva-release<br>+ for distro in /etc/redhat-release /etc/debian-release /etc/SuSE-release /etc/mandrake-release /etc/mandriva-release /etc/gentoo-release<br>+ test -f /etc/gentoo-release<br>+ _________________________ /proc/net/ipsec_version<br>+ test -r /proc/net/ipsec_version<br>+ test -r /proc/net/pfkey<br>++ uname -r<br>+ echo 'NETKEY (2.6.16.53-070731a) support detected '<br>NETKEY (2.6.16.53-070731a) support detected<br>+ _________________________ ipfwadm<br>+ test -r /sbin/ipfwadm<br>+ 'no old-style linux 1.x/2.0 ipfwadm firewall support'<br>/usr/local/libexec/ipsec/barf: line 305: no old-style linux 1.x/2.0 ipfwadm firewall support: No such file or directory<br>+ _________________________ ipchains<br>+ test -r /sbin/ipchains<br>+ echo 'no old-style linux 2.0 ipchains firewall support'<br>no old-style linux 2.0 ipchains firewall support<br>+ _________________________ iptables<br>+ test -r /sbin/iptables<br>+ iptables -L -v -n<br>Chain INPUT (policy ACCEPT 2339K packets, 1467M bytes)<br> pkts bytes target prot opt in out source destination <br><br>Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)<br> pkts bytes target prot opt in out source destination <br><br>Chain OUTPUT (policy ACCEPT 2161K packets, 118M bytes)<br> pkts bytes target prot opt in out source destination <br>+ _________________________ iptables-nat<br>+ iptables -t nat -L -v -n<br>Chain PREROUTING (policy ACCEPT 1595 packets, 155K bytes)<br> pkts bytes target prot opt in out source destination <br><br>Chain POSTROUTING (policy ACCEPT 39 packets, 2592 bytes)<br> pkts bytes target prot opt in out source destination <br><br>Chain OUTPUT (policy ACCEPT 39 packets, 2592 bytes)<br> pkts bytes target prot opt in out source destination <br>+ _________________________ iptables-mangle<br>+ iptables -t mangle -L -v -n<br>Chain PREROUTING (policy ACCEPT 2339K packets, 1467M bytes)<br> pkts bytes target prot opt in out source destination <br><br>Chain INPUT (policy ACCEPT 2339K packets, 1467M bytes)<br> pkts bytes target prot opt in out source destination <br><br>Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)<br> pkts bytes target prot opt in out source destination <br><br>Chain OUTPUT (policy ACCEPT 2161K packets, 118M bytes)<br> pkts bytes target prot opt in out source destination <br><br>Chain POSTROUTING (policy ACCEPT 2161K packets, 118M bytes)<br> pkts bytes target prot opt in out source destination <br>+ _________________________ /proc/modules<br>+ test -f /proc/modules<br>+ cat /proc/modules<br>+ _________________________ /proc/meminfo<br>+ cat /proc/meminfo<br>MemTotal: 8240456 kB<br>MemFree: 3208664 kB<br>Buffers: 18808 kB<br>Cached: 4532976 kB<br>SwapCached: 0 kB<br>Active: 2868100 kB<br>Inactive: 1913676 kB<br>HighTotal: 0 kB<br>HighFree: 0 kB<br>LowTotal: 8240456 kB<br>LowFree: 3208664 kB<br>SwapTotal: 1953784 kB<br>SwapFree: 1953784 kB<br>Dirty: 388 kB<br>Writeback: 0 kB<br>Mapped: 249668 kB<br>Slab: 224412 kB<br>CommitLimit: 6074012 kB<br>Committed_AS: 908592 kB<br>PageTables: 10968 kB<br>VmallocTotal: 34359738367 