Dec 8 14:15:52 localhost pluto[27501]: | e6 7e 0b 7e 63 af 8b fe 55 48 2c b9 d5 a0 a1 13 Dec 8 14:15:52 localhost pluto[27501]: | 7a 87 9e 43 52 62 70 3a 9b bb d7 b9 0c 4a c9 dc Dec 8 14:15:52 localhost pluto[27501]: | b6 72 c2 f2 32 77 bb 8b 99 c2 05 2b d0 ce 62 aa Dec 8 14:15:52 localhost pluto[27501]: | 14 00 00 14 66 87 9b 04 f2 16 2a de 0a e0 4b a6 Dec 8 14:15:52 localhost pluto[27501]: | 41 ba a4 86 14 00 00 18 df 77 cf 70 1c ad 94 b7 Dec 8 14:15:52 localhost pluto[27501]: | 38 98 58 1b f6 c2 44 a4 f1 4a c5 ca 00 00 00 18 Dec 8 14:15:52 localhost pluto[27501]: | 3d bd 54 5f db 42 a8 7a 1f ed a3 e4 aa c8 5d a8 Dec 8 14:15:52 localhost pluto[27501]: | 3d ba eb 95 Dec 8 14:15:52 localhost pluto[27501]: | inserting event EVENT_RETRANSMIT, timeout in 40 seconds for #10 Dec 8 14:15:52 localhost pluto[27501]: | next event EVENT_PENDING_PHASE2 in 27 seconds Dec 8 14:16:10 localhost pluto[27501]: | Dec 8 14:16:10 localhost pluto[27501]: | *received 216 bytes from 192.168.10.178:500 on eth0 (port=500) Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 00 00 00 00 00 00 00 00 Dec 8 14:16:10 localhost pluto[27501]: | 01 10 02 00 00 00 00 00 00 00 00 d8 0d 00 00 34 Dec 8 14:16:10 localhost pluto[27501]: | 00 00 00 01 00 00 00 01 00 00 00 28 00 01 00 01 Dec 8 14:16:10 localhost pluto[27501]: | 00 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Dec 8 14:16:10 localhost pluto[27501]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Dec 8 14:16:10 localhost pluto[27501]: | 0d 00 00 10 4f 45 60 66 69 6a 41 75 66 51 4d 44 Dec 8 14:16:10 localhost pluto[27501]: | 0d 00 00 14 af ca d7 13 68 a1 f1 c9 6b 86 96 fc Dec 8 14:16:10 localhost pluto[27501]: | 77 57 01 00 0d 00 00 14 4a 13 1c 81 07 03 58 45 Dec 8 14:16:10 localhost pluto[27501]: | 5c 57 28 f2 0e 95 45 2f 0d 00 00 14 7d 94 19 a6 Dec 8 14:16:10 localhost pluto[27501]: | 53 10 ca 6f 2c 17 9d 92 15 52 9d 56 0d 00 00 14 Dec 8 14:16:10 localhost pluto[27501]: | cd 60 46 43 35 df 21 f8 7c fd b2 fc 68 b6 a4 48 Dec 8 14:16:10 localhost pluto[27501]: | 0d 00 00 14 90 cb 80 91 3e bb 69 6e 08 63 81 b5 Dec 8 14:16:10 localhost pluto[27501]: | ec 42 7b 1f 00 00 00 14 44 85 15 2d 18 b6 bb cd Dec 8 14:16:10 localhost pluto[27501]: | 0b e8 a8 46 95 79 dd cc Dec 8 14:16:10 localhost pluto[27501]: | **parse ISAKMP Message: Dec 8 14:16:10 localhost pluto[27501]: | initiator cookie: Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 Dec 8 14:16:10 localhost pluto[27501]: | responder cookie: Dec 8 14:16:10 localhost pluto[27501]: | 00 00 00 00 00 00 00 00 Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_SA Dec 8 14:16:10 localhost pluto[27501]: | ISAKMP version: ISAKMP Version 1.0 Dec 8 14:16:10 localhost pluto[27501]: | exchange type: ISAKMP_XCHG_IDPROT Dec 8 14:16:10 localhost pluto[27501]: | flags: none Dec 8 14:16:10 localhost pluto[27501]: | message ID: 00 00 00 00 Dec 8 14:16:10 localhost pluto[27501]: | length: 216 Dec 8 14:16:10 localhost pluto[27501]: | processing packet with exchange type=ISAKMP_XCHG_IDPROT (2) Dec 8 14:16:10 localhost pluto[27501]: | np=1 and sd=0x80d7040 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP Security Association Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_VID Dec 8 14:16:10 localhost pluto[27501]: | length: 52 Dec 8 14:16:10 localhost pluto[27501]: | DOI: ISAKMP_DOI_IPSEC Dec 8 14:16:10 localhost pluto[27501]: | np=13 and sd=0x80d6a10 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP Vendor ID Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_VID Dec 8 14:16:10 localhost pluto[27501]: | length: 16 Dec 8 14:16:10 localhost pluto[27501]: | np=13 and sd=0x80d6a10 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP Vendor ID Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_VID Dec 8 14:16:10 localhost pluto[27501]: | length: 20 Dec 8 14:16:10 localhost pluto[27501]: | np=13 and sd=0x80d6a10 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP Vendor ID Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_VID Dec 8 14:16:10 localhost pluto[27501]: | length: 20 Dec 8 14:16:10 localhost pluto[27501]: | np=13 and sd=0x80d6a10 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP Vendor ID Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_VID Dec 8 14:16:10 localhost pluto[27501]: | length: 20 Dec 8 14:16:10 localhost pluto[27501]: | np=13 and sd=0x80d6a10 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP Vendor ID Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_VID Dec 8 14:16:10 localhost pluto[27501]: | length: 20 Dec 8 14:16:10 localhost pluto[27501]: | np=13 and sd=0x80d6a10 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP Vendor ID Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_VID Dec 8 14:16:10 localhost pluto[27501]: | length: 20 Dec 8 14:16:10 localhost pluto[27501]: | np=13 and sd=0x80d6a10 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP Vendor ID Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NONE Dec 8 14:16:10 localhost pluto[27501]: | length: 20 Dec 8 14:16:10 localhost pluto[27501]: packet from 192.168.10.178:500: received Vendor ID payload [Openswan (this version) 2.4.13 PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR] Dec 8 14:16:10 localhost pluto[27501]: packet from 192.168.10.178:500: received Vendor ID payload [Dead Peer Detection] Dec 8 14:16:10 localhost pluto[27501]: packet from 192.168.10.178:500: received Vendor ID payload [RFC 3947] method set to=109 Dec 8 14:16:10 localhost pluto[27501]: packet from 192.168.10.178:500: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03] meth=108, but already using method 109 Dec 8 14:16:10 localhost pluto[27501]: packet from 192.168.10.178:500: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02] meth=107, but already using method 109 Dec 8 14:16:10 localhost pluto[27501]: packet from 192.168.10.178:500: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but already using method 109 Dec 8 14:16:10 localhost pluto[27501]: packet from 192.168.10.178:500: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00] Dec 8 14:16:10 localhost pluto[27501]: | nat-t detected, sending nat-t VID Dec 8 14:16:10 localhost pluto[27501]: | find_host_connection called from main_inI1_outR1 Dec 8 14:16:10 localhost pluto[27501]: | find_host_pair: comparing to 192.168.10.173:500 0.0.0.0:500 Dec 8 14:16:10 localhost pluto[27501]: | find_host_pair: comparing to 192.168.10.173:500 192.168.10.178:500 Dec 8 14:16:10 localhost pluto[27501]: | find_host_pair_conn (find_host_connection2): 192.168.10.173:500 192.168.10.178:500 -> hp:RoamingUser1 Dec 8 14:16:10 localhost pluto[27501]: | creating state object #11 at 0x89c7918 Dec 8 14:16:10 localhost pluto[27501]: | processing connection RoamingUser1[9] 192.168.10.178 Dec 8 14:16:10 localhost pluto[27501]: | ICOOKIE: 84 24 11 76 7d fb 85 61 Dec 8 14:16:10 localhost pluto[27501]: | RCOOKIE: 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | peer: c0 a8 0a b2 Dec 8 14:16:10 localhost pluto[27501]: | state hash entry 28 Dec 8 14:16:10 localhost pluto[27501]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #11 Dec 8 14:16:10 localhost pluto[27501]: "RoamingUser1"[9] 192.168.10.178 #11: responding to Main Mode from unknown peer 192.168.10.178 Dec 8 14:16:10 localhost pluto[27501]: | **emit ISAKMP Message: Dec 8 14:16:10 localhost pluto[27501]: | initiator cookie: Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 Dec 8 14:16:10 localhost pluto[27501]: | responder cookie: Dec 8 14:16:10 localhost pluto[27501]: | 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_SA Dec 8 14:16:10 localhost pluto[27501]: | ISAKMP version: ISAKMP Version 1.0 Dec 8 14:16:10 localhost pluto[27501]: | exchange type: ISAKMP_XCHG_IDPROT Dec 8 14:16:10 localhost pluto[27501]: | flags: none Dec 8 14:16:10 localhost pluto[27501]: | message ID: 00 00 00 00 Dec 8 14:16:10 localhost pluto[27501]: | ***emit ISAKMP Security Association Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_VID Dec 8 14:16:10 localhost pluto[27501]: | DOI: ISAKMP_DOI_IPSEC Dec 8 14:16:10 localhost pluto[27501]: | ****parse IPsec DOI SIT: Dec 8 14:16:10 localhost pluto[27501]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Dec 8 14:16:10 localhost pluto[27501]: | ****parse ISAKMP Proposal Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NONE Dec 8 14:16:10 localhost pluto[27501]: | length: 40 Dec 8 14:16:10 localhost pluto[27501]: | proposal number: 0 Dec 8 14:16:10 localhost pluto[27501]: | protocol ID: PROTO_ISAKMP Dec 8 14:16:10 localhost pluto[27501]: | SPI size: 0 Dec 8 14:16:10 localhost pluto[27501]: | number of transforms: 1 Dec 8 14:16:10 localhost pluto[27501]: | *****parse ISAKMP Transform Payload (ISAKMP): Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NONE Dec 8 14:16:10 localhost pluto[27501]: | length: 32 Dec 8 14:16:10 localhost pluto[27501]: | transform number: 0 Dec 8 14:16:10 localhost pluto[27501]: | transform ID: KEY_IKE Dec 8 14:16:10 localhost pluto[27501]: | ******parse ISAKMP Oakley attribute: Dec 8 14:16:10 localhost pluto[27501]: | af+type: OAKLEY_LIFE_TYPE Dec 8 14:16:10 localhost pluto[27501]: | length/value: 1 Dec 8 14:16:10 localhost pluto[27501]: | [1 is OAKLEY_LIFE_SECONDS] Dec 8 14:16:10 localhost pluto[27501]: | ******parse ISAKMP Oakley attribute: Dec 8 14:16:10 localhost pluto[27501]: | af+type: OAKLEY_LIFE_DURATION Dec 8 14:16:10 localhost pluto[27501]: | length/value: 3600 Dec 8 14:16:10 localhost pluto[27501]: | ******parse ISAKMP Oakley attribute: Dec 8 14:16:10 localhost pluto[27501]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Dec 8 14:16:10 localhost pluto[27501]: | length/value: 5 Dec 8 14:16:10 localhost pluto[27501]: | [5 is OAKLEY_3DES_CBC] Dec 8 14:16:10 localhost pluto[27501]: | ike_alg_enc_ok(ealg=5,key_len=0): blocksize=8, keyminlen=192, keydeflen=192, keymaxlen=192, ret=1 Dec 8 14:16:10 localhost pluto[27501]: | ******parse ISAKMP Oakley attribute: Dec 8 14:16:10 localhost pluto[27501]: | af+type: OAKLEY_HASH_ALGORITHM Dec 8 14:16:10 localhost pluto[27501]: | length/value: 2 Dec 8 14:16:10 localhost pluto[27501]: | [2 is OAKLEY_SHA1] Dec 8 14:16:10 localhost pluto[27501]: | ******parse ISAKMP Oakley attribute: Dec 8 14:16:10 localhost pluto[27501]: | af+type: OAKLEY_AUTHENTICATION_METHOD Dec 8 14:16:10 localhost pluto[27501]: | length/value: 1 Dec 8 14:16:10 localhost pluto[27501]: | [1 is OAKLEY_PRESHARED_KEY] Dec 8 14:16:10 localhost pluto[27501]: | started looking