[Fwd: Re: [Openswan Users] Pluto not running???]
Matthew Claridge
mclaridge at rwa-net.co.uk
Tue Aug 17 17:34:58 CEST 2004
turns out its not trying to talk to a Cisco router at all - its a Cisco
3000 series vpn concentrator...totally different configuration to the
standard cisco commands.......
anyone have any experience of these and a suitable config that might get
it working?
thanks for the help so far.....
Matt
-------- Original Message --------
Subject: Re: [Openswan Users] Pluto not running???
Date: 17 Aug 2004 08:36:22 +0000
From: Matthew Claridge <mclaridge at rwa-net.co.uk>
Organization: RWA Limited
To: Paul Wouters <paul at xelerance.com>
CC: users at lists.openswan.org
References:
<Pine.LNX.4.44.0408161925300.10419-100000 at expansionpack.xtdnet.nl>
on 16/08/2004 18:27 Paul Wouters said the following:
>On Mon, 16 Aug 2004, Matthew Claridge wrote:
>
>
>
>>on 16/08/2004 16:55 Paul Wouters said the following:
>>
>> ok, found an error by restarting the ipsec service:
>>
>>FATAL ERROR: bind() failed in find_raw_ifaces4(). Errno 98: Address
>>already in use
>>
>>
>
>So something seems to be running. Do a ps -aux and see if anything like
>pluto, racoon or isakmpd is running?
>Or check with 'netstat -an | grep :500' to see if something is using
>port 500 udp. You can then check with lsof to see which process this is.
>
>Other explanations might be missing kernel components, but if the above doesn't
>answer it, please post an 'ipsec barf' for us to have a look at.
>
>Paul
>
>
>
Hi Paul,
I found racoon running, bound to port 500 (forgot that racoon is part of
the ipsec-tools package so never even checked for this until you
suggested it!) - having killed the process, Pluto starts fine ;o) I'm
not sure how to stop racoon running permanently though, without killing
the whole ipsec process....or deleting the racoon binary ;o)
Anyway, once pluto was up and running, I tried bringing the tunnel up
and got a pile of messages in the log, some good, some bad. The lines
that seem most important are:
"tunnelipsec" #3: ignoring informational payload, type PAYLOAD_MALFORMED
"tunnelipsec" #3: discarding duplicate packet; already STATE_MAIN_I3
"tunnelipsec" #3: encrypted Informational Exchange message is invalid
because it is for incomplete ISAKMP SA
bearing in mind this is going to a Cisco router, it may be that some
tweaks are needed in the configuration at that end, but I'd like to
confirm that and know that everything's ok at my end, if possible,
before I start delving into that.
I've attached an 'ipsec barf' on the off-chance it'll be useful.....
Matt
--
*Matthew Claridge*
Product Support Engineer
RWA Limited
Direct line: 02920 815 054
Email: mclaridge at rwa-net.co.uk
Web: www.rwa-net.co.uk
-------------- next part --------------
mickey.rwa-net.co.uk
Tue Aug 17 09:25:04 BST 2004
+ _________________________ version
+ ipsec --version
Linux Openswan U2.1.2/K2.4.21-15.0.4.ELsmp (native) (native)
See `ipsec --copyright' for copyright information.
+ _________________________ proc/version
+ cat /proc/version
Linux version 2.4.21-15.0.4.ELsmp (bhcompile at tweety.build.redhat.com) (gcc version 3.2.3 20030502 (Red Hat Linux 3.2.3-39)) #1 SMP Sat Jul 31 01:25:25 EDT 2004
+ _________________________ proc/net/ipsec_eroute
+ test -r /proc/net/ipsec_eroute
+ _________________________ netstat-rn
+ netstat -nr
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
172.18.100.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
62.189.139.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 62.189.139.5 0.0.0.0 UG 0 0 0 eth0
+ _________________________ proc/net/ipsec_spi
+ test -r proc/net/ipsec_spi
+ _________________________ proc/net/ipsec_spigrp
+ test -r /proc/net/ipsec_spigrp
+ _________________________ proc/net/ipsec_tncfg
+ test -r /proc/net/ipsec_tncfg
+ _________________________ proc/net/pfkey
+ test -r /proc/net/pfkey
+ cat /proc/net/pfkey
sk RefCnt Rmem Wmem User Inode
+ _________________________ setkey-D
+ setkey -D
No SAD entries.
+ _________________________ setkey-D-P
+ setkey -D -P
No SPD entries.
+ _________________________ proc/sys/net/ipsec-star
+ test -d /proc/sys/net/ipsec
+ _________________________ ipsec/status
+ ipsec auto --status
whack: Pluto is not running (no "/var/run/pluto.ctl")
+ _________________________ ifconfig-a
+ ifconfig -a
eth0 Link encap:Ethernet HWaddr 00:0B:CD:CB:14:4D
inet addr:62.189.139.36 Bcast:62.189.139.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:9367294 errors:0 dropped:0 overruns:0 frame:0
TX packets:5671760 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:3748508003 (3574.8 Mb) TX bytes:568671215 (542.3 Mb)
Interrupt:5
eth0:0 Link encap:Ethernet HWaddr 00:0B:CD:CB:14:4D
inet addr:172.18.100.1 Bcast:172.18.100.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:9367294 errors:0 dropped:0 overruns:0 frame:0
TX packets:5671760 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:3748508003 (3574.8 Mb) TX bytes:568671215 (542.3 Mb)
Interrupt:5
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:1731102 errors:0 dropped:0 overruns:0 frame:0
TX packets:1731102 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:2677437453 (2553.4 Mb) TX bytes:2677437453 (2553.4 Mb)
+ _________________________ ipsec_verify
+ ipsec verify --nocolour
Checking your system to see if IPsec got installed and started correctly:
Version check and ipsec on-path [OK]
Linux Openswan U2.1.2/K2.4.21-15.0.4.ELsmp (native) (native)
Checking for IPsec support in kernel [OK]
Checking for RSA private key (/etc/ipsec.secrets) [FAILED]
ipsec showhostkey: no default key in "/etc/ipsec.secrets"
Checking that pluto is running [FAILED]
whack: Pluto is not running (no "/var/run/pluto.ctl")
Checking for 'ip' command [OK]
Checking for 'iptables' command [OK]
Checking for 'setkey' command for native IPsec stack support [OK]
Opportunistic Encryption DNS checks:
Looking for TXT in forward dns zone: mickey.rwa-net.co.uk [MISSING]
Does the machine have at least one non-private address? [OK]
Looking for TXT in reverse dns zone: 36.139.189.62.in-addr.arpa. [MISSING]
+ _________________________ mii-tool
+ '[' -x /sbin/mii-tool ']'
+ /sbin/mii-tool -v
eth0: negotiated 100baseTx-FD, link ok
product info: vendor 00:08:18, model 22 rev 2
basic mode: autonegotiation enabled
basic status: autonegotiation complete, link ok
capabilities: 100baseTx-FD 100baseTx-HD 10baseT-FD 10baseT-HD
advertising: 100baseTx-FD 100baseTx-HD 10baseT-FD 10baseT-HD flow-control
link partner: 100baseTx-FD 100baseTx-HD 10baseT-FD 10baseT-HD
+ _________________________ ipsec/directory
+ ipsec --directory
/usr/local/lib/ipsec
+ _________________________ hostname/fqdn
+ hostname --fqdn
mickey.rwa-net.co.uk
+ _________________________ hostname/ipaddress
+ hostname --ip-address
62.189.139.36
+ _________________________ uptime
+ uptime
09:25:06 up 16:30, 8 users, load average: 0.97, 0.38, 0.31
+ _________________________ ps
+ ps alxwf
+ egrep -i 'ppid|pluto|ipsec|klips'
F UID PID PPID PRI NI VSZ RSS WCHAN STAT TTY TIME COMMAND
0 0 19104 5038 25 0 4440 1108 wait4 S pts/1 0:00 | \_ /bin/sh /usr/local/libexec/ipsec/barf
0 0 20042 19104 25 0 1620 504 pipe_w S pts/1 0:00 | \_ grep -E -i ppid|pluto|ipsec|klips
+ _________________________ ipsec/showdefaults
+ ipsec showdefaults
ipsec showdefaults: cannot find defaults file `/var/run/ipsec.info'
+ _________________________ ipsec/conf
+ ipsec _include /etc/ipsec.conf
+ ipsec _keycensor
#< /etc/ipsec.conf 1
# /etc/ipsec.conf - FreeS/WAN IPsec configuration file
# RCSID $Id: ipsec.conf.in,v 1.12 2004/01/20 19:37:13 sam Exp $
# This file: /usr/local/share/doc/freeswan/ipsec.conf-sample
#
# Manual: ipsec.conf.5
#
# Help:
# http://www.freeswan.org/freeswan_trees/freeswan-2.1.2/doc/quickstart.html
# http://www.freeswan.org/freeswan_trees/freeswan-2.1.2/doc/config.html
# http://www.freeswan.org/freeswan_trees/freeswan-2.1.2/doc/adv_config.html
#
# Policy groups are enabled by default. See:
# http://www.freeswan.org/freeswan_trees/freeswan-2.1.2/doc/policygroups.html
#
# Examples:
# http://www.freeswan.org/freeswan_trees/freeswan-2.1.2/doc/examples
version 2.0 # conforms to second version of ipsec.conf specification
# basic configuration
config setup
interfaces=%defaultroute
# Debug-logging controls: "none" for (almost) none, "all" for lots.
klipsdebug=all
plutodebug=all
conn tunnelipsec
type=tunnel
left=62.189.139.36
leftsubnet=172.18.100.0/24
right=194.73.118.113
rightsubnet=145.224.0.0/16
esp=3des-md5-96
authby=secret
keyexchange=ike
pfs=no
auto=start
# sample VPN connection
#sample# conn sample
#sample# # Left security gateway, subnet behind it, next hop toward right.