kB<br>VmallocUsed: 1652 kB<br>VmallocChunk: 34359736707 kB<br>+ _________________________ /proc/net/ipsec-ls<br>+ test -f /proc/net/ipsec_version<br>+ _________________________ usr/src/linux/.config<br>+ test -f /proc/config.gz<br>+ zcat /proc/config.gz<br>+ egrep 'CONFIG_IPSEC|CONFIG_KLIPS|CONFIG_NET_KEY|CONFIG_INET|CONFIG_IP|CONFIG_HW_RANDOM|CONFIG_CRYPTO_DEV|_XFRM'<br>CONFIG_XFRM=y<br># CONFIG_XFRM_USER is not set<br>CONFIG_NET_KEY=y<br>CONFIG_INET=y<br># CONFIG_IP_MULTICAST is not set<br># CONFIG_IP_ADVANCED_ROUTER is not set<br>CONFIG_IP_FIB_HASH=y<br># CONFIG_IP_PNP is not set<br># CONFIG_INET_AH is not set<br># CONFIG_INET_ESP is not set<br># CONFIG_INET_IPCOMP is not set<br># CONFIG_INET_TUNNEL is not set<br>CONFIG_INET_DIAG=y<br>CONFIG_INET_TCP_DIAG=y<br># CONFIG_IP_VS is not set<br># CONFIG_IPV6 is not set<br>CONFIG_IP_NF_CONNTRACK=y<br>CONFIG_IP_NF_CT_ACCT=y<br>CONFIG_IP_NF_CONNTRACK_MARK=y<br>CONFIG_IP_NF_CONNTRACK_EVENTS=y<br>CONFIG_IP_NF_CT_PROTO_SCTP=y<br>CONFIG_IP_NF_FTP=y<br>CONFIG_IP_NF_IRC=y<br>CONFIG_IP_NF_NETBIOS_NS=y<br>CONFIG_IP_NF_TFTP=y<br>CONFIG_IP_NF_AMANDA=y<br>CONFIG_IP_NF_PPTP=y<br>CONFIG_IP_NF_QUEUE=y<br>CONFIG_IP_NF_IPTABLES=y<br>CONFIG_IP_NF_MATCH_IPRANGE=y<br>CONFIG_IP_NF_MATCH_MULTIPORT=y<br>CONFIG_IP_NF_MATCH_TOS=y<br>CONFIG_IP_NF_MATCH_RECENT=y<br>CONFIG_IP_NF_MATCH_ECN=y<br>CONFIG_IP_NF_MATCH_DSCP=y<br>CONFIG_IP_NF_MATCH_AH_ESP=y<br>CONFIG_IP_NF_MATCH_TTL=y<br>CONFIG_IP_NF_MATCH_OWNER=y<br>CONFIG_IP_NF_MATCH_ADDRTYPE=y<br>CONFIG_IP_NF_MATCH_HASHLIMIT=y<br>CONFIG_IP_NF_MATCH_POLICY=y<br>CONFIG_IP_NF_FILTER=y<br>CONFIG_IP_NF_TARGET_REJECT=y<br>CONFIG_IP_NF_TARGET_LOG=y<br># CONFIG_IP_NF_TARGET_ULOG is not set<br>CONFIG_IP_NF_TARGET_TCPMSS=y<br>CONFIG_IP_NF_NAT=y<br>CONFIG_IP_NF_NAT_NEEDED=y<br>CONFIG_IP_NF_TARGET_MASQUERADE=y<br>CONFIG_IP_NF_TARGET_REDIRECT=y<br>CONFIG_IP_NF_TARGET_NETMAP=y<br># CONFIG_IP_NF_TARGET_SAME is not set<br># CONFIG_IP_NF_NAT_SNMP_BASIC is not set<br>CONFIG_IP_NF_NAT_IRC=y<br>CONFIG_IP_NF_NAT_FTP=y<br>CONFIG_IP_NF_NAT_TFTP=y<br>CONFIG_IP_NF_NAT_AMANDA=y<br>CONFIG_IP_NF_NAT_PPTP=y<br>CONFIG_IP_NF_MANGLE=y<br>CONFIG_IP_NF_TARGET_TOS=y<br>CONFIG_IP_NF_TARGET_ECN=y<br>CONFIG_IP_NF_TARGET_DSCP=y<br>CONFIG_IP_NF_TARGET_TTL=y<br># CONFIG_IP_NF_TARGET_CLUSTERIP is not set<br># CONFIG_IP_NF_RAW is not set<br>CONFIG_IP_NF_ARPTABLES=y<br>CONFIG_IP_NF_ARPFILTER=y<br>CONFIG_IP_NF_ARP_MANGLE=y<br># CONFIG_IP_DCCP is not set<br># CONFIG_IP_SCTP is not set<br># CONFIG_IPX is not set<br># CONFIG_IPMI_HANDLER is not set<br>CONFIG_HW_RANDOM=y<br>+ _________________________ etc/syslog.conf<br>+ cat /etc/syslog.conf<br># Log all kernel messages to the console.<br># Logging much else clutters up the screen.<br>#kern.* /dev/console<br><br># Log anything (except mail) of level info or higher.<br># Don't log private authentication messages!<br>*.info;mail.none;authpriv.none;cron.none /var/log/messages<br><br># The authpriv file has restricted access.<br>authpriv.* /var/log/secure<br><br># Log all the mail messages in one place.<br>mail.