for secret for @serv.com->@roaminguser1.com of kind PPK_PSK Dec 8 14:16:10 localhost pluto[27501]: | instantiating him to 0.0.0.0 Dec 8 14:16:10 localhost pluto[27501]: | actually looking for secret for @serv.com->0.0.0.0 of kind PPK_PSK Dec 8 14:16:10 localhost pluto[27501]: | 1: compared PSK 0.0.0.0 to @serv.com / @roaminguser1.com -> 2 Dec 8 14:16:10 localhost pluto[27501]: | 2: compared PSK @serv.com to @serv.com / @roaminguser1.com -> 6 Dec 8 14:16:10 localhost pluto[27501]: | best_match 0>6 best=0x89c5410 (line=16) Dec 8 14:16:10 localhost pluto[27501]: | concluding with best_match=6 best=0x89c5410 (lineno=16) Dec 8 14:16:10 localhost pluto[27501]: | ******parse ISAKMP Oakley attribute: Dec 8 14:16:10 localhost pluto[27501]: | af+type: OAKLEY_GROUP_DESCRIPTION Dec 8 14:16:10 localhost pluto[27501]: | length/value: 2 Dec 8 14:16:10 localhost pluto[27501]: | [2 is OAKLEY_GROUP_MODP1024] Dec 8 14:16:10 localhost pluto[27501]: | Oakley Transform 0 accepted Dec 8 14:16:10 localhost pluto[27501]: | ****emit IPsec DOI SIT: Dec 8 14:16:10 localhost pluto[27501]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Dec 8 14:16:10 localhost pluto[27501]: | ****emit ISAKMP Proposal Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NONE Dec 8 14:16:10 localhost pluto[27501]: | proposal number: 0 Dec 8 14:16:10 localhost pluto[27501]: | protocol ID: PROTO_ISAKMP Dec 8 14:16:10 localhost pluto[27501]: | SPI size: 0 Dec 8 14:16:10 localhost pluto[27501]: | number of transforms: 1 Dec 8 14:16:10 localhost pluto[27501]: | *****emit ISAKMP Transform Payload (ISAKMP): Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NONE Dec 8 14:16:10 localhost pluto[27501]: | transform number: 0 Dec 8 14:16:10 localhost pluto[27501]: | transform ID: KEY_IKE Dec 8 14:16:10 localhost pluto[27501]: | emitting 24 raw bytes of attributes into ISAKMP Transform Payload (ISAKMP) Dec 8 14:16:10 localhost pluto[27501]: | attributes 80 0b 00 01 80 0c 0e 10 80 01 00 05 80 02 00 02 Dec 8 14:16:10 localhost pluto[27501]: | 80 03 00 01 80 04 00 02 Dec 8 14:16:10 localhost pluto[27501]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Dec 8 14:16:10 localhost pluto[27501]: | emitting length of ISAKMP Proposal Payload: 40 Dec 8 14:16:10 localhost pluto[27501]: | emitting length of ISAKMP Security Association Payload: 52 Dec 8 14:16:10 localhost pluto[27501]: | ***emit ISAKMP Vendor ID Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_VID Dec 8 14:16:10 localhost pluto[27501]: | emitting 12 raw bytes of Vendor ID into ISAKMP Vendor ID Payload Dec 8 14:16:10 localhost pluto[27501]: | Vendor ID 4f 45 60 66 69 6a 41 75 66 51 4d 44 Dec 8 14:16:10 localhost pluto[27501]: | emitting length of ISAKMP Vendor ID Payload: 16 Dec 8 14:16:10 localhost pluto[27501]: | ***emit ISAKMP Vendor ID Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_VID Dec 8 14:16:10 localhost pluto[27501]: | emitting 16 raw bytes of DPP Vendor ID into ISAKMP Vendor ID Payload Dec 8 14:16:10 localhost pluto[27501]: | DPP Vendor ID af ca d7 13 68 a1 f1 c9 6b 86 96 fc 77 57 01 00 Dec 8 14:16:10 localhost pluto[27501]: | emitting length of ISAKMP Vendor ID Payload: 20 Dec 8 14:16:10 localhost pluto[27501]: | sender checking NAT-t: 1 and 109 Dec 8 14:16:10 localhost pluto[27501]: | out_vendorid(): sending [RFC 3947] Dec 8 14:16:10 localhost pluto[27501]: | ***emit ISAKMP Vendor ID Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NONE Dec 8 14:16:10 localhost pluto[27501]: | emitting 16 raw bytes of V_ID into ISAKMP Vendor ID Payload Dec 8 14:16:10 localhost pluto[27501]: | V_ID 4a 13 1c 81 07 03 58 45 5c 57 28 f2 0e 95 45 2f Dec 8 14:16:10 localhost pluto[27501]: | emitting length of ISAKMP Vendor ID Payload: 20 Dec 8 14:16:10 localhost pluto[27501]: | emitting length of ISAKMP Message: 136 Dec 8 14:16:10 localhost pluto[27501]: | complete state transition with STF_OK Dec 8 14:16:10 localhost pluto[27501]: "RoamingUser1"[9] 192.168.10.178 #11: transition from state STATE_MAIN_R0 to state STATE_MAIN_R1 Dec 8 14:16:10 localhost pluto[27501]: | sending reply packet to 192.168.10.178:500 (from port=500) Dec 8 14:16:10 localhost pluto[27501]: | sending 136 bytes for STATE_MAIN_R0 through eth0:500 to 192.168.10.178:500: Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | 01 10 02 00 00 00 00 00 00 00 00 88 0d 00 00 34 Dec 8 14:16:10 localhost pluto[27501]: | 00 00 00 01 00 00 00 01 00 00 00 28 00 01 00 01 Dec 8 14:16:10 localhost pluto[27501]: | 00 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Dec 8 14:16:10 localhost pluto[27501]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Dec 8 14:16:10 localhost pluto[27501]: | 0d 00 00 10 4f 45 60 66 69 6a 41 75 66 51 4d 44 Dec 8 14:16:10 localhost pluto[27501]: | 0d 00 00 14 af ca d7 13 68 a1 f1 c9 6b 86 96 fc Dec 8 14:16:10 localhost pluto[27501]: | 77 57 01 00 00 00 00 14 4a 13 1c 81 07 03 58 45 Dec 8 14:16:10 localhost pluto[27501]: | 5c 57 28 f2 0e 95 45 2f Dec 8 14:16:10 localhost pluto[27501]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #11 Dec 8 14:16:10 localhost pluto[27501]: "RoamingUser1"[9] 192.168.10.178 #11: STATE_MAIN_R1: sent MR1, expecting MI2 Dec 8 14:16:10 localhost pluto[27501]: | modecfg pull: noquirk