#sample# left=10.0.0.1
#sample# leftsubnet=172.16.0.0/24
#sample# leftnexthop=10.22.33.44
#sample# # Right security gateway, subnet behind it, next hop toward left.
#sample# right=10.12.12.1
#sample# rightsubnet=192.168.0.0/24
#sample# rightnexthop=10.101.102.103
#sample# # To authorize this connection, but not actually start it, at startup,
#sample# # uncomment this.
#sample# #auto=start
#Disable Opportunistic Encryption
#< /etc/ipsec.d/examples/no_oe.conf 1
# 'include' this file to disable Opportunistic Encryption.
# See /usr/local/share/doc/freeswan/policygroups.html for details.
#
# RCSID $Id: no_oe.conf.in,v 1.1 2004/01/20 19:24:23 sam Exp $
conn block
auto=ignore
conn private
auto=ignore
conn private-or-clear
auto=ignore
conn clear-or-private
auto=ignore
conn clear
auto=ignore
conn packetdefault
auto=ignore
#> /etc/ipsec.conf 57
+ _________________________ ipsec/secrets
+ ipsec _include /etc/ipsec.secrets
+ ipsec _secretcensor
#< /etc/ipsec.secrets 1
62.189.139.36 194.73.118.113: PSK "[sums to 9ac7...]"
+ '[' /etc/ipsec.d/policies ']'
++ basename /etc/ipsec.d/policies/block
+ base=block
+ _________________________ ipsec/policies/block
+ cat /etc/ipsec.d/policies/block
# This file defines the set of CIDRs (network/mask-length) to which
# communication should never be allowed.
#
# See /usr/local/share/doc/freeswan/policygroups.html for details.
#
# $Id: block.in,v 1.4 2003/02/17 02:22:15 mcr Exp $
#
++ basename /etc/ipsec.d/policies/clear
+ base=clear
+ _________________________ ipsec/policies/clear
+ cat /etc/ipsec.d/policies/clear
# This file defines the set of CIDRs (network/mask-length) to which
# communication should always be in the clear.
#
# See /usr/local/share/doc/freeswan/policygroups.html for details.
#
# $Id: clear.in,v 1.4 2003/02/17 02:22:15 mcr Exp $
#
++ basename /etc/ipsec.d/policies/clear-or-private
+ base=clear-or-private
+ _________________________ ipsec/policies/clear-or-private
+ cat /etc/ipsec.d/policies/clear-or-private
# This file defines the set of CIDRs (network/mask-length) to which
# we will communicate in the clear, or, if the other side initiates IPSEC,
# using encryption. This behaviour is also called "Opportunistic Responder".
#
# See /usr/local/share/doc/freeswan/policygroups.html for details.
#
# $Id: clear-or-private.in,v 1.4 2003/02/17 02:22:15 mcr Exp $
#
++ basename /etc/ipsec.d/policies/private
+ base=private
+ _________________________ ipsec/policies/private
+ cat /etc/ipsec.d/policies/private
# This file defines the set of CIDRs (network/mask-length) to which
# communication should always be private (i.e. encrypted).
# See /usr/local/share/doc/freeswan/policygroups.html for details.
#
# $Id: private.in,v 1.4 2003/02/17 02:22:15 mcr Exp $
#
++ basename /etc/ipsec.d/policies/private-or-clear
+ base=private-or-clear
+ _________________________ ipsec/policies/private-or-clear
+ cat /etc/ipsec.d/policies/private-or-clear
# This file defines the set of CIDRs (network/mask-length) to which
# communication should be private, if possible, but in the clear otherwise.
#
# If the target has a TXT (later IPSECKEY) record that specifies
# authentication material, we will require private (i.e. encrypted)
# communications. If no such record is found, communications will be
# in the clear.
#
# See /usr/local/share/doc/freeswan/policygroups.html for details.
#
# $Id: private-or-clear.in,v 1.5 2003/02/17 02:22:15 mcr Exp $
#
0.0.0.0/0
+ _________________________ ipsec/ls-libdir
+ ls -l /usr/local/lib/ipsec
total 104
-rwxr-xr-x 1 root root 15291 Aug 16 14:38 _confread
-rwxr-xr-x 1 root root 12447 Aug 16 14:38 _copyright
-rwxr-xr-x 1 root root 2379 Aug 16 14:38 _include
-rwxr-xr-x 1 root root 1475 Aug 16 14:38 _keycensor
-rwxr-xr-x 1 root root 3586 Aug 16 14:38 _plutoload
-rwxr-xr-x 1 root root 6780 Aug 16 14:38 _plutorun
-rwxr-xr-x 1 root root 10404 Aug 16 14:38 _realsetup
-rwxr-xr-x 1 root root 1975 Aug 16 14:38 _secretcensor
-rwxr-xr-x 1 root root 8427 Aug 16 14:38 _startklips
-rwxr-xr-x 1 root root 11261 Aug 16 14:38 _updown
-rwxr-xr-x 1 root root 7572 Aug 16 14:38 _updown_x509
-rwxr-xr-x 1 root root 1942 Aug 16 14:38 ipsec_pr.template
+ _________________________ ipsec/ls-execdir
+ ls -l /usr/local/libexec/ipsec
total 1972
-rwxr-xr-x 1 root root 22625 Aug 16 14:38 _pluto_adns
-rwxr-xr-x 1 root root 15651 Aug 16 14:38 auto
-rwxr-xr-x 1 root root 10191 Aug 16 14:38 barf
-rwxr-xr-x 1 root root 816 Aug 16 14:38 calcgoo
-rwxr-xr-x 1 root root 156457 Aug 16 14:38 eroute
-rwxr-xr-x 1 root root 46733 Aug 16 14:38 ikeping
-rwxr-xr-x 1 root root 101802 Aug 16 14:38 klipsdebug
-rwxr-xr-x 1 root root 2461 Aug 16 14:38 look
-rwxr-xr-x 1 root root 7130 Aug 16 14:38 mailkey
-rwxr-xr-x 1 root root 16188 Aug 16 14:38 manual
-rwxr-xr-x 1 root root 1874 Aug 16 14:38 newhostkey
-rwxr-xr-x 1 root root 92471 Aug 16 14:38 pf_key
-rwxr-xr-x 1 root root 967504 Aug 16 14:38 pluto
-rwxr-xr-x 1 root root 17361 Aug 16 14:38 ranbits
-rwxr-xr-x 1 root root 38119 Aug 16 14:38 rsasigkey
-rwxr-xr-x 1 root root 766 Aug 16 14:38 secrets
-rwxr-xr-x 1 root root 17602 Aug 16 14:38 send-pr
lrwxrwxrwx 1 root root 22 Aug 16 14:38 setup -> /etc/rc.d/init.d/ipsec
-rwxr-xr-x 1 root root 1048 Aug 16 14:38 showdefaults
-rwxr-xr-x 1 root root 4321 Aug 16 14:38 showhostkey
-rwxr-xr-x 1 root root 166649 Aug 16 14:38 spi
-rwxr-xr-x 1 root root 127186 Aug 16 14:38 spigrp
-rwxr-xr-x 1 root root 20105 Aug 16 14:38 tncfg
-rwxr-xr-x 1 root root 10201 Aug 16 14:38 verify
-rwxr-xr-x 1 root root 93974 Aug 16 14:38 whack
+ _________________________ ipsec/updowns
++ ls /usr/local/libexec/ipsec
++ egrep updown
+ _________________________ proc/net/dev
+ cat /proc/net/dev
Inter-| Receive | Transmit
face |bytes packets errs drop fifo frame compressed multicast|bytes packets errs drop fifo colls carrier compressed
lo:2677437453 1731102 0 0 0 0 0 0 2677437453 1731102 0 0 0 0 0 0
eth0:3748508433 9367297 0 0 0 0 0 0 568671473 5671763 0 0 0 0 0 0
+ _________________________ proc/net/route
+ cat /proc/net/route
Iface Destination Gateway Flags RefCnt Use Metric Mask MTU Window IRTT
eth0 006412AC 00000000 0001 0 0 0 00FFFFFF 0 0 0
eth0 008BBD3E 00000000 0001 0 0 0 00FFFFFF 0 0 0
eth0 0000FEA9 00000000 0001 0 0 0 0000FFFF 0 0 0
lo 0000007F 00000000 0001 0 0 0 000000FF 0 0 0
eth0 00000000 058BBD3E 0003 0 0 0 00000000 0 0 0
+ _________________________ proc/sys/net/ipv4/ip_forward
+ cat /proc/sys/net/ipv4/ip_forward
1
+ _________________________ proc/sys/net/ipv4/conf/star-rp_filter