* -/usr/local/psa/var/log/maillog<br><br><br># Log cron stuff<br>cron.* /var/log/cron<br><br># Everybody gets emergency messages<br>*.emerg *<br><br># Save news errors of level crit and higher in a special file.<br>uucp,news.crit /var/log/spooler<br><br># Save boot messages also to boot.log<br>local7.* /var/log/boot.log<br>+ _________________________ etc/syslog-ng/syslog-ng.conf<br>+ cat /etc/syslog-ng/syslog-ng.conf<br>cat: /etc/syslog-ng/syslog-ng.conf: No such file or directory<br>+ _________________________ etc/resolv.conf<br>+ cat /etc/resolv.conf<br>; generated by /sbin/dhclient-script<br>search onlinehome-server.info<br>nameserver 87.106.135.251<br>nameserver 195.20.224.99<br>nameserver 195.20.224.234<br>+ _________________________ lib/modules-ls<br>+ ls -ltr /lib/modules<br>total 16<br>drwxr-xr-x 3 root root 4096 Dec 16 2006 2.6.16.27-061216a<br>drwxr-xr-x 6 root root 4096 Apr 26 2007 2.6.20-1.2944.fc6<br>drwxr-xr-x 3 root root 4096 Jul 31 12:33 2.6.16.53-070731a<br>drwxr-xr-x 6 root root 4096 Sep 23 16:13 2.6.22.5-49.fc6<br>+ _________________________ /proc/ksyms-netif_rx<br>+ test -r /proc/ksyms<br>+ test -r /proc/kallsyms<br>+ egrep netif_rx /proc/kallsyms<br>ffffffff804264f0 T netif_rx<br>ffffffff80426660 T netif_rx_ni<br>+ _________________________ lib/modules-netif_rx<br>+ modulegoo kernel/net/ipv4/ipip.o netif_rx<br>+ set +x<br>2.6.16.27-061216a:<br>2.6.16.53-070731a:<br>2.6.20-1.2944.fc6:<br>2.6.22.5-49.fc6:<br>+ _________________________ kern.debug<br>+ test -f /var/log/kern.debug<br>+ _________________________ klog<br>+ sed -n '14867,$p' /var/log/messages<br>+ egrep -i 'ipsec|klips|pluto'<br>+ case "$1" in<br>+ cat<br>Nov 7 15:39:09 s15272210 ipsec_setup: Starting Openswan IPsec U2.4.9/K2.6.16.53-070731a...<br>Nov 7 15:39:09 s15272210 ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>Nov 7 15:39:09 s15272210 ipsec__plutorun: !pluto failure!: exited with error status 1<br>Nov 7 15:39:09 s15272210 ipsec__plutorun: restarting IPsec after pause...<br>Nov 7 15:39:11 s15272210 ipsec_setup: Openswan IPsec apparently already running, start aborted<br>Nov 7 15:39:19 s15272210 ipsec_setup: ...Openswan IPsec stopped<br>Nov 7 15:39:19 s15272210 ipsec_setup: Stopping Openswan IPsec...<br>Nov 7 15:39:19 s15272210 ipsec_setup: NETKEY on eth0 87.106.135.51/255.255.255.255 broadcast 87.106.135.51<br>Nov 7 15:39:19 s15272210 ipsec_setup: ...Openswan IPsec started<br>Nov 7 15:39:19 s15272210 ipsec_setup: Restarting Openswan IPsec U2.4.9/K2.6.16.53-070731a...<br>Nov 7 15:39:19 s15272210 ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>Nov 7 15:39:19 s15272210 ipsec__plutorun: !pluto failure!: exited with error status 1<br>Nov 7 15:39:19 s15272210 ipsec__plutorun: restarting IPsec after pause...<br>Nov 7 15:39:30 s15272210 ipsec_setup: ...Openswan IPsec stopped<br>Nov 7 15:39:30 s15272210 ipsec_setup: Stopping Openswan IPsec...<br>Nov 7 15:39:30 s15272210 ipsec_setup: NETKEY on eth0 87.106.135.51/255.255.255.255 broadcast 87.106.135.51<br>Nov 7 15:39:30 s15272210 ipsec_setup: ...Openswan IPsec started<br>Nov 7 15:39:30 s15272210 ipsec_setup: Restarting Openswan IPsec U2.4.9/K2.6.16.53-070731a...