policy:push not-client Dec 8 14:16:10 localhost pluto[27501]: | phase 1 is done, looking for phase 1 to unpend Dec 8 14:16:10 localhost pluto[27501]: | next event EVENT_PENDING_PHASE2 in 9 seconds Dec 8 14:16:10 localhost pluto[27501]: | Dec 8 14:16:10 localhost pluto[27501]: | *received 228 bytes from 192.168.10.178:500 on eth0 (port=500) Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | 04 10 02 00 00 00 00 00 00 00 00 e4 0a 00 00 84 Dec 8 14:16:10 localhost pluto[27501]: | 5f ad f9 2d 53 24 ee fd 3f 9a ad d1 44 c6 fb 9e Dec 8 14:16:10 localhost pluto[27501]: | 5f dd 63 40 4b b9 d1 e5 7d 7f ac 0a 44 4c 33 1e Dec 8 14:16:10 localhost pluto[27501]: | 2a b5 77 03 ba 4f de 6c 99 53 5d 2f aa 2c 11 3f Dec 8 14:16:10 localhost pluto[27501]: | a5 38 89 a3 b2 dc 41 9c 7d 77 ce 2e c8 27 85 c5 Dec 8 14:16:10 localhost pluto[27501]: | a8 bd cc 72 ab a6 63 1b a8 50 f9 98 0b 1e b9 47 Dec 8 14:16:10 localhost pluto[27501]: | 74 b7 64 2b 4c 77 54 2d a2 67 e0 09 20 6f 82 89 Dec 8 14:16:10 localhost pluto[27501]: | 51 74 10 b4 aa 21 ff 62 e0 5e af a9 2d 95 65 a3 Dec 8 14:16:10 localhost pluto[27501]: | 98 5e bd f8 1b 9e a8 d1 77 df d7 48 b9 f7 53 b4 Dec 8 14:16:10 localhost pluto[27501]: | 14 00 00 14 46 c0 12 6f 28 ad 93 29 11 51 f7 56 Dec 8 14:16:10 localhost pluto[27501]: | c6 be c0 cc 14 00 00 18 9f a5 b6 34 cc 79 b3 19 Dec 8 14:16:10 localhost pluto[27501]: | 25 89 9e 27 f8 d9 0d c8 f9 30 98 5b 00 00 00 18 Dec 8 14:16:10 localhost pluto[27501]: | e8 17 52 07 60 6a 13 28 be a9 76 dc 6a 36 20 e0 Dec 8 14:16:10 localhost pluto[27501]: | 2b 8f d7 ee Dec 8 14:16:10 localhost pluto[27501]: | **parse ISAKMP Message: Dec 8 14:16:10 localhost pluto[27501]: | initiator cookie: Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 Dec 8 14:16:10 localhost pluto[27501]: | responder cookie: Dec 8 14:16:10 localhost pluto[27501]: | 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_KE Dec 8 14:16:10 localhost pluto[27501]: | ISAKMP version: ISAKMP Version 1.0 Dec 8 14:16:10 localhost pluto[27501]: | exchange type: ISAKMP_XCHG_IDPROT Dec 8 14:16:10 localhost pluto[27501]: | flags: none Dec 8 14:16:10 localhost pluto[27501]: | message ID: 00 00 00 00 Dec 8 14:16:10 localhost pluto[27501]: | length: 228 Dec 8 14:16:10 localhost pluto[27501]: | processing packet with exchange type=ISAKMP_XCHG_IDPROT (2) Dec 8 14:16:10 localhost pluto[27501]: | ICOOKIE: 84 24 11 76 7d fb 85 61 Dec 8 14:16:10 localhost pluto[27501]: | RCOOKIE: 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | peer: c0 a8 0a b2 Dec 8 14:16:10 localhost pluto[27501]: | state hash entry 28 Dec 8 14:16:10 localhost pluto[27501]: | peer and cookies match on #11, provided msgid 00000000 vs 00000000 Dec 8 14:16:10 localhost pluto[27501]: | state object #11 found, in STATE_MAIN_R1 Dec 8 14:16:10 localhost pluto[27501]: | processing connection RoamingUser1[9] 192.168.10.178 Dec 8 14:16:10 localhost pluto[27501]: | np=4 and sd=0x80d6d50 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP Key Exchange Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NONCE Dec 8 14:16:10 localhost pluto[27501]: | length: 132 Dec 8 14:16:10 localhost pluto[27501]: | np=10 and sd=0x80d6b60 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP Nonce Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NAT-D Dec 8 14:16:10 localhost pluto[27501]: | length: 20 Dec 8 14:16:10 localhost pluto[27501]: | np=20 and sd=0x80d6920 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP NAT-D Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NAT-D Dec 8 14:16:10 localhost pluto[27501]: | length: 24 Dec 8 14:16:10 localhost pluto[27501]: | np=20 and sd=0x80d6920 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP NAT-D Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NONE Dec 8 14:16:10 localhost pluto[27501]: | length: 24 Dec 8 14:16:10 localhost pluto[27501]: | **emit ISAKMP Message: Dec 8 14:16:10 localhost pluto[27501]: | initiator cookie: Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 Dec 8 14:16:10 localhost pluto[27501]: | responder cookie: Dec 8 14:16:10 localhost pluto[27501]: | 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_KE Dec 8 14:16:10 localhost pluto[27501]: | ISAKMP version: ISAKMP Version 1.0 Dec 8 14:16:10 localhost pluto[27501]: | exchange type: ISAKMP_XCHG_IDPROT Dec 8 14:16:10 localhost pluto[27501]: | flags: none Dec 8 14:16:10 localhost pluto[27501]: | message ID: 00 00 00 00 Dec 8 14:16:10 localhost pluto[27501]: | DH public value received: Dec 8 14:16:10 localhost pluto[27501]: | 5f ad f9 2d 53 24 ee fd 3f 9a ad d1 44 c6 fb 9e Dec 8 14:16:10 localhost pluto[27501]: | 5f dd 63 40 4b b9 d1 e5 7d 7f ac 0a 44 4c 33 1e Dec 8 14:16:10 localhost pluto[27501]: | 2a b5 77 03 ba 4f de 6c 99 53 5d 2f aa 2c 11 3f Dec 8 14:16:10 localhost pluto[27501]: | a5 38 89 a3 b2 dc 41 9c 7d 77 ce 2e c8 27 85 c5 Dec 8 14:16:10 localhost pluto[27501]: | a8 bd cc 72 ab a6 63 1b a8 50 f9 98 0b 1e b9 47 Dec 8 14:16:10 localhost pluto[27501]: | 74 b7 64 2b 4c 77 54 2d a2 67 e0 09 20 6f 82 89 Dec 8 14:16:10 localhost pluto[27501]: | 51 74 10 b4 aa 21 ff 62 e0 5e af a9 2d 95 65 a3 Dec 8 14:16:10 localhost pluto[27501]: | 98 5e bd f8 1b 9e a8 d1 77 df d7 48 b9 f7 53 b4 Dec 8 14:16:10 localhost