+ cd /proc/sys/net/ipv4/conf
+ egrep '^' all/rp_filter default/rp_filter eth0/rp_filter lo/rp_filter
all/rp_filter:0
default/rp_filter:1
eth0/rp_filter:1
lo/rp_filter:1
+ _________________________ uname-a
+ uname -a
Linux mickey.rwa-net.co.uk 2.4.21-15.0.4.ELsmp #1 SMP Sat Jul 31 01:25:25 EDT 2004 i686 i686 i386 GNU/Linux
+ _________________________ config-built-with
+ test -r /proc/config_built_with
+ _________________________ redhat-release
+ test -r /etc/redhat-release
+ cat /etc/redhat-release
Red Hat Enterprise Linux ES release 3 (Taroon Update 2)
+ _________________________ proc/net/ipsec_version
+ test -r /proc/net/ipsec_version
+ test -r /proc/net/pfkey
++ uname -r
+ echo 'native PFKEY (2.4.21-15.0.4.ELsmp) support detected '
native PFKEY (2.4.21-15.0.4.ELsmp) support detected
+ _________________________ ipfwadm
+ test -r /sbin/ipfwadm
+ 'no old-style linux 1.x/2.0 ipfwadm firewall support'
/usr/local/libexec/ipsec/barf: line 286: no old-style linux 1.x/2.0 ipfwadm firewall support: No such file or directory
+ _________________________ ipchains
+ test -r /sbin/ipchains
+ echo 'no old-style linux 2.0 ipchains firewall support'
no old-style linux 2.0 ipchains firewall support
+ _________________________ iptables
+ test -r /sbin/iptables
+ iptables -L -v -n
Chain INPUT (policy ACCEPT 296 packets, 46393 bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 332 packets, 280K bytes)
pkts bytes target prot opt in out source destination
+ _________________________
+ iptables -t nat -L -v -n
Chain PREROUTING (policy ACCEPT 3 packets, 470 bytes)
pkts bytes target prot opt in out source destination
Chain POSTROUTING (policy ACCEPT 3 packets, 1618 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 3 packets, 1618 bytes)
pkts bytes target prot opt in out source destination
+ _________________________
+ iptables -t mangle -L -v -n
Chain PREROUTING (policy ACCEPT 296 packets, 46393 bytes)
pkts bytes target prot opt in out source destination
Chain INPUT (policy ACCEPT 296 packets, 46393 bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 332 packets, 280K bytes)
pkts bytes target prot opt in out source destination
Chain POSTROUTING (policy ACCEPT 332 packets, 280K bytes)
pkts bytes target prot opt in out source destination
+ _________________________ proc/modules
+ test -f /proc/modules
+ cat /proc/modules
iptable_mangle 2776 0 (autoclean) (unused)
iptable_nat 22744 0 (autoclean) (unused)
ip_conntrack 29704 1 (autoclean) [iptable_nat]
iptable_filter 2412 0 (autoclean) (unused)
ip_tables 16544 5 [iptable_mangle iptable_nat iptable_filter]
cpqasm 343520 20
cpqevt 9280 2 [cpqasm]
ipcomp 5584 0 (unused)
esp4 7472 0 (unused)
ah4 5648 0 (unused)
autofs 13620 0 (autoclean) (unused)
twofish 39980 0 (autoclean)
serpent 12972 0 (autoclean)
aes 32608 0 (autoclean)
blowfish 7724 0 (autoclean)
sha256 10796 0 (autoclean)
crypto_null 1644 0 (autoclean)
af_key 25704 0 (autoclean)
tg3 58312 1
floppy 57520 0 (autoclean)
sg 37228 0 (autoclean)
microcode 6848 0 (autoclean)
st 31396 0
keybdev 2976 0 (unused)
mousedev 5624 0 (unused)
hid 22276 0 (unused)
input 6144 0 [keybdev mousedev hid]
usb-ohci 23176 0 (unused)
usbcore 80928 1 [hid usb-ohci]
ext3 89960 6
jbd 55060 6 [ext3]
cciss 44996 9
aic7xxx 162064 0
sd_mod 13360 0 (unused)
scsi_mod 112680 4 [sg st cciss aic7xxx sd_mod]
+ _________________________ proc/meminfo
+ cat /proc/meminfo
total: used: free: shared: buffers: cached:
Mem: 2375643136 2201591808 174051328 0 282525696 1565102080
Swap: 6442278912 0 6442278912
MemTotal: 2319964 kB
MemFree: 169972 kB
MemShared: 0 kB
Buffers: 275904 kB
Cached: 1528420 kB
SwapCached: 0 kB
Active: 733356 kB
ActiveAnon: 45540 kB
ActiveCache: 687816 kB
Inact_dirty: 932648 kB
Inact_laundry: 175064 kB
Inact_clean: 1388 kB
Inact_target: 368488 kB
HighTotal: 1441768 kB
HighFree: 22020 kB
LowTotal: 878196 kB
LowFree: 147952 kB
SwapTotal: 6291288 kB
SwapFree: 6291288 kB
HugePages_Total: 0
HugePages_Free: 0
Hugepagesize: 2048 kB
+ _________________________ proc/net/ipsec-ls
+ test -f /proc/net/ipsec_version
+ _________________________ usr/src/linux/.config
+ test -f /proc/config.gz
++ uname -r
+ test -f /lib/modules/2.4.21-15.0.4.ELsmp/build/.config
+ echo 'no .config file found, cannot list kernel properties'
no .config file found, cannot list kernel properties
+ _________________________ etc/syslog.conf
+ cat /etc/syslog.conf
# Log all kernel messages to the console.
# Logging much else clutters up the screen.
#kern.* /dev/console
# Log anything (except mail) of level info or higher.
# Don't log private authentication messages!
*.info;mail.none;authpriv.none;cron.none /var/log/messages
# The authpriv file has restricted access.
authpriv.* /var/log/secure
# Log all the mail messages in one place.
mail.* /var/log/maillog
# Log cron stuff
cron.* /var/log/cron
# Everybody gets emergency messages
*.emerg *
# Save news errors of level crit and higher in a special file.
uucp,news.crit /var/log/spooler
# Save boot messages also to boot.log
local7.* /var/log/boot.log
# Save system monitoring (hpasm) messages to hpasm.log
local6.* /var/log/hpasm.log
# for NIC SNMP agents link status reporting
kern.info;kern.err |/var/spool/compaq/nic/messages_fifo
+ _________________________ etc/resolv.conf
+ cat /etc/resolv.conf
search rwa-net.co.uk
nameserver 62.189.139.33
+ _________________________ lib/modules-ls
+ ls -ltr /lib/modules
total 24
drwxr-xr-x 3 root root 4096 May 12 20:53 2.4.21-15.EL
drwxr-xr-x 3 root root 4096 Jul 5 17:07 2.4.21-15.0.3.ELsmp
drwxr-xr-x 3 root root 4096 Jul 5 17:08 2.4.21-15.0.3.EL
drwxr-xr-x 3 root root 4096 Aug 3 12:37 2.4.21-15.ELsmp
drwxr-xr-x 3 root root 4096 Aug 6 11:47 2.4.21-15.0.4.EL
drwxr-xr-x 3 root root 4096 Aug 6 11:47 2.4.21-15.0.4.ELsmp
+ _________________________ proc/ksyms-netif_rx
+ test -r /proc/ksyms
+ egrep netif_rx /proc/ksyms
c0228d70 netif_rx_Rsmp_2df85acb
+ _________________________ lib/modules-netif_rx
+ modulegoo kernel/net/ipv4/ipip.o netif_rx
+ set +x
2.4.21-15.0.3.EL: U netif_rx_Rd7d5ce2f
2.4.21-15.0.3.ELsmp: U netif_rx_Rsmp_2df85acb
2.4.21-15.0.4.EL: U netif_rx_Rd7d5ce2f
2.4.21-15.0.4.ELsmp: U netif_rx_Rsmp_2df85acb
2.4.21-15.EL: U netif_rx_Rd7d5ce2f
2.4.21-15.ELsmp: U netif_rx_Rsmp_2df85acb
+ _________________________ kern.debug
+ test -f /var/log/kern.debug
+ _________________________ klog
+ sed -n '6868490,$p' /var/log/messages
+ egrep -i 'ipsec|klips|pluto'
+ cat
Aug 17 09:11:40 mickey ipsec_setup: Starting Openswan IPsec U2.1.2/K2.4.21-15.0.4.ELsmp...