<br>Nov 7 15:39:30 s15272210 ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>Nov 7 15:39:30 s15272210 ipsec__plutorun: !pluto failure!: exited with error status 1<br>Nov 7 15:39:30 s15272210 ipsec__plutorun: restarting IPsec after pause...<br>Nov 7 15:39:40 s15272210 ipsec_setup: ...Openswan IPsec stopped<br>Nov 7 15:39:40 s15272210 ipsec_setup: Stopping Openswan IPsec...<br>Nov 7 15:39:40 s15272210 ipsec_setup: NETKEY on eth0 87.106.135.51/255.255.255.255 broadcast 87.106.135.51<br>Nov 7 15:39:40 s15272210 ipsec_setup: ...Openswan IPsec started<br>Nov 7 15:39:40 s15272210 ipsec_setup: Restarting Openswan IPsec U2.4.9/K2.6.16.53-070731a...<br>Nov 7 15:39:40 s15272210 ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>Nov 7 15:39:40 s15272210 ipsec__plutorun: !pluto failure!: exited with error status 1<br>Nov 7 15:39:40 s15272210 ipsec__plutorun: restarting IPsec after pause...<br>Nov 7 15:39:50 s15272210 ipsec_setup: ...Openswan IPsec stopped<br>Nov 7 15:39:50 s15272210 ipsec_setup: Stopping Openswan IPsec...<br>Nov 7 15:39:50 s15272210 ipsec_setup: NETKEY on eth0 87.106.135.51/255.255.255.255 broadcast 87.106.135.51<br>Nov 7 15:39:50 s15272210 ipsec_setup: ...Openswan IPsec started<br>Nov 7 15:39:50 s15272210 ipsec_setup: Restarting Openswan IPsec U2.4.9/K2.6.16.53-070731a...<br>Nov 7 15:39:50 s15272210 ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>Nov 7 15:39:50 s15272210 ipsec__plutorun: !pluto failure!: exited with error status 1<br>Nov 7 15:39:50 s15272210 ipsec__plutorun: restarting IPsec after pause...<br>Nov 7 15:40:00 s15272210 ipsec_setup: ...Openswan IPsec stopped<br>Nov 7 15:40:00 s15272210 ipsec_setup: Stopping Openswan IPsec...<br>Nov 7 15:40:01 s15272210 ipsec_setup: NETKEY on eth0 87.106.135.51/255.255.255.255 broadcast 87.106.135.51<br>Nov 7 15:40:01 s15272210 ipsec_setup: ...Openswan IPsec started<br>Nov 7 15:40:01 s15272210 ipsec_setup: Restarting Openswan IPsec U2.4.9/K2.6.16.53-070731a...<br>Nov 7 15:40:01 s15272210 ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>Nov 7 15:40:01 s15272210 ipsec__plutorun: !pluto failure!: exited with error status 1<br>Nov 7 15:40:01 s15272210 ipsec__plutorun: restarting IPsec after pause...<br>Nov 7 15:40:11 s15272210 ipsec_setup: ...Openswan IPsec stopped<br>Nov 7 15:40:11 s15272210 ipsec_setup: Stopping Openswan IPsec...<br>Nov 7 15:40:11 s15272210 ipsec_setup: NETKEY on eth0 87.106.135.51/255.255.255.255 broadcast 87.106.135.51<br>Nov 7 15:40:11 s15272210 ipsec_setup: ...Openswan IPsec started<br>Nov 7 15:40:11 s15272210 ipsec_setup: Restarting Openswan IPsec U2.4.9/K2.6.16.53-070731a...<br>Nov 7 15:40:11 s15272210 ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>Nov 7 15:40:11 s15272210 ipsec__plutorun: !pluto failure!: exited with error status 1<br>Nov 7 15:40:11 s15272210 ipsec__plutorun: restarting IPsec after pause...<br>Nov 7 15:40:21 s15272210 ipsec_setup: ...Openswan IPsec stopped<br>Nov 7 15:40:21 s15272210 ipsec_setup: Stopping Openswan IPsec...