pluto[27501]: | inI2: checking NAT-t: 1 and 32 Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: hasher=0x80d9520(20) Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: icookie= Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: rcookie= Dec 8 14:16:10 localhost pluto[27501]: | 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: ip= c0 a8 0a ad Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: port=500 Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: hash= 9f a5 b6 34 cc 79 b3 19 25 89 9e 27 f8 d9 0d c8 Dec 8 14:16:10 localhost pluto[27501]: | f9 30 98 5b Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: hasher=0x80d9520(20) Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: icookie= Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: rcookie= Dec 8 14:16:10 localhost pluto[27501]: | 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: ip= c0 a8 0a b2 Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: port=500 Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: hash= e8 17 52 07 60 6a 13 28 be a9 76 dc 6a 36 20 e0 Dec 8 14:16:10 localhost pluto[27501]: | 2b 8f d7 ee Dec 8 14:16:10 localhost pluto[27501]: | NAT_TRAVERSAL hash=0 (me:0) (him:0) Dec 8 14:16:10 localhost pluto[27501]: | expected NAT-D(me): 9f a5 b6 34 cc 79 b3 19 25 89 9e 27 f8 d9 0d c8 Dec 8 14:16:10 localhost pluto[27501]: | f9 30 98 5b Dec 8 14:16:10 localhost pluto[27501]: | expected NAT-D(him): Dec 8 14:16:10 localhost pluto[27501]: | e8 17 52 07 60 6a 13 28 be a9 76 dc 6a 36 20 e0 Dec 8 14:16:10 localhost pluto[27501]: | 2b 8f d7 ee Dec 8 14:16:10 localhost pluto[27501]: | received NAT-D: 9f a5 b6 34 cc 79 b3 19 25 89 9e 27 f8 d9 0d c8 Dec 8 14:16:10 localhost pluto[27501]: | f9 30 98 5b Dec 8 14:16:10 localhost pluto[27501]: | NAT_TRAVERSAL hash=1 (me:1) (him:0) Dec 8 14:16:10 localhost pluto[27501]: | expected NAT-D(me): 9f a5 b6 34 cc 79 b3 19 25 89 9e 27 f8 d9 0d c8 Dec 8 14:16:10 localhost pluto[27501]: | f9 30 98 5b Dec 8 14:16:10 localhost pluto[27501]: | expected NAT-D(him): Dec 8 14:16:10 localhost pluto[27501]: | e8 17 52 07 60 6a 13 28 be a9 76 dc 6a 36 20 e0 Dec 8 14:16:10 localhost pluto[27501]: | 2b 8f d7 ee Dec 8 14:16:10 localhost pluto[27501]: | received NAT-D: e8 17 52 07 60 6a 13 28 be a9 76 dc 6a 36 20 e0 Dec 8 14:16:10 localhost pluto[27501]: | 2b 8f d7 ee Dec 8 14:16:10 localhost pluto[27501]: | NAT_TRAVERSAL hash=2 (me:1) (him:1) Dec 8 14:16:10 localhost pluto[27501]: "RoamingUser1"[9] 192.168.10.178 #11: NAT-Traversal: Result using RFC 3947 (NAT-Traversal): no NAT detected Dec 8 14:16:10 localhost pluto[27501]: | inserting event EVENT_NAT_T_KEEPALIVE, timeout in 20 seconds Dec 8 14:16:10 localhost pluto[27501]: | 0: w->pcw_dead: 0 w->pcw_work: 0 cnt: 1 Dec 8 14:16:10 localhost pluto[27501]: | asking helper 0 to do build_kenonce op on seq: 4 Dec 8 14:16:10 localhost pluto[27501]: | inserting event EVENT_CRYPTO_FAILED, timeout in 300 seconds for #11 Dec 8 14:16:10 localhost pluto[27502]: ! helper 0 doing build_kenonce op id: 4 Dec 8 14:16:10 localhost pluto[27501]: | complete state transition with STF_SUSPEND Dec 8 14:16:10 localhost pluto[27501]: | next event EVENT_PENDING_PHASE2 in 9 seconds Dec 8 14:16:10 localhost pluto[27502]: ! Local DH secret: Dec 8 14:16:10 localhost pluto[27502]: ! ca 33 eb c6 96 a9 37 24 a2 d5 fa 8f 43 98 65 2f Dec 8 14:16:10 localhost pluto[27502]: ! b5 e0 8e 70 2f 4f 78 fe 8b a8 bf 66 6e 80 1c 33 Dec 8 14:16:10 localhost pluto[27502]: ! Public DH value sent: Dec 8 14:16:10 localhost pluto[27502]: ! 10 27 09 35 cb a7 c9 0e 43 bc cd fc f9 45 db 24 Dec 8 14:16:10 localhost pluto[27502]: ! 3c 25 7f 27 42 9b f3 90 ce ba 48 18 69 3a a0 07 Dec 8 14:16:10 localhost pluto[27502]: ! fa 76 4b af d5 b5 9b 6f bf 3d 32 8b c0 3d a4 ac Dec 8 14:16:10 localhost pluto[27502]: ! ed 7d b3 99 1b e5 17 43 0a 7a 13 bb 58 5a b1 21 Dec 8 14:16:10 localhost pluto[27502]: ! d2 0f f4 e0 e6 45 2e 95 48 2c e1 21 22 7d ce a4 Dec 8 14:16:10 localhost pluto[27502]: ! af 18 6e d6 e0 92 49 8b 87 3a d5 70 20 68 d2 c6 Dec 8 14:16:10 localhost pluto[27502]: ! 0b 32 67 1b a3 26 6d 50 bb 09 1a b3 7c 61 a5 09 Dec 8 14:16:10 localhost pluto[27502]: ! a0 4a 0e dc dc 75 c3 9b b6 21 4e 8a 8a b7 fa 4a Dec 8 14:16:10 localhost pluto[27502]: ! Generated nonce: Dec 8 14:16:10 localhost pluto[27502]: ! b7 f0 96 6a b2 bd 7f b5 cd f7 f9 7d 69 65 eb 0a Dec 8 14:16:10 localhost pluto[27501]: | helper 0 has work (cnt now 0) Dec 8 14:16:10 localhost pluto[27501]: | helper 0 replies to sequence 4 Dec 8 14:16:10 localhost pluto[27501]: | calling callback function 0x80638b0 Dec 8 14:16:10 localhost pluto[27501]: | main inI2_outR2: calculated ke+nonce, sending R2 Dec 8 14:16:10 localhost pluto[27501]: | processing connection RoamingUser1[9] 192.168.10.178 Dec 8 14:16:10 localhost pluto[27501]: | ***emit ISAKMP Key Exchange Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NONCE Dec 8 14:16:10 localhost pluto[27501]: | emitting 128 raw bytes of keyex value into ISAKMP Key Exchange Payload Dec 8 14:16:10 localhost pluto[27501]: | keyex value 10 27 09 35 cb a7 c9 0e 43 bc cd fc f9 45 db 24 Dec 8 14:16:10 localhost pluto[27501]: | 3c 25 7f 27 42 9b f3 90 ce ba 48 18 69 3a a0 07 Dec 8 14:16:10 localhost pluto[27501]: | fa 76 4b af d5 b5 9b 6f bf 3d 32 8b c0 3d a4 ac Dec 8 14:16:10 localhost pluto[27501]: | ed 7d b3 99 1b e5 17 43 0a 7a 13 bb 58 5a b1 21 Dec 8 14:16:10 localhost pluto[27501]: | d2 0f f4 e0 e6 45 2e 95 48 2c e1 21 22 7d ce a4 Dec 8 14:16:10 localhost pluto[27501]: | af 18 6e d6 e0 92 49 8b 87 3a d5 70 20 68 d2 c6 Dec 8 14:16:10 localhost pluto[27501]: | 0b 32 67 1b a3 26 6d 50 bb 09 1a b3 7c 61 a5 09 Dec 8 14:16:10 localhost pluto[27501]: | a0 4a 0e dc dc 75 c3 9b b6 21 4e 8a 8a b7 fa 4a Dec 8 14:16:10 localhost pluto[27501]: | emitting length of ISAKMP Key Exchange Payload: 132 Dec 8 14:16:10 localhost pluto[27501]: | ***emit ISAKMP Nonce Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NONE Dec 8 14:16:10 localhost pluto[27501]: | emitting 16 raw bytes of Nr into ISAKMP Nonce Payload Dec 8 14:16:10 localhost pluto[27501]: | Nr b7 f0 96 6a b2 bd 7f b5 cd f7 f9 7d 69 65 eb 0a Dec 8 14:16:10 localhost pluto[27501]: | emitting length of ISAKMP Nonce Payload: 20 Dec 8 14:16:10 localhost pluto[27501]: | sending NATD payloads Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: hasher=0x80d9520(20) Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: icookie= Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: rcookie= Dec 8 14:16:10 localhost pluto[27501]: | 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: ip= c0 a8 0a b2 Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: port=500 Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: hash= e8 17 52 07 60 6a 13 28 be a9 76 dc 6a 36 20 e0 Dec 8 14:16:10 localhost pluto[27501]: | 2b 8f d7 ee Dec 8 14:16:10 localhost pluto[27501]: | ***emit ISAKMP NAT-D Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NAT-D Dec 8 14:16:10 localhost pluto[27501]: | emitting 20 raw bytes of NAT-D into ISAKMP NAT-D Payload Dec 8 14:16:10 localhost pluto[27501]: | NAT-D e8 17 52 07 60 6a 13 28 be a9 76 dc 6a 36 20 e0 Dec 8 14:16:10 localhost pluto[27501]: | 2b 8f d7 ee Dec 8 14:16:10 localhost pluto[27501]: | emitting length of ISAKMP NAT-D Payload: 24 Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: hasher=0x80d9520(20) Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: icookie= Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: rcookie= Dec 8 14:16:10 localhost pluto[27501]: | 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: ip= c0 a8 0a ad Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: port=500 Dec 8 14:16:10 localhost pluto[27501]: | _natd_hash: hash= 9f a5 b6 34 cc 79 b3 19 25 89 9e 27 f8 d9 0d c8 Dec 8 14:16:10 localhost pluto[27501]: | f9 30 98 5b Dec 8 14:16:10 localhost pluto[27501]: | ***emit ISAKMP NAT-D Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NONE Dec 8 14:16:10 localhost pluto[27501]: | emitting 20 raw bytes of NAT-D into ISAKMP NAT-D Payload Dec 8 14:16:10 localhost pluto[27501]: | NAT-D 9f a5 b6 34 cc 79 b3 19 25 89 9e 27 f8 d9 0d c8 Dec 8 14:16:10 localhost pluto[27501]: | f9 30 98 5b Dec 8 14:16:10 localhost pluto[27501]: | emitting length of ISAKMP NAT-D Payload: 24 Dec 8 14:16:10 localhost pluto[27501]: | emitting length of ISAKMP Message: 228 Dec 8 14:16:10 localhost pluto[27501]: | started looking for secret for @serv.com->@roaminguser1.com of kind PPK_PSK Dec 8 14:16:10 localhost pluto[27501]: | instantiating him to 0.0.0.0 Dec 8 14:16:10 localhost pluto[27501]: | actually looking for secret for @serv.com->0.0.0.0 of kind PPK_PSK Dec 8 14:16:10 localhost pluto[27501]: | 1: compared PSK 0.0.0.0 to @serv.com / @roaminguser1.com -> 2 Dec 8 14:16:10 localhost pluto[27501]: | 2: compared PSK @serv.com to @serv.com / @roaminguser1.com -> 6 Dec 8 14:16:10 localhost pluto[27501]: | best_match 0>6 best=0x89c5410 (line=16) Dec 8 14:16:10 localhost pluto[27501]: | concluding with best_match=6 best=0x89c5410 (lineno=16) Dec 8 14:16:10 localhost pluto[27501]: | calc_dh_shared(): time elapsed (OAKLEY_GROUP_MODP1024): 5117 usec Dec 8 14:16:10 localhost pluto[27501]: | DH shared secret: Dec 8 14:16:10 localhost pluto[27501]: | ba de 4c 26 b5 89 5e a5 b3 09 13 0f b5 a2 b3 ce Dec 8 14:16:10 localhost pluto[27501]: | 99 63 7f 12 4e b8 6f 6d 77 d0 94 f6 b3 fb dc 63 Dec 8 14:16:10 localhost pluto[27501]: | 05 7f 48 76 1b 1f f7 6f a0 07 d9 47 78 62 54 79 Dec 8 14:16:10 localhost pluto[27501]: | df 58 35 6e 3f 60 12 d9 2b d7 7b 64 a3 6a 05 24 Dec 8 14:16:10 localhost pluto[27501]: | bf fa ee 5c c8 63 10 09 8b 8b fe 18 7d 2d 4a d2 Dec 8 14:16:10 localhost pluto[27501]: | b7 fb 9f 56 d9 fd 6f 22 cb 6e 28 a0 c6 8e 58 44 Dec 8 14:16:10 localhost pluto[27501]: | b3 38 0b f0 df a7 6e ea 7a 5c ae af 9d 66 3f 04 Dec 8 14:16:10 localhost pluto[27501]: | 0b 40 c3 3f 19 96 36 6f ce 76 e3 3e 7f e1 ec ec Dec 8 14:16:10 localhost pluto[27501]: | Skey inputs (PSK+NI+NR) Dec 8 14:16:10 localhost pluto[27501]: | ni: 46 c0 12 6f 28 ad 93 29 11 51 f7 56 c6 be c0 cc Dec 8 14:16:10 localhost pluto[27501]: | nr: b7 f0 96 6a b2 bd 7f b5 cd f7 f9 7d 69 65 eb 0a Dec 8 14:16:10 localhost pluto[27501]: | keyid: ff f4 81 bc ff 39 1b ed 78 7d fd f7 16 b7 bd 33 Dec 8 14:16:10 localhost pluto[27501]: | b7 b8 bf f9 Dec 8 14:16:10 localhost pluto[27501]: | DH_i: 5f ad f9 2d 53 24 ee fd 3f 9a ad d1 44 c6 fb 9e Dec 8 14:16:10 localhost pluto[27501]: | 5f dd 63 