Aug 17 09:11:40 mickey ipsec_setup: modprobe: Can't locate module xfrm_user
Aug 17 09:11:40 mickey ipsec_setup: KLIPS ipsec0 on eth0 62.189.139.36/255.255.255.0 broadcast 62.189.139.255
Aug 17 09:11:40 mickey ipsec_setup: ...Openswan IPsec started
Aug 17 09:11:47 mickey ipsec__plutorun: 104 "tunnelipsec" #1: STATE_MAIN_I1: initiate
Aug 17 09:11:47 mickey ipsec__plutorun: ...could not start conn "tunnelipsec"
Aug 17 09:16:46 mickey ipsec_setup: Stopping Openswan IPsec...
Aug 17 09:16:48 mickey ipsec_setup: ...Openswan IPsec stopped
+ _________________________ plog
+ sed -n '3446939,$p' /var/log/secure
+ egrep -i pluto
+ cat
Aug 17 09:11:40 mickey ipsec__plutorun: Starting Pluto subsystem...
Aug 17 09:11:40 mickey pluto[5162]: Starting Pluto (Openswan Version 2.1.2 X.509-1.4.8 PLUTO_USES_KEYRR)
Aug 17 09:11:40 mickey pluto[5162]: including NAT-Traversal patch (Version 0.6c) [disabled]
Aug 17 09:11:40 mickey pluto[5162]: | opening /dev/urandom
Aug 17 09:11:40 mickey pluto[5162]: | inserting event EVENT_REINIT_SECRET, timeout in 3600 seconds
Aug 17 09:11:40 mickey pluto[5162]: | process 5162 listening for PF_KEY_V2 on file descriptor 6
Aug 17 09:11:40 mickey pluto[5162]: Using Linux 2.6 IPsec interface code
Aug 17 09:11:40 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_hdr_build:
Aug 17 09:11:40 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_hdr_build: on_entry &pfkey_ext=0p0xbfff7c40 pfkey_ext=0p0xbfff8ca0 *pfkey_ext=0p(nil).
Aug 17 09:11:40 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_hdr_build: on_exit &pfkey_ext=0p0xbfff7c40 pfkey_ext=0p0xbfff8ca0 *pfkey_ext=0p0x80c6358.
Aug 17 09:11:40 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_build: pfkey_msg=0p0x80c6370 allocated 16 bytes, &(extensions[0])=0p0xbfff8ca0
Aug 17 09:11:40 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_build: extensions permitted=00000001, seen=00000001, required=00000001.
Aug 17 09:11:40 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_parse: parsing message ver=2, type=7(register), errno=0, satype=2(AH), len=2, res=0, seq=1, pid=5162.
Aug 17 09:11:40 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_parse: remain=0, ext_type=0(reserved), ext_len=0.
Aug 17 09:11:40 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_parse: extensions permitted=00000001, required=00000001.
Aug 17 09:11:40 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_parse: extensions permitted=00000001, seen=00000001, required=00000001.
Aug 17 09:11:40 mickey pluto[5162]: | finish_pfkey_msg: SADB_REGISTER message 1 for AH
Aug 17 09:11:40 mickey pluto[5162]: | 02 07 00 02 02 00 00 00 01 00 00 00 2a 14 00 00
Aug 17 09:11:41 mickey pluto[5162]: | pfkey_get: SADB_REGISTER message 1
Aug 17 09:11:41 mickey pluto[5162]: | AH registered with kernel.
Aug 17 09:11:41 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_hdr_build:
Aug 17 09:11:41 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_hdr_build: on_entry &pfkey_ext=0p0xbfff7c40 pfkey_ext=0p0xbfff8ca0 *pfkey_ext=0p(nil).
Aug 17 09:11:41 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_hdr_build: on_exit &pfkey_ext=0p0xbfff7c40 pfkey_ext=0p0xbfff8ca0 *pfkey_ext=0p0x80c6358.
Aug 17 09:11:41 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_build: pfkey_msg=0p0x80c6370 allocated 16 bytes, &(extensions[0])=0p0xbfff8ca0
Aug 17 09:11:41 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_build: extensions permitted=00000001, seen=00000001, required=00000001.
Aug 17 09:11:41 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_parse: parsing message ver=2, type=7(register), errno=0, satype=3(ESP), len=2, res=0, seq=2, pid=5162.
Aug 17 09:11:41 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_parse: remain=0, ext_type=0(reserved), ext_len=0.
Aug 17 09:11:41 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_parse: extensions permitted=00000001, required=00000001.
Aug 17 09:11:41 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_parse: extensions permitted=00000001, seen=00000001, required=00000001.
Aug 17 09:11:41 mickey pluto[5162]: | finish_pfkey_msg: SADB_REGISTER message 2 for ESP
Aug 17 09:11:41 mickey pluto[5162]: | 02 07 00 03 02 00 00 00 02 00 00 00 2a 14 00 00
Aug 17 09:11:42 mickey pluto[5162]: | pfkey_get: SADB_REGISTER message 2
Aug 17 09:11:42 mickey pluto[5162]: | ESP registered with kernel.
Aug 17 09:11:42 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_hdr_build:
Aug 17 09:11:42 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_hdr_build: on_entry &pfkey_ext=0p0xbfff7c40 pfkey_ext=0p0xbfff8ca0 *pfkey_ext=0p(nil).
Aug 17 09:11:42 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_hdr_build: on_exit &pfkey_ext=0p0xbfff7c40 pfkey_ext=0p0xbfff8ca0 *pfkey_ext=0p0x80c6358.
Aug 17 09:11:42 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_build: pfkey_msg=0p0x80c6370 allocated 16 bytes, &(extensions[0])=0p0xbfff8ca0
Aug 17 09:11:42 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_build: extensions permitted=00000001, seen=00000001, required=00000001.
Aug 17 09:11:42 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_parse: parsing message ver=2, type=7(register), errno=0, satype=9(IPIP), len=2, res=0, seq=3, pid=5162.
Aug 17 09:11:42 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_parse: remain=0, ext_type=0(reserved), ext_len=0.
Aug 17 09:11:42 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_parse: extensions permitted=00000001, required=00000001.
Aug 17 09:11:42 mickey pluto[5162]: | pfkey_lib_debug:pfkey_msg_parse: extensions permitted=00000001, seen=00000001, required=00000001.
Aug 17 09:11:42 mickey pluto[5162]: | finish_pfkey_msg: SADB_REGISTER message 3 for IPCOMP
Aug 17 09:11:42 mickey pluto[5162]: | 02 07 00 09 02 00 00 00 03 00 00 00 2a 14 00 00
Aug 17 09:11:42 mickey pluto[5162]: | pfkey_get: SADB_REGISTER message 3
Aug 17 09:11:42 mickey pluto[5162]: | IPCOMP registered with kernel.