<br>Nov 7 15:40:21 s15272210 ipsec_setup: NETKEY on eth0 87.106.135.51/255.255.255.255 broadcast 87.106.135.51<br>Nov 7 15:40:21 s15272210 ipsec_setup: ...Openswan IPsec started<br>Nov 7 15:40:21 s15272210 ipsec_setup: Restarting Openswan IPsec U2.4.9/K2.6.16.53-070731a...<br>Nov 7 15:40:21 s15272210 ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>Nov 7 15:40:21 s15272210 ipsec__plutorun: !pluto failure!: exited with error status 1<br>Nov 7 15:40:21 s15272210 ipsec__plutorun: restarting IPsec after pause...<br>Nov 7 15:40:31 s15272210 ipsec_setup: ...Openswan IPsec stopped<br>Nov 7 15:40:31 s15272210 ipsec_setup: Stopping Openswan IPsec...<br>Nov 7 15:40:31 s15272210 ipsec_setup: NETKEY on eth0 87.106.135.51/255.255.255.255 broadcast 87.106.135.51<br>Nov 7 15:40:32 s15272210 ipsec_setup: ...Openswan IPsec started<br>Nov 7 15:40:32 s15272210 ipsec_setup: Restarting Openswan IPsec U2.4.9/K2.6.16.53-070731a...<br>Nov 7 15:40:32 s15272210 ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>Nov 7 15:40:32 s15272210 ipsec__plutorun: !pluto failure!: exited with error status 1<br>Nov 7 15:40:32 s15272210 ipsec__plutorun: restarting IPsec after pause...<br>Nov 7 15:40:42 s15272210 ipsec_setup: ...Openswan IPsec stopped<br>Nov 7 15:40:42 s15272210 ipsec_setup: Stopping Openswan IPsec...<br>Nov 7 15:40:42 s15272210 ipsec_setup: NETKEY on eth0 87.106.135.51/255.255.255.255 broadcast 87.106.135.51<br>Nov 7 15:40:42 s15272210 ipsec_setup: ...Openswan IPsec started<br>Nov 7 15:40:42 s15272210 ipsec_setup: Restarting Openswan IPsec U2.4.9/K2.6.16.53-070731a...<br>Nov 7 15:40:42 s15272210 ipsec__plutorun: whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")<br>Nov 7 15:40:42 s15272210 ipsec__plutorun: !pluto failure!: exited with error status 1<br>Nov 7 15:40:42 s15272210 ipsec__plutorun: restarting IPsec after pause...<br>Nov 7 15:40:52 s15272210 ipsec_setup: ...Openswan IPsec stopped<br>Nov 7 15:40:52 s15272210 ipsec_setup: Stopping Openswan IPsec...</span></span></font></div><div><font class="Apple-style-span" face="Times" size="3"><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><br class="webkit-block-placeholder"></span></font></div><div><font class="Apple-style-span" face="Times" size="3"><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><br class="webkit-block-placeholder"></span></font></div><div><font class="Apple-style-span" face="Times" size="3"><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;">....</span></font></div><div><font class="Apple-style-span" face="Times" size="3"><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><br class="webkit-block-placeholder"></span></font></div><div><font class="Apple-style-span" face="Times" size="3"><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><br class="webkit-block-placeholder"></span></font></div><div><font class="Apple-style-span" face="Times" size="3"><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 2px; -webkit-border-vertical-spacing: 2px;"><br class="webkit-block-placeholder"></span></font></div></body></html>