40 4b b9 d1 e5 7d 7f ac 0a 44 4c 33 1e Dec 8 14:16:10 localhost pluto[27501]: | 2a b5 77 03 ba 4f de 6c 99 53 5d 2f aa 2c 11 3f Dec 8 14:16:10 localhost pluto[27501]: | a5 38 89 a3 b2 dc 41 9c 7d 77 ce 2e c8 27 85 c5 Dec 8 14:16:10 localhost pluto[27501]: | a8 bd cc 72 ab a6 63 1b a8 50 f9 98 0b 1e b9 47 Dec 8 14:16:10 localhost pluto[27501]: | 74 b7 64 2b 4c 77 54 2d a2 67 e0 09 20 6f 82 89 Dec 8 14:16:10 localhost pluto[27501]: | 51 74 10 b4 aa 21 ff 62 e0 5e af a9 2d 95 65 a3 Dec 8 14:16:10 localhost pluto[27501]: | 98 5e bd f8 1b 9e a8 d1 77 df d7 48 b9 f7 53 b4 Dec 8 14:16:10 localhost pluto[27501]: | DH_r: 10 27 09 35 cb a7 c9 0e 43 bc cd fc f9 45 db 24 Dec 8 14:16:10 localhost pluto[27501]: | 3c 25 7f 27 42 9b f3 90 ce ba 48 18 69 3a a0 07 Dec 8 14:16:10 localhost pluto[27501]: | fa 76 4b af d5 b5 9b 6f bf 3d 32 8b c0 3d a4 ac Dec 8 14:16:10 localhost pluto[27501]: | ed 7d b3 99 1b e5 17 43 0a 7a 13 bb 58 5a b1 21 Dec 8 14:16:10 localhost pluto[27501]: | d2 0f f4 e0 e6 45 2e 95 48 2c e1 21 22 7d ce a4 Dec 8 14:16:10 localhost pluto[27501]: | af 18 6e d6 e0 92 49 8b 87 3a d5 70 20 68 d2 c6 Dec 8 14:16:10 localhost pluto[27501]: | 0b 32 67 1b a3 26 6d 50 bb 09 1a b3 7c 61 a5 09 Dec 8 14:16:10 localhost pluto[27501]: | a0 4a 0e dc dc 75 c3 9b b6 21 4e 8a 8a b7 fa 4a Dec 8 14:16:10 localhost pluto[27501]: | Skeyid: ff f4 81 bc ff 39 1b ed 78 7d fd f7 16 b7 bd 33 Dec 8 14:16:10 localhost pluto[27501]: | b7 b8 bf f9 Dec 8 14:16:10 localhost pluto[27501]: | Skeyid_d: 48 d2 82 45 f4 4e 4c cb 73 21 df 57 2c 06 df 98 Dec 8 14:16:10 localhost pluto[27501]: | a0 8a e0 e2 Dec 8 14:16:10 localhost pluto[27501]: | Skeyid_a: 38 fd 26 21 5a fb b2 77 69 aa f4 ad 2a 8b 47 1b Dec 8 14:16:10 localhost pluto[27501]: | 53 52 74 ac Dec 8 14:16:10 localhost pluto[27501]: | Skeyid_e: b7 1f f2 d1 3c 7d b0 7c 87 aa 70 0e 5a 75 64 df Dec 8 14:16:10 localhost pluto[27501]: | 4f ea a5 e9 Dec 8 14:16:10 localhost pluto[27501]: | enc key: 8d 2e 0a 6a b7 dd 5e 33 41 7e f0 3e 6d 49 22 26 Dec 8 14:16:10 localhost pluto[27501]: | cd 14 e9 0a 46 be d7 29 Dec 8 14:16:10 localhost pluto[27501]: | IV: ea a9 47 76 00 bd 9d c6 98 13 35 7b dc 48 e1 93 Dec 8 14:16:10 localhost pluto[27501]: | 01 a7 00 ac Dec 8 14:16:10 localhost pluto[27501]: | complete state transition with STF_OK Dec 8 14:16:10 localhost pluto[27501]: "RoamingUser1"[9] 192.168.10.178 #11: transition from state STATE_MAIN_R1 to state STATE_MAIN_R2 Dec 8 14:16:10 localhost pluto[27501]: | sending reply packet to 192.168.10.178:500 (from port=500) Dec 8 14:16:10 localhost pluto[27501]: | sending 228 bytes for STATE_MAIN_R1 through eth0:500 to 192.168.10.178:500: Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | 04 10 02 00 00 00 00 00 00 00 00 e4 0a 00 00 84 Dec 8 14:16:10 localhost pluto[27501]: | 10 27 09 35 cb a7 c9 0e 43 bc cd fc f9 45 db 24 Dec 8 14:16:10 localhost pluto[27501]: | 3c 25 7f 27 42 9b f3 90 ce ba 48 18 69 3a a0 07 Dec 8 14:16:10 localhost pluto[27501]: | fa 76 4b af d5 b5 9b 6f bf 3d 32 8b c0 3d a4 ac Dec 8 14:16:10 localhost pluto[27501]: | ed 7d b3 99 1b e5 17 43 0a 7a 13 bb 58 5a b1 21 Dec 8 14:16:10 localhost pluto[27501]: | d2 0f f4 e0 e6 45 2e 95 48 2c e1 21 22 7d ce a4 Dec 8 14:16:10 localhost pluto[27501]: | af 18 6e d6 e0 92 49 8b 87 3a d5 70 20 68 d2 c6 Dec 8 14:16:10 localhost pluto[27501]: | 0b 32 67 1b a3 26 6d 50 bb 09 1a b3 7c 61 a5 09 Dec 8 14:16:10 localhost pluto[27501]: | a0 4a 0e dc dc 75 c3 9b b6 21 4e 8a 8a b7 fa 4a Dec 8 14:16:10 localhost pluto[27501]: | 14 00 00 14 b7 f0 96 6a b2 bd 7f b5 cd f7 f9 7d Dec 8 14:16:10 localhost pluto[27501]: | 69 65 eb 0a 14 00 00 18 e8 17 52 07 60 6a 13 28 Dec 8 14:16:10 localhost pluto[27501]: | be a9 76 dc 6a 36 20 e0 2b 8f d7 ee 00 00 00 18 Dec 8 14:16:10 localhost pluto[27501]: | 9f a5 b6 34 cc 79 b3 19 25 89 9e 27 f8 d9 0d c8 Dec 8 14:16:10 localhost pluto[27501]: | f9 30 98 5b Dec 8 14:16:10 localhost pluto[27501]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #11 Dec 8 14:16:10 localhost pluto[27501]: "RoamingUser1"[9] 192.168.10.178 #11: STATE_MAIN_R2: sent MR2, expecting MI3 Dec 8 14:16:10 localhost pluto[27501]: | modecfg pull: noquirk policy:push not-client Dec 8 14:16:10 localhost pluto[27501]: | phase 1 is done, looking for phase 1 to unpend Dec 8 14:16:10 localhost pluto[27501]: | next event EVENT_PENDING_PHASE2 in 9 seconds Dec 8 14:16:10 localhost pluto[27501]: | Dec 8 14:16:10 localhost pluto[27501]: | *received 76 bytes from 192.168.10.178:500 on eth0 (port=500) Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | 05 10 02 01 00 00 00 00 00 00 00 4c 26 a4 b0 3e Dec 8 14:16:10 localhost pluto[27501]: | 70 42 4c a9 43 13 f9 46 e3 42 bd 24 0c ee e5 eb Dec 8 14:16:10 localhost pluto[27501]: | a0 e0 76 e0 60 c8 f8 9c 04 f6 44 8a 66 f2 61 60 Dec 8 14:16:10 localhost pluto[27501]: | bc 55 b1 4f 0b a4 54 53 72 3c 7d ea Dec 8 14:16:10 localhost pluto[27501]: | **parse ISAKMP Message: Dec 8 14:16:10 localhost pluto[27501]: | initiator cookie: Dec 8 14:16:10 localhost pluto[27501]: | 84 24 11 76 7d fb 85 61 Dec 8 14:16:10 localhost pluto[27501]: | responder cookie: Dec 8 14:16:10 localhost pluto[27501]: | 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_ID Dec 8 14:16:10 localhost pluto[27501]: | ISAKMP version: ISAKMP Version 1.0 Dec 8 14:16:10 localhost pluto[27501]: | exchange type: ISAKMP_XCHG_IDPROT Dec 8 14:16:10 localhost pluto[27501]: | flags: ISAKMP_FLAG_ENCRYPTION Dec 8 14:16:10 localhost pluto[27501]: | message ID: 00 00 00 00 Dec 8 14:16:10 localhost pluto[27501]: | length: 76 Dec 8 14:16:10 localhost pluto[27501]: | processing packet with exchange type=ISAKMP_XCHG_IDPROT (2) Dec 8 14:16:10 localhost pluto[27501]: | ICOOKIE: 84 24 11 76 7d fb 85 61 Dec 8 14:16:10 localhost pluto[27501]: | RCOOKIE: 45 1f e5 b8 b2 34 ed 8f Dec 8 14:16:10 localhost pluto[27501]: | peer: c0 a8 0a b2 Dec 8 14:16:10 localhost pluto[27501]: | state hash entry 28 Dec 8 14:16:10 localhost pluto[27501]: | peer and cookies match on #11, provided msgid 00000000 vs 00000000 Dec 8 14:16:10 localhost pluto[27501]: | state object #11 found, in STATE_MAIN_R2 Dec 8 14:16:10 localhost pluto[27501]: | processing connection RoamingUser1[9] 192.168.10.178 Dec 8 14:16:10 localhost pluto[27501]: | received encrypted packet from 192.168.10.178:500 Dec 8 14:16:10 localhost pluto[27501]: | decrypting 48 bytes using algorithm OAKLEY_3DES_CBC Dec 8 14:16:10 localhost pluto[27501]: | decrypted: Dec 8 14:16:10 localhost pluto[27501]: | 08 00 00 18 02 00 00 00 72 6f 61 6d 69 6e 67 75 Dec 8 14:16:10 localhost pluto[27501]: | 73 65 72 32 2e 63 6f 6d 00 00 00 18 5b c9 80 c0 Dec 8 14:16:10 localhost pluto[27501]: | f2 3f 67 86 ae 55 13 9f 7e 26 1a dd f2 64 dd 27 Dec 8 14:16:10 localhost pluto[27501]: | next IV: 0b a4 54 53 72 3c 7d ea Dec 8 14:16:10 localhost pluto[27501]: | np=5 and sd=(nil) Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP Identification Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_HASH Dec 8 14:16:10 localhost pluto[27501]: | length: 24 Dec 8 14:16:10 localhost pluto[27501]: | ID type: ID_FQDN Dec 8 14:16:10 localhost pluto[27501]: | DOI specific A: 0 Dec 8 14:16:10 localhost pluto[27501]: | DOI specific B: 0 Dec 8 14:16:10 localhost pluto[27501]: | np=8 and sd=0x80d6b78 Dec 8 14:16:10 localhost pluto[27501]: | ***parse ISAKMP Hash Payload: Dec 8 14:16:10 localhost pluto[27501]: | next payload type: ISAKMP_NEXT_NONE Dec 8 14:16:10 localhost pluto[27501]: | length: 24 Dec 8 14:16:10 localhost pluto[27501]: "RoamingUser1"[9] 192.168.10.178 #11: Main mode peer ID is ID_FQDN: '@roaminguser2.com' Dec 8 14:16:10 localhost pluto[27501]: | refine_connection: starting with RoamingUser1 Dec 8 14:16:10 localhost pluto[27501]: | started looking for secret for @serv.com->@roaminguser1.com of kind PPK_PSK Dec 8 14:16:10 localhost pluto[27501]: | instantiating him to 0.0.0.0 Dec 8 14:16:10 localhost pluto[27501]: | actually looking for secret for @serv.com->0.0.0.0 of kind PPK_PSK Dec 8 14:16:10 localhost pluto[27501]: | 1: compared PSK 0.0.0.0 to @serv.com / @roaminguser1.com -> 2 Dec 8 14:16:10 localhost pluto[27501]: | 2: compared PSK @serv.com to @serv.com / @roaminguser1.com -> 6 Dec 8 14:16:10 localhost pluto[27501]: | best_match 0>6 best=0x89c5410 (line=16) Dec 8 14:16:10 localhost pluto[27501]: | concluding with best_match=6 best=0x89c5410 (lineno=16) Dec 8 14:16:10 localhost pluto[27501]: | match_id a=@roaminguser2.com Dec 8 14:16:10 localhost pluto[27501]: | b=@roaminguser1.com Dec 8 14:16:10 localhost pluto[27501]: | results fail Dec 8 14:16:10 localhost pluto[27501]: | trusted_ca called with a=(empty) b=(empty) Dec 8 14:16:10 localhost pluto[27501]: | refine_connection: checking RoamingUser1 against RoamingUser1, best=(none) with match=0(id=0/ca=1/reqca=1) Dec 8 14:16:10 localhost pluto[27501]: | find_host_pair: comparing to 192.168.10.173:500 192.168.10.178:500 Dec 8 14:16:10 localhost pluto[27501]: | find_host_pair: comparing to 192.168.10.173:500 0.0.0.0:500 Dec 8 14:16:10 localhost pluto[27501]: | find_host_pair_conn (refine_host_connection): 192.168.10.173:500 %any:500 -> hp:RoamingUser1 Dec 8 14:16:10 localhost pluto[27501]: | match_id a=@roaminguser2.com Dec 8 14:16:10 localhost pluto[27501]: | b=@roaminguser1.com Dec 8 14:16:10 localhost pluto[27501]: | results fail Dec 8 14:16:10 localhost pluto[27501]: | trusted_ca called with a=(empty) b=(empty) Dec 8 14:16:10 localhost pluto[27501]: | refine_connection: checking RoamingUser1 against RoamingUser1, best=(none) with match=0(id=0/ca=1/reqca=1) Dec 8 14:16:10 localhost pluto[27501]: | match_id a=@roaminguser2.com Dec 8 14:16:10 localhost pluto[27501]: | b=@roaminguser2.com Dec 8 14:16:10 localhost pluto[27501]: | results matched Dec 8 14:16:10 localhost pluto[27501]: | trusted_ca called with a=(empty) b=(empty) Dec 8 14:16:10 localhost pluto[27501]: | refine_connection: checking RoamingUser1 against RoamingUser2, best=(none) with match=1(id=1/ca=1/reqca=1) Dec 8 14:16:10 localhost pluto[27501]: | refine_connection: checked RoamingUser1 against RoamingUser2, now for see if best Dec 8 14:16:10 localhost pluto[27501]: | started looking for secret for @serv.com->@roaminguser2.com of kind PPK_PSK Dec 8 14:16:10 localhost pluto[27501]: | actually looking for secret for @serv.com->@roaminguser2.com of kind PPK_PSK Dec 8 14:16:10 localhost pluto[27501]: | 1: compared PSK 0.0.0.0 to @serv.com / @roaminguser2.com -> 0 --E119D2542F8.1228727831/mail2.dlink.co.in--