Feb 25 21:46:20 HostName ipsec_setup: Starting Openswan IPsec 2.4.11... Feb 25 21:46:20 HostName NET: Registered protocol family 15 Feb 25 21:46:20 HostName Initializing XFRM netlink socket Feb 25 21:46:20 HostName ipsec_setup: NETKEY on eth1 192.168.1.236/255.255.255.0 broadcast 192.168.1.255 Feb 25 21:46:20 HostName ipsec__plutorun: Starting Pluto subsystem... Feb 25 21:46:20 HostName ipsec_setup: ...Openswan IPsec started Feb 25 21:46:20 HostName pluto[16427]: Starting Pluto (Openswan Version 2.4.11 SMARTCARD PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR; Vendor ID OEOurw@HzP@f) Feb 25 21:46:20 HostName pluto[16427]: Setting NAT-Traversal port-4500 floating to on Feb 25 21:46:20 HostName pluto[16427]: port floating activation criteria nat_t=1/port_fload=1 Feb 25 21:46:20 HostName pluto[16427]: including NAT-Traversal patch (Version 0.6c) Feb 25 21:46:20 HostName pluto[16427]: | opening /dev/urandom Feb 25 21:46:20 HostName pluto[16427]: | inserting event EVENT_REINIT_SECRET, timeout in 3600 seconds Feb 25 21:46:20 HostName pluto[16427]: | inserting event EVENT_PENDING_PHASE2, timeout in 120 seconds Feb 25 21:46:20 HostName pluto[16427]: ike_alg_register_enc(): Activating OAKLEY_TWOFISH_CBC_SSH: Ok (ret=0) Feb 25 21:46:20 HostName pluto[16427]: ike_alg_register_enc(): Activating OAKLEY_TWOFISH_CBC: Ok (ret=0) Feb 25 21:46:20 HostName pluto[16427]: ike_alg_register_enc(): Activating OAKLEY_SERPENT_CBC: Ok (ret=0) Feb 25 21:46:20 HostName pluto[16427]: ike_alg_register_enc(): Activating OAKLEY_AES_CBC: Ok (ret=0) Feb 25 21:46:20 HostName pluto[16427]: ike_alg_register_enc(): Activating OAKLEY_BLOWFISH_CBC: Ok (ret=0) Feb 25 21:46:20 HostName pluto[16427]: ike_alg_register_hash(): Activating OAKLEY_SHA2_512: Ok (ret=0) Feb 25 21:46:20 HostName pluto[16427]: ike_alg_register_hash(): Activating OAKLEY_SHA2_256: Ok (ret=0) Feb 25 21:46:20 HostName pluto[16427]: no helpers will be started, all cryptographic operations will be done inline Feb 25 21:46:20 HostName pluto[16427]: Using NETKEY IPsec interface code on 2.6.23-tuxonice-r9 Feb 25 21:46:21 HostName pluto[16427]: Changing to directory '/etc/ipsec/ipsec.d/cacerts' Feb 25 21:46:21 HostName pluto[16427]: Changing to directory '/etc/ipsec/ipsec.d/aacerts' Feb 25 21:46:21 HostName pluto[16427]: Changing to directory '/etc/ipsec/ipsec.d/ocspcerts' Feb 25 21:46:21 HostName pluto[16427]: Changing to directory '/etc/ipsec/ipsec.d/crls' Feb 25 21:46:21 HostName pluto[16427]: Warning: empty directory Feb 25 21:46:21 HostName pluto[16427]: | inserting event EVENT_LOG_DAILY, timeout in 8019 seconds Feb 25 21:46:21 HostName pluto[16427]: | next event EVENT_PENDING_PHASE2 in 119 seconds Feb 25 21:46:26 HostName pluto[16427]: | Feb 25 21:46:26 HostName pluto[16427]: | *received whack message Feb 25 21:46:26 HostName pluto[16427]: | Added new connection Intranet with policy PSK+ENCRYPT+COMPRESS+TUNNEL+MODECFGPULL+AGGRESSIVE Feb 25 21:46:26 HostName pluto[16427]: | from whack: got --ike=3des-sha1-modp1024 Feb 25 21:46:26 HostName pluto[16427]: | ike string values: 3DES_CBC(5)_000-SHA1(2)-MODP1024(2); flags=strict Feb 25 21:46:26 HostName pluto[16427]: | counting wild cards for !@#$% is 0 Feb 25 21:46:26 HostName pluto[16427]: | counting wild cards for (none) is 15 Feb 25 21:46:26 HostName pluto[16427]: | alg_info_addref() alg_info->ref_cnt=1 Feb 25 21:46:26 HostName pluto[16427]: | alg_info_addref() alg_info->ref_cnt=2 Feb 25 21:46:26 HostName pluto[16427]: added connection description "Intranet" Feb 25 21:46:26 HostName pluto[16427]: | 192.168.1.236[!@#$%,MC+XC+S=C]...