Aug 17 09:11:42 mickey pluto[5162]: Changing to directory '/etc/ipsec.d/cacerts'
Aug 17 09:11:42 mickey pluto[5162]: Warning: empty directory
Aug 17 09:11:42 mickey pluto[5162]: Changing to directory '/etc/ipsec.d/crls'
Aug 17 09:11:42 mickey pluto[5162]: Warning: empty directory
Aug 17 09:11:42 mickey pluto[5162]: | inserting event 9??, timeout in 53298 seconds
Aug 17 09:11:42 mickey pluto[5162]: | next event EVENT_REINIT_SECRET in 3598 seconds
Aug 17 09:11:42 mickey pluto[5162]: |
Aug 17 09:11:42 mickey pluto[5162]: | *received whack message
Aug 17 09:11:42 mickey pluto[5162]: | Added new connection tunnelipsec with policy PSK+ENCRYPT+TUNNEL
Aug 17 09:11:42 mickey pluto[5162]: | counting wild cards for (none) is 15
Aug 17 09:11:42 mickey pluto[5162]: | sendcert is 0
Aug 17 09:11:42 mickey pluto[5162]: | counting wild cards for (none) is 15
Aug 17 09:11:42 mickey pluto[5162]: | sendcert is 0
Aug 17 09:11:42 mickey pluto[5162]: added connection description "tunnelipsec"
Aug 17 09:11:42 mickey pluto[5162]: | 172.18.100.0/24===62.189.139.36...194.73.118.113===145.224.0.0/16
Aug 17 09:11:42 mickey pluto[5162]: | ike_life: 3600s; ipsec_life: 28800s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 0; policy: PSK+ENCRYPT+TUNNEL
Aug 17 09:11:42 mickey pluto[5162]: | next event EVENT_REINIT_SECRET in 3598 seconds
Aug 17 09:11:42 mickey pluto[5162]: |
Aug 17 09:11:42 mickey pluto[5162]: | *received whack message
Aug 17 09:11:42 mickey pluto[5162]: listening for IKE messages
Aug 17 09:11:43 mickey pluto[5162]: | found lo with address 127.0.0.1
Aug 17 09:11:43 mickey pluto[5162]: | found eth0 with address 62.189.139.36
Aug 17 09:11:43 mickey pluto[5162]: | found eth0:0 with address 172.18.100.1
Aug 17 09:11:43 mickey pluto[5162]: adding interface eth0:0/eth0:0 172.18.100.1
Aug 17 09:11:43 mickey pluto[5162]: adding interface eth0/eth0 62.189.139.36
Aug 17 09:11:43 mickey pluto[5162]: adding interface lo/lo 127.0.0.1
Aug 17 09:11:43 mickey pluto[5162]: | could not open /proc/net/if_inet6
Aug 17 09:11:43 mickey pluto[5162]: loading secrets from "/etc/ipsec.secrets"
Aug 17 09:11:43 mickey pluto[5162]: | next event EVENT_REINIT_SECRET in 3597 seconds
Aug 17 09:11:43 mickey pluto[5162]: |
Aug 17 09:11:43 mickey pluto[5162]: | *received whack message
Aug 17 09:11:43 mickey pluto[5162]: | route owner of "tunnelipsec" unrouted: NULL; eroute owner: NULL
Aug 17 09:11:43 mickey pluto[5162]: | could_route called for tunnelipsec (kind=CK_PERMANENT)
Aug 17 09:11:43 mickey pluto[5162]: | route owner of "tunnelipsec" unrouted: NULL; eroute owner: NULL
Aug 17 09:11:43 mickey pluto[5162]: | route_and_eroute with c: tunnelipsec (next: none) ero:null esr:{(nil)} ro:null rosr:{(nil)} and state: 0
Aug 17 09:11:43 mickey pluto[5162]: | add eroute 145.224.0.0/16:0 --0-> 172.18.100.0/24:0 => %trap (raw_eroute)
Aug 17 09:11:43 mickey pluto[5162]: | eroute_connection add eroute 172.18.100.0/24:0 --0-> 145.224.0.0/16:0 => %trap (raw_eroute)
Aug 17 09:11:43 mickey pluto[5162]: | route_and_eroute: firewall_notified: true
Aug 17 09:11:43 mickey pluto[5162]: | executing prepare-client: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='prepare-client' PLUTO_CONNECTION='tunnelipsec' PLUTO_NEXT_HOP='194.73.118.113' PLUTO_INTERFACE='eth0' PLUTO_ME='62.189.139.36' PLUTO_MY_ID='62.189.139.36' PLUTO_MY_CLIENT='172.18.100.0/24' PLUTO_MY_CLIENT_NET='172.18.100.0' PLUTO_MY_CLIENT_MASK='255.255.255.0' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='194.73.118.113' PLUTO_PEER_ID='194.73.118.113' PLUTO_PEER_CLIENT='145.224.0.0/16' PLUTO_PEER_CLIENT_NET='145.224.0.0' PLUTO_PEER_CLIENT_MASK='255.255.0.0' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='' ipsec _updown
Aug 17 09:11:43 mickey pluto[5162]: | executing route-client: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='route-client' PLUTO_CONNECTION='tunnelipsec' PLUTO_NEXT_HOP='194.73.118.113' PLUTO_INTERFACE='eth0' PLUTO_ME='62.189.139.36' PLUTO_MY_ID='62.189.139.36' PLUTO_MY_CLIENT='172.18.100.0/24' PLUTO_MY_CLIENT_NET='172.18.100.0' PLUTO_MY_CLIENT_MASK='255.255.255.0' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='194.73.118.113' PLUTO_PEER_ID='194.73.118.113' PLUTO_PEER_CLIENT='145.224.0.0/16' PLUTO_PEER_CLIENT_NET='145.224.0.0' PLUTO_PEER_CLIENT_MASK='255.255.0.0' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='' ipsec _updown
Aug 17 09:11:43 mickey pluto[5162]: "tunnelipsec": route-client output: /usr/local/lib/ipsec/_updown: doroute `ip route add 145.224.0.0/16 via 194.73.118.113 dev eth0 ' failed (RTNETLINK answers: Network is unreachable)
Aug 17 09:11:43 mickey pluto[5162]: | next event EVENT_REINIT_SECRET in 3597 seconds
Aug 17 09:11:43 mickey pluto[5162]: |
Aug 17 09:11:43 mickey pluto[5162]: | *received whack message
Aug 17 09:11:43 mickey pluto[5162]: | creating state object #1 at 0x80c4810
Aug 17 09:11:43 mickey pluto[5162]: | ICOOKIE: bf 89 c6 06 46 90 aa 94
Aug 17 09:11:43 mickey pluto[5162]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 17 09:11:43 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:11:43 mickey pluto[5162]: | state hash entry 16
Aug 17 09:11:43 mickey pluto[5162]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #1
Aug 17 09:11:43 mickey pluto[5162]: | Queuing pending Quick Mode with 194.73.118.113 "tunnelipsec"
Aug 17 09:11:43 mickey pluto[5162]: "tunnelipsec" #1: initiating Main Mode
Aug 17 09:11:43 mickey pluto[5162]: | **emit ISAKMP Message:
Aug 17 09:11:43 mickey pluto[5162]: | initiator cookie:
Aug 17 09:11:43 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94
Aug 17 09:11:43 mickey pluto[5162]: | responder cookie:
Aug 17 09:11:43 mickey pluto[5162]: | 00 00 00 00 00 00 00 00
Aug 17 09:11:43 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_SA
Aug 17 09:11:43 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:11:43 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:11:44 mickey pluto[5162]: | flags: none
Aug 17 09:11:44 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:11:44 mickey pluto[5162]: | ***emit ISAKMP Security Association Payload:
Aug 17 09:11:44 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:11:44 mickey pluto[5162]: | DOI: ISAKMP_DOI_IPSEC
Aug 17 09:11:44 mickey pluto[5162]: | ****emit IPsec DOI SIT:
Aug 17 09:11:44 mickey pluto[5162]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
Aug 17 09:11:44 mickey pluto[5162]: | ****emit ISAKMP Proposal Payload:
Aug 17 09:11:44 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:11:44 mickey pluto[5162]: | proposal number: 0
Aug 17 09:11:44 mickey pluto[5162]: | protocol ID: PROTO_ISAKMP
Aug 17 09:11:44 mickey pluto[5162]: | SPI size: 0
Aug 17 09:11:44 mickey pluto[5162]: | number of transforms: 4
Aug 17 09:11:44 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:11:44 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_T
Aug 17 09:11:44 mickey pluto[5162]: | transform number: 0
Aug 17 09:11:44 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:11:44 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:44 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:11:44 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:44 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:11:44 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:44 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:11:44 mickey pluto[5162]: | length/value: 3600
Aug 17 09:11:44 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:44 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:11:44 mickey pluto[5162]: | length/value: 5
Aug 17 09:11:44 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:11:44 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:44 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:11:44 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:44 mickey pluto[5162]: | [1 is OAKLEY_MD5]
Aug 17 09:11:44 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:44 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:11:44 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:44 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:11:44 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:44 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:11:44 mickey pluto[5162]: | length/value: 5
Aug 17 09:11:44 mickey pluto[5162]: | [5 is OAKLEY_GROUP_MODP1536 (extension)]
Aug 17 09:11:45 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:11:45 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:11:45 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_T
Aug 17 09:11:45 mickey pluto[5162]: | transform number: 1
Aug 17 09:11:45 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:11:45 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:45 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:11:45 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:45 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:11:45 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:45 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:11:45 mickey pluto[5162]: | length/value: 3600
Aug 17 09:11:45 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:45 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:11:45 mickey pluto[5162]: | length/value: 5
Aug 17 09:11:45 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:11:45 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:45 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:11:45 mickey pluto[5162]: | length/value: 2
Aug 17 09:11:45 mickey pluto[5162]: | [2 is OAKLEY_SHA]
Aug 17 09:11:45 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:45 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:11:45 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:45 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:11:45 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:45 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:11:45 mickey pluto[5162]: | length/value: 5
Aug 17 09:11:45 mickey pluto[5162]: | [5 is OAKLEY_GROUP_MODP1536 (extension)]
Aug 17 09:11:45 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:11:45 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:11:45 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_T
Aug 17 09:11:45 mickey pluto[5162]: | transform number: 2
Aug 17 09:11:45 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:11:45 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:45 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:11:45 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:45 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:11:46 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:46 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:11:46 mickey pluto[5162]: | length/value: 3600
Aug 17 09:11:46 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:46 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:11:46 mickey pluto[5162]: | length/value: 5
Aug 17 09:11:46 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:11:46 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:46 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:11:46 mickey pluto[5162]: | length/value: 2
Aug 17 09:11:46 mickey pluto[5162]: | [2 is OAKLEY_SHA]
Aug 17 09:11:46 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:46 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:11:46 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:46 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:11:46 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:46 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:11:46 mickey pluto[5162]: | length/value: 2
Aug 17 09:11:46 mickey pluto[5162]: | [2 is OAKLEY_GROUP_MODP1024]
Aug 17 09:11:46 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:11:46 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:11:46 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:11:46 mickey pluto[5162]: | transform number: 3
Aug 17 09:11:46 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:11:46 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:46 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:11:46 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:46 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:11:46 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:46 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:11:46 mickey pluto[5162]: | length/value: 3600
Aug 17 09:11:46 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:46 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:11:46 mickey pluto[5162]: | length/value: 5
Aug 17 09:11:46 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:11:46 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:46 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:11:46 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:46 mickey pluto[5162]: | [1 is OAKLEY_MD5]
Aug 17 09:11:46 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:47 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:11:47 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:47 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:11:47 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:11:47 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:11:47 mickey pluto[5162]: | length/value: 2
Aug 17 09:11:47 mickey pluto[5162]: | [2 is OAKLEY_GROUP_MODP1024]
Aug 17 09:11:47 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:11:47 mickey pluto[5162]: | emitting length of ISAKMP Proposal Payload: 136
Aug 17 09:11:47 mickey pluto[5162]: | emitting length of ISAKMP Security Association Payload: 148
Aug 17 09:11:47 mickey pluto[5162]: | emitting length of ISAKMP Message: 176
Aug 17 09:11:47 mickey pluto[5162]: | sending 176 bytes for main_outI1 through eth0 to 194.73.118.113:500:
Aug 17 09:11:47 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94 00 00 00 00 00 00 00 00
Aug 17 09:11:47 mickey pluto[5162]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94
Aug 17 09:11:47 mickey pluto[5162]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04
Aug 17 09:11:47 mickey pluto[5162]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:11:47 mickey pluto[5162]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05
Aug 17 09:11:47 mickey pluto[5162]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:11:47 mickey pluto[5162]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05
Aug 17 09:11:47 mickey pluto[5162]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:11:47 mickey pluto[5162]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02
Aug 17 09:11:47 mickey pluto[5162]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:11:47 mickey pluto[5162]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02
Aug 17 09:11:47 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #1
Aug 17 09:11:47 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 10 seconds for #1
Aug 17 09:11:47 mickey pluto[5162]: |
Aug 17 09:11:47 mickey pluto[5162]: | *received 104 bytes from 194.73.118.113:500 on eth0
Aug 17 09:11:47 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:47 mickey pluto[5162]: | 01 10 02 00 00 00 00 00 00 00 00 68 0d 00 00 34
Aug 17 09:11:47 mickey pluto[5162]: | 00 00 00 01 00 00 00 01 00 00 00 28 01 01 00 01
Aug 17 09:11:47 mickey pluto[5162]: | 00 00 00 20 03 01 00 00 80 01 00 05 80 02 00 01
Aug 17 09:11:47 mickey pluto[5162]: | 80 04 00 02 80 03 00 01 80 0b 00 01 80 0c 0e 10
Aug 17 09:11:47 mickey pluto[5162]: | 00 00 00 18 40 48 b7 d5 6e bc e8 85 25 e7 de 7f
Aug 17 09:11:47 mickey pluto[5162]: | 00 d6 c2 d3 c0 00 00 00
Aug 17 09:11:47 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:11:47 mickey pluto[5162]: | initiator cookie:
Aug 17 09:11:47 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94
Aug 17 09:11:47 mickey pluto[5162]: | responder cookie:
Aug 17 09:11:47 mickey pluto[5162]: | 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:47 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_SA
Aug 17 09:11:47 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:11:47 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:11:48 mickey pluto[5162]: | flags: none
Aug 17 09:11:48 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:11:48 mickey pluto[5162]: | length: 104
Aug 17 09:11:48 mickey pluto[5162]: | ICOOKIE: bf 89 c6 06 46 90 aa 94
Aug 17 09:11:48 mickey pluto[5162]: | RCOOKIE: 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:48 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:11:48 mickey pluto[5162]: | state hash entry 1
Aug 17 09:11:48 mickey pluto[5162]: | state object not found
Aug 17 09:11:48 mickey pluto[5162]: | ICOOKIE: bf 89 c6 06 46 90 aa 94
Aug 17 09:11:48 mickey pluto[5162]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 17 09:11:48 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:11:48 mickey pluto[5162]: | state hash entry 16
Aug 17 09:11:48 mickey pluto[5162]: | peer and cookies match on #1, provided msgid 00000000 vs 00000000
Aug 17 09:11:48 mickey pluto[5162]: | state object #1 found, in STATE_MAIN_I1
Aug 17 09:11:48 mickey pluto[5162]: | ***parse ISAKMP Security Association Payload:
Aug 17 09:11:48 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:11:48 mickey pluto[5162]: | length: 52
Aug 17 09:11:48 mickey pluto[5162]: | DOI: ISAKMP_DOI_IPSEC
Aug 17 09:11:48 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:11:48 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:11:48 mickey pluto[5162]: | length: 24
Aug 17 09:11:48 mickey pluto[5162]: "tunnelipsec" #1: ignoring Vendor ID payload [4048b7d56ebce885...]
Aug 17 09:11:48 mickey pluto[5162]: | ****parse IPsec DOI SIT:
Aug 17 09:11:48 mickey pluto[5162]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
Aug 17 09:11:48 mickey pluto[5162]: | ****parse ISAKMP Proposal Payload:
Aug 17 09:11:48 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:11:48 mickey pluto[5162]: | length: 40
Aug 17 09:11:48 mickey pluto[5162]: | proposal number: 1
Aug 17 09:11:48 mickey pluto[5162]: | protocol ID: PROTO_ISAKMP
Aug 17 09:11:48 mickey pluto[5162]: | SPI size: 0
Aug 17 09:11:48 mickey pluto[5162]: | number of transforms: 1
Aug 17 09:11:48 mickey pluto[5162]: | *****parse ISAKMP Transform Payload (ISAKMP):
Aug 17 09:11:48 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:11:48 mickey pluto[5162]: | length: 32
Aug 17 09:11:48 mickey pluto[5162]: | transform number: 3
Aug 17 09:11:48 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:11:48 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:11:48 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:11:48 mickey pluto[5162]: | length/value: 5
Aug 17 09:11:49 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:11:49 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:11:49 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:11:49 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:49 mickey pluto[5162]: | [1 is OAKLEY_MD5]
Aug 17 09:11:49 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:11:49 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:11:49 mickey pluto[5162]: | length/value: 2
Aug 17 09:11:49 mickey pluto[5162]: | [2 is OAKLEY_GROUP_MODP1024]