[MS+XS+S=C] Feb 25 21:46:26 HostName pluto[16427]: | ike_life: 864000s; ipsec_life: 28800s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 0; policy: PSK+ENCRYPT+COMPRESS+TUNNEL+MODECFGPULL+AGGRESSIVE Feb 25 21:46:26 HostName pluto[16427]: | next event EVENT_PENDING_PHASE2 in 114 seconds Feb 25 21:46:26 HostName pluto[16427]: | Feb 25 21:46:26 HostName pluto[16427]: | *received whack message Feb 25 21:46:26 HostName pluto[16427]: listening for IKE messages Feb 25 21:46:26 HostName pluto[16427]: | found eth0 with address 192.168.0.2 Feb 25 21:46:26 HostName pluto[16427]: | found lo with address 127.0.0.1 Feb 25 21:46:26 HostName pluto[16427]: | found eth1 with address 192.168.1.236 Feb 25 21:46:26 HostName pluto[16427]: adding interface eth1/eth1 192.168.1.236:500 Feb 25 21:46:26 HostName pluto[16427]: adding interface eth1/eth1 192.168.1.236:4500 Feb 25 21:46:26 HostName pluto[16427]: adding interface lo/lo 127.0.0.1:500 Feb 25 21:46:26 HostName pluto[16427]: adding interface lo/lo 127.0.0.1:4500 Feb 25 21:46:26 HostName pluto[16427]: adding interface eth0/eth0 192.168.0.2:500 Feb 25 21:46:26 HostName pluto[16427]: adding interface eth0/eth0 192.168.0.2:4500 Feb 25 21:46:26 HostName pluto[16427]: | could not open /proc/net/if_inet6 Feb 25 21:46:26 HostName pluto[16427]: loading secrets from "/etc/ipsec/ipsec.secrets" Feb 25 21:46:26 HostName pluto[16427]: | loaded private key for keyid: PPK_RSA:AQOKWPV3L Feb 25 21:46:26 HostName pluto[16427]: | next event EVENT_PENDING_PHASE2 in 114 seconds Feb 25 21:46:47 HostName pluto[16427]: | Feb 25 21:46:47 HostName pluto[16427]: | *received whack message Feb 25 21:46:47 HostName pluto[16427]: | processing connection Intranet Feb 25 21:46:47 HostName pluto[16427]: | empty esp_info, returning empty Feb 25 21:46:47 HostName pluto[16427]: | creating state object #1 at 0x8109800 Feb 25 21:46:47 HostName pluto[16427]: | processing connection Intranet Feb 25 21:46:47 HostName pluto[16427]: | ICOOKIE: 37 ff fd 44 a8 13 ec f4 Feb 25 21:46:47 HostName pluto[16427]: | RCOOKIE: 00 00 00 00 00 00 00 00 Feb 25 21:46:47 HostName pluto[16427]: | peer: 87 f4 4f fe Feb 25 21:46:47 HostName pluto[16427]: | state hash entry 26 Feb 25 21:46:47 HostName pluto[16427]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #1 Feb 25 21:46:47 HostName pluto[16427]: | using transform (5,2,2,0) Feb 25 21:46:47 HostName pluto[16427]: | initiating aggressive mode with IKE=E=5-H=2-M=2 Feb 25 21:46:47 HostName pluto[16427]: | Queuing pending Quick Mode with "Intranet" Feb 25 21:46:47 HostName pluto[16427]: "Intranet" #1: initiating Aggressive Mode #1, connection "Intranet" Feb 25 21:46:47 HostName pluto[16427]: | helper -1 doing build_kenonce op id: 0 Feb 25 21:46:47 HostName pluto[16427]: | processing connection Intranet Feb 25 21:46:47 HostName pluto[16427]: | using transform (5,2,2,0) Feb 25 21:46:47 HostName pluto[16427]: | sending 384 bytes for aggr_outI1 through eth1:500 to :500: Feb 25 21:46:47 HostName pluto[16427]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #1 Feb 25 21:46:47 HostName pluto[16427]: | complete state transition with STF_IGNORE Feb 25 21:46:47 HostName pluto[16427]: | next event EVENT_RETRANSMIT in 10 seconds for #1 Feb 25 21:46:47 HostName pluto[16427]: | Feb 25 21:46:47 HostName pluto[16427]: | *received 308 bytes from :500 on eth1 (port=500) Feb 25 21:46:47 HostName pluto[16427]: | processing packet with exchange type=ISAKMP_XCHG_AGGR (4) Feb 25 21:46:47 HostName pluto[16427]: | ICOOKIE: 37 ff fd 44 a8 13 ec f4 Feb 25 21:46:47 HostName pluto[16427]: | RCOOKIE: 11 40 78 55 02 b1 b6 c2 Feb 25 21:46:47 HostName pluto[16427]: | peer: 87 f4 4f fe Feb 25 21:46:47 HostName pluto[16427]: | state hash entry 9 Feb 25 21:46:47 HostName pluto[16427]: | state object not found Feb 25 21:46:47 HostName pluto[16427]: | ICOOKIE: 37 ff fd 44 a8 13 ec f4 Feb 25 21:46:47 HostName pluto[16427]: | RCOOKIE: 00 