Aug 17 09:11:49 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:11:49 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:11:49 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:49 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:11:49 mickey pluto[5162]: | looking for secret for 62.189.139.36->194.73.118.113 of kind PPK_PSK
Aug 17 09:11:49 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:11:49 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:11:49 mickey pluto[5162]: | length/value: 1
Aug 17 09:11:49 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:11:49 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:11:49 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:11:49 mickey pluto[5162]: | length/value: 3600
Aug 17 09:11:49 mickey pluto[5162]: | Oakley Transform 3 accepted
Aug 17 09:11:49 mickey pluto[5162]: | sender checking NAT-t: 0 and 0
Aug 17 09:11:49 mickey pluto[5162]: | **emit ISAKMP Message:
Aug 17 09:11:49 mickey pluto[5162]: | initiator cookie:
Aug 17 09:11:49 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94
Aug 17 09:11:49 mickey pluto[5162]: | responder cookie:
Aug 17 09:11:49 mickey pluto[5162]: | 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:49 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:11:49 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:11:49 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:11:49 mickey pluto[5162]: | flags: none
Aug 17 09:11:49 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:11:49 mickey pluto[5162]: | Local DH secret:
Aug 17 09:11:49 mickey pluto[5162]: | 28 0c ac b7 56 06 e4 b2 54 cf 3c bb cf 9e 61 74
Aug 17 09:11:49 mickey pluto[5162]: | 96 6a 88 17 1c dc 73 1a ed fd fd e2 c3 e5 6c 54
Aug 17 09:11:49 mickey pluto[5162]: | Public DH value sent:
Aug 17 09:11:49 mickey pluto[5162]: | 1e 11 a4 df e0 d1 ff b4 96 e5 18 62 1f af 52 f3
Aug 17 09:11:49 mickey pluto[5162]: | 00 4f b7 9e 93 15 a6 c0 ac 1e e2 e0 a2 16 f0 42
Aug 17 09:11:49 mickey pluto[5162]: | 51 51 e4 57 1a 5e 1f e5 83 4c e9 88 1d 90 30 14
Aug 17 09:11:49 mickey pluto[5162]: | 2c c6 24 6b 96 06 a0 9e c3 5c d0 f4 ac f5 c2 94
Aug 17 09:11:49 mickey pluto[5162]: | b8 b8 07 d6 c0 da 92 ab be b9 08 1e 46 a4 b3 a4
Aug 17 09:11:49 mickey pluto[5162]: | 50 9f f9 79 55 c0 fe f8 46 f7 6a 1b fa 86 27 ca
Aug 17 09:11:50 mickey pluto[5162]: | 4e 5b e1 cf 42 59 01 1b 0e 31 45 09 b1 d4 49 97
Aug 17 09:11:50 mickey pluto[5162]: | 04 54 e5 6d 96 95 c5 d3 ca 15 fd 25 7b 88 ec c5
Aug 17 09:11:50 mickey pluto[5162]: | ***emit ISAKMP Key Exchange Payload:
Aug 17 09:11:50 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONCE
Aug 17 09:11:50 mickey pluto[5162]: | emitting 128 raw bytes of keyex value into ISAKMP Key Exchange Payload
Aug 17 09:11:50 mickey pluto[5162]: | keyex value 1e 11 a4 df e0 d1 ff b4 96 e5 18 62 1f af 52 f3
Aug 17 09:11:50 mickey pluto[5162]: | 00 4f b7 9e 93 15 a6 c0 ac 1e e2 e0 a2 16 f0 42
Aug 17 09:11:50 mickey pluto[5162]: | 51 51 e4 57 1a 5e 1f e5 83 4c e9 88 1d 90 30 14
Aug 17 09:11:50 mickey pluto[5162]: | 2c c6 24 6b 96 06 a0 9e c3 5c d0 f4 ac f5 c2 94
Aug 17 09:11:50 mickey pluto[5162]: | b8 b8 07 d6 c0 da 92 ab be b9 08 1e 46 a4 b3 a4
Aug 17 09:11:50 mickey pluto[5162]: | 50 9f f9 79 55 c0 fe f8 46 f7 6a 1b fa 86 27 ca
Aug 17 09:11:50 mickey pluto[5162]: | 4e 5b e1 cf 42 59 01 1b 0e 31 45 09 b1 d4 49 97
Aug 17 09:11:50 mickey pluto[5162]: | 04 54 e5 6d 96 95 c5 d3 ca 15 fd 25 7b 88 ec c5
Aug 17 09:11:50 mickey pluto[5162]: | emitting length of ISAKMP Key Exchange Payload: 132
Aug 17 09:11:50 mickey pluto[5162]: | ***emit ISAKMP Nonce Payload:
Aug 17 09:11:50 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:11:50 mickey pluto[5162]: | emitting 16 raw bytes of Ni into ISAKMP Nonce Payload
Aug 17 09:11:50 mickey pluto[5162]: | Ni 16 81 da 74 86 fc 9f 19 f2 f6 23 34 23 f4 af e9
Aug 17 09:11:50 mickey pluto[5162]: | emitting length of ISAKMP Nonce Payload: 20
Aug 17 09:11:50 mickey pluto[5162]: | emitting length of ISAKMP Message: 180
Aug 17 09:11:50 mickey pluto[5162]: | ICOOKIE: bf 89 c6 06 46 90 aa 94
Aug 17 09:11:50 mickey pluto[5162]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 17 09:11:50 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:11:50 mickey pluto[5162]: | state hash entry 16
Aug 17 09:11:50 mickey pluto[5162]: | ICOOKIE: bf 89 c6 06 46 90 aa 94
Aug 17 09:11:50 mickey pluto[5162]: | RCOOKIE: 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:50 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:11:50 mickey pluto[5162]: | state hash entry 1
Aug 17 09:11:50 mickey pluto[5162]: "tunnelipsec" #1: transition from state STATE_MAIN_I1 to state STATE_MAIN_I2
Aug 17 09:11:50 mickey pluto[5162]: | sending 180 bytes for STATE_MAIN_I1 through eth0 to 194.73.118.113:500:
Aug 17 09:11:50 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:50 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 00 b4 0a 00 00 84
Aug 17 09:11:50 mickey pluto[5162]: | 1e 11 a4 df e0 d1 ff b4 96 e5 18 62 1f af 52 f3
Aug 17 09:11:50 mickey pluto[5162]: | 00 4f b7 9e 93 15 a6 c0 ac 1e e2 e0 a2 16 f0 42
Aug 17 09:11:50 mickey pluto[5162]: | 51 51 e4 57 1a 5e 1f e5 83 4c e9 88 1d 90 30 14
Aug 17 09:11:50 mickey pluto[5162]: | 2c c6 24 6b 96 06 a0 9e c3 5c d0 f4 ac f5 c2 94
Aug 17 09:11:50 mickey pluto[5162]: | b8 b8 07 d6 c0 da 92 ab be b9 08 1e 46 a4 b3 a4
Aug 17 09:11:50 mickey pluto[5162]: | 50 9f f9 79 55 c0 fe f8 46 f7 6a 1b fa 86 27 ca
Aug 17 09:11:50 mickey pluto[5162]: | 4e 5b e1 cf 42 59 01 1b 0e 31 45 09 b1 d4 49 97
Aug 17 09:11:50 mickey pluto[5162]: | 04 54 e5 6d 96 95 c5 d3 ca 15 fd 25 7b 88 ec c5
Aug 17 09:11:50 mickey pluto[5162]: | 00 00 00 14 16 81 da 74 86 fc 9f 19 f2 f6 23 34
Aug 17 09:11:51 mickey pluto[5162]: | 23 f4 af e9
Aug 17 09:11:51 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #1
Aug 17 09:11:51 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 10 seconds for #1
Aug 17 09:11:51 mickey pluto[5162]: |
Aug 17 09:11:51 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:11:51 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:51 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:11:51 mickey pluto[5162]: | 7f 18 ed 05 37 85 03 d3 52 e6 e4 2b c1 4d 2f 99
Aug 17 09:11:51 mickey pluto[5162]: | 93 df ff a0 41 55 ef 1d 63 34 a4 57 1a db 12 7a
Aug 17 09:11:51 mickey pluto[5162]: | c9 2e f0 d7 81 1f 42 ba c1 9d 7d 09 b1 7e 49 2d
Aug 17 09:11:51 mickey pluto[5162]: | 67 8f 99 4c 5b 41 cb 65 ff da 12 a1 02 3c f9 6c
Aug 17 09:11:51 mickey pluto[5162]: | a4 8e 47 6e b4 57 39 2c 76 ad ea 62 ee 44 14 da
Aug 17 09:11:51 mickey pluto[5162]: | 9c be b7 92 66 c3 63 59 e1 ac d5 5f 36 18 1a 61
Aug 17 09:11:51 mickey pluto[5162]: | 28 c2 14 fc 7f 1b 64 00 80 44 b8 c7 a6 0e e3 e5
Aug 17 09:11:51 mickey pluto[5162]: | 1a bd 79 70 7f 58 e9 91 2a 67 b7 24 55 e2 1f 3d
Aug 17 09:11:51 mickey pluto[5162]: | 0d 00 00 18 b8 5e 80 b9 f8 d1 f1 1c 5f ba fb 40
Aug 17 09:11:51 mickey pluto[5162]: | 6b 0e bc d0 ed 7e b2 d6 0d 00 00 14 12 f5 f2 8c
Aug 17 09:11:51 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:11:51 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 f4 e6 66 7f
Aug 17 09:11:51 mickey pluto[5162]: | c5 14 aa c2 f9 20 35 3e fe 73 12 14 00 00 00 14
Aug 17 09:11:51 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:11:51 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:11:51 mickey pluto[5162]: | initiator cookie:
Aug 17 09:11:51 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94
Aug 17 09:11:51 mickey pluto[5162]: | responder cookie:
Aug 17 09:11:51 mickey pluto[5162]: | 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:51 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:11:51 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:11:51 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:11:51 mickey pluto[5162]: | flags: none
Aug 17 09:11:51 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:11:51 mickey pluto[5162]: | length: 256
Aug 17 09:11:51 mickey pluto[5162]: | ICOOKIE: bf 89 c6 06 46 90 aa 94
Aug 17 09:11:51 mickey pluto[5162]: | RCOOKIE: 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:51 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:11:51 mickey pluto[5162]: | state hash entry 1
Aug 17 09:11:51 mickey pluto[5162]: | peer and cookies match on #1, provided msgid 00000000 vs 00000000
Aug 17 09:11:51 mickey pluto[5162]: | state object #1 found, in STATE_MAIN_I2
Aug 17 09:11:51 mickey pluto[5162]: | ***parse ISAKMP Key Exchange Payload:
Aug 17 09:11:52 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONCE
Aug 17 09:11:52 mickey pluto[5162]: | length: 132
Aug 17 09:11:52 mickey pluto[5162]: | ***parse ISAKMP Nonce Payload:
Aug 17 09:11:52 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:11:52 mickey pluto[5162]: | length: 24
Aug 17 09:11:52 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:11:52 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:11:52 mickey pluto[5162]: | length: 20
Aug 17 09:11:52 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:11:52 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:11:52 mickey pluto[5162]: | length: 12
Aug 17 09:11:52 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:11:52 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:11:52 mickey pluto[5162]: | length: 20
Aug 17 09:11:52 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:11:52 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:11:52 mickey pluto[5162]: | length: 20
Aug 17 09:11:52 mickey pluto[5162]: "tunnelipsec" #1: ignoring Vendor ID payload [Cisco-Unity]
Aug 17 09:11:52 mickey pluto[5162]: "tunnelipsec" #1: received Vendor ID payload [XAUTH]
Aug 17 09:11:52 mickey pluto[5162]: "tunnelipsec" #1: ignoring Vendor ID payload [f4e6667fc514aac2...]