00 00 00 00 00 00 00 Feb 25 21:46:47 HostName pluto[16427]: | peer: 87 f4 4f fe Feb 25 21:46:47 HostName pluto[16427]: | state hash entry 26 Feb 25 21:46:47 HostName pluto[16427]: | peer and cookies match on #1, provided msgid 00000000 vs 00000000 Feb 25 21:46:47 HostName pluto[16427]: | state object #1 found, in STATE_AGGR_I1 Feb 25 21:46:47 HostName pluto[16427]: | processing connection Intranet Feb 25 21:46:47 HostName pluto[16427]: "Intranet" #1: ignoring unknown Vendor ID payload [4c5647392e312e3235353a425249434b3a392e312e323535] Feb 25 21:46:47 HostName pluto[16427]: "Intranet" #1: Aggressive mode peer ID is ID_IPV4_ADDR: '' Feb 25 21:46:47 HostName pluto[16427]: | offered CA: '%none' Feb 25 21:46:47 HostName pluto[16427]: | started looking for secret for !@#$%-> of kind PPK_PSK Feb 25 21:46:47 HostName pluto[16427]: | actually looking for secret for !@#$%-> of kind PPK_PSK Feb 25 21:46:47 HostName pluto[16427]: | 1: compared PSK !@#$% to !@#$% / -> 4 Feb 25 21:46:47 HostName pluto[16427]: | best_match 0>5 best=0x8108ae0 (line=1) Feb 25 21:46:47 HostName pluto[16427]: | concluding with best_match=5 best=0x8108ae0 (lineno=1) Feb 25 21:46:47 HostName pluto[16427]: | ICOOKIE: 37 ff fd 44 a8 13 ec f4 Feb 25 21:46:47 HostName pluto[16427]: | RCOOKIE: 00 00 00 00 00 00 00 00 Feb 25 21:46:47 HostName pluto[16427]: | peer: 87 f4 4f fe Feb 25 21:46:47 HostName pluto[16427]: | state hash entry 26 Feb 25 21:46:47 HostName pluto[16427]: | ICOOKIE: 37 ff fd 44 a8 13 ec f4 Feb 25 21:46:47 HostName pluto[16427]: | RCOOKIE: 11 40 78 55 02 b1 b6 c2 Feb 25 21:46:47 HostName pluto[16427]: | peer: 87 f4 4f fe Feb 25 21:46:47 HostName pluto[16427]: | state hash entry 9 Feb 25 21:46:47 HostName pluto[16427]: | started looking for secret for !@#$%-> of kind PPK_PSK Feb 25 21:46:47 HostName pluto[16427]: | actually looking for secret for !@#$%-> of kind PPK_PSK Feb 25 21:46:47 HostName pluto[16427]: | 1: compared PSK !@#$% to !@#$% / -> 4 Feb 25 21:46:47 HostName pluto[16427]: | best_match 0>5 best=0x8108ae0 (line=1) Feb 25 21:46:47 HostName pluto[16427]: | concluding with best_match=5 best=0x8108ae0 (lineno=1) Feb 25 21:46:47 HostName pluto[16427]: "Intranet" #1: Aggressive mode peer ID is ID_IPV4_ADDR: '' Feb 25 21:46:47 HostName pluto[16427]: "Intranet" #1: received Hash Payload does not match computed value Feb 25 21:46:47 HostName pluto[16427]: | complete state transition with (null) Feb 25 21:46:47 HostName pluto[16427]: "Intranet" #1: sending notification INVALID_HASH_INFORMATION to :500 Feb 25 21:46:47 HostName pluto[16427]: | sending 40 bytes for notification packet through eth1:500 to :500: Feb 25 21:46:47 HostName pluto[16427]: | state transition function for STATE_AGGR_I1 failed: INVALID_HASH_INFORMATION Feb 25 21:46:47 HostName pluto[16427]: | next event EVENT_PENDING_PHASE2 in 93 seconds Feb 25 21:46:53 HostName pluto[16427]: | Feb 25 21:46:53 HostName pluto[16427]: | *received whack message Feb 25 21:46:53 HostName pluto[16427]: | processing connection Intranet Feb 25 21:46:53 HostName pluto[16427]: "Intranet": terminating SAs using this connection Feb 25 21:46:53 HostName pluto[16427]: | processing connection Intranet Feb 25 21:46:53 HostName pluto[16427]: "Intranet" #1: deleting state (STATE_AGGR_I1) Feb 25 21:46:53 HostName pluto[16427]: | deleting state #1 Feb 25 21:46:53 HostName pluto[16427]: | processing connection Intranet Feb 25 21:46:53 HostName pluto[16427]: | ICOOKIE: 37 ff fd 44 a8 13 ec f4 Feb 25 21:46:53 HostName pluto[16427]: | RCOOKIE: 11 40 78 55 02 b1 b6 c2 Feb 25 21:46:53 HostName pluto[16427]: | peer: 87 f4 4f fe Feb 25 21:46:53 HostName pluto[16427]: | state hash entry 9 Feb 25 21:46:53 HostName pluto[16427]: | next event EVENT_PENDING_PHASE2 in 87 seconds