Aug 17 09:11:52 mickey pluto[5162]: "tunnelipsec" #1: ignoring Vendor ID payload [1f07f70eaa6514d3...]
Aug 17 09:11:52 mickey pluto[5162]: | **emit ISAKMP Message:
Aug 17 09:11:52 mickey pluto[5162]: | initiator cookie:
Aug 17 09:11:52 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94
Aug 17 09:11:52 mickey pluto[5162]: | responder cookie:
Aug 17 09:11:52 mickey pluto[5162]: | 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:52 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_ID
Aug 17 09:11:52 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:11:52 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:11:52 mickey pluto[5162]: | flags: ISAKMP_FLAG_ENCRYPTION
Aug 17 09:11:52 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:11:52 mickey pluto[5162]: | DH public value received:
Aug 17 09:11:52 mickey pluto[5162]: | 7f 18 ed 05 37 85 03 d3 52 e6 e4 2b c1 4d 2f 99
Aug 17 09:11:52 mickey pluto[5162]: | 93 df ff a0 41 55 ef 1d 63 34 a4 57 1a db 12 7a
Aug 17 09:11:52 mickey pluto[5162]: | c9 2e f0 d7 81 1f 42 ba c1 9d 7d 09 b1 7e 49 2d
Aug 17 09:11:52 mickey pluto[5162]: | 67 8f 99 4c 5b 41 cb 65 ff da 12 a1 02 3c f9 6c
Aug 17 09:11:52 mickey pluto[5162]: | a4 8e 47 6e b4 57 39 2c 76 ad ea 62 ee 44 14 da
Aug 17 09:11:52 mickey pluto[5162]: | 9c be b7 92 66 c3 63 59 e1 ac d5 5f 36 18 1a 61
Aug 17 09:11:52 mickey pluto[5162]: | 28 c2 14 fc 7f 1b 64 00 80 44 b8 c7 a6 0e e3 e5
Aug 17 09:11:52 mickey pluto[5162]: | 1a bd 79 70 7f 58 e9 91 2a 67 b7 24 55 e2 1f 3d
Aug 17 09:11:53 mickey pluto[5162]: | thinking about whether to send my certificate:
Aug 17 09:11:53 mickey pluto[5162]: | I have RSA key: OAKLEY_PRESHARED_KEY cert.type: CERT_NONE sendcert: CERT_SENDIFASKED
Aug 17 09:11:53 mickey pluto[5162]: | and I did not get a certificate request, so do not send cert.
Aug 17 09:11:53 mickey pluto[5162]: | I am not sending a certificate request
Aug 17 09:11:53 mickey pluto[5162]: | DH shared secret:
Aug 17 09:11:53 mickey pluto[5162]: | 31 ee 87 80 28 55 01 a3 5c 6f f5 e5 00 49 8b d8
Aug 17 09:11:53 mickey pluto[5162]: | c2 a2 de be 59 40 22 f0 fe 93 88 3b 8c 8d 5b d0
Aug 17 09:11:53 mickey pluto[5162]: | c5 b9 4a 02 f7 38 2c 13 4e 2a cb d5 89 de ce 58
Aug 17 09:11:53 mickey pluto[5162]: | 13 95 e6 ce b5 7e 08 6b 68 c0 11 be 23 7f 00 6f
Aug 17 09:11:53 mickey pluto[5162]: | 30 ed 2e 0f b3 66 f1 5d d5 f7 4f 1c 05 89 c6 7b
Aug 17 09:11:53 mickey pluto[5162]: | cc 6b 7d d2 5c ce f7 00 2e 12 74 fd 55 dc 6b 59
Aug 17 09:11:53 mickey pluto[5162]: | 7c 13 88 f8 46 04 78 87 9c 23 01 69 e4 01 05 74
Aug 17 09:11:53 mickey pluto[5162]: | 86 ee b8 77 12 00 42 c4 36 94 47 59 b9 34 05 ff
Aug 17 09:11:53 mickey pluto[5162]: | looking for secret for 62.189.139.36->194.73.118.113 of kind PPK_PSK
Aug 17 09:11:53 mickey pluto[5162]: | Skeyid: 61 b4 a2 d4 de 27 ee f9 41 3d 58 20 f4 1f ce 50
Aug 17 09:11:53 mickey pluto[5162]: | Skeyid_d: b1 9d 26 b7 f1 d4 77 bc 23 45 d3 a0 1f d0 50 b7
Aug 17 09:11:53 mickey pluto[5162]: | Skeyid_a: fe 4a 0b 35 0f 0a 26 f9 9e 63 92 f2 92 66 5d 10
Aug 17 09:11:53 mickey pluto[5162]: | Skeyid_e: d2 35 be 24 bf 38 bb 5d 1c 04 7f a4 24 48 30 20
Aug 17 09:11:53 mickey pluto[5162]: | enc key: 47 03 b4 dc 53 96 0e f0 41 51 e8 5b 46 a1 4e 3b
Aug 17 09:11:53 mickey pluto[5162]: | c5 1a 6f 9d fd 19 36 ef
Aug 17 09:11:53 mickey pluto[5162]: | IV: 3e 49 f1 64 dd 41 3d fa de 9d 76 93 3f a5 e0 55
Aug 17 09:11:53 mickey pluto[5162]: | ***emit ISAKMP Identification Payload (IPsec DOI):
Aug 17 09:11:53 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_HASH
Aug 17 09:11:53 mickey pluto[5162]: | ID type: ID_IPV4_ADDR
Aug 17 09:11:53 mickey pluto[5162]: | Protocol ID: 0
Aug 17 09:11:53 mickey pluto[5162]: | port: 0
Aug 17 09:11:53 mickey pluto[5162]: | emitting 4 raw bytes of my identity into ISAKMP Identification Payload (IPsec DOI)
Aug 17 09:11:53 mickey pluto[5162]: | my identity 3e bd 8b 24
Aug 17 09:11:53 mickey pluto[5162]: | emitting length of ISAKMP Identification Payload (IPsec DOI): 12
Aug 17 09:11:53 mickey pluto[5162]: | hashing 144 bytes of SA
Aug 17 09:11:53 mickey pluto[5162]: | ***emit ISAKMP Hash Payload:
Aug 17 09:11:53 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:11:53 mickey pluto[5162]: | emitting 16 raw bytes of HASH_I into ISAKMP Hash Payload
Aug 17 09:11:53 mickey pluto[5162]: | HASH_I 7c f7 07 a1 9e 9a dc b0 17 92 56 48 e8 90 24 ab
Aug 17 09:11:53 mickey pluto[5162]: | emitting length of ISAKMP Hash Payload: 20
Aug 17 09:11:53 mickey pluto[5162]: | encrypting:
Aug 17 09:11:53 mickey pluto[5162]: | 08 00 00 0c 01 00 00 00 3e bd 8b 24 00 00 00 14
Aug 17 09:11:53 mickey pluto[5162]: | 7c f7 07 a1 9e 9a dc b0 17 92 56 48 e8 90 24 ab
Aug 17 09:11:54 mickey pluto[5162]: | encrypting using OAKLEY_3DES_CBC
Aug 17 09:11:54 mickey pluto[5162]: | next IV: 98 f1 c0 67 73 5e 20 7e
Aug 17 09:11:54 mickey pluto[5162]: | emitting length of ISAKMP Message: 60
Aug 17 09:11:54 mickey pluto[5162]: "tunnelipsec" #1: transition from state STATE_MAIN_I2 to state STATE_MAIN_I3
Aug 17 09:11:54 mickey pluto[5162]: | sending 60 bytes for STATE_MAIN_I2 through eth0 to 194.73.118.113:500:
Aug 17 09:11:54 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:54 mickey pluto[5162]: | 05 10 02 01 00 00 00 00 00 00 00 3c b2 82 02 21
Aug 17 09:11:54 mickey pluto[5162]: | a6 2e f8 5f 50 89 1c bc da e1 86 e6 36 58 0d 25
Aug 17 09:11:54 mickey pluto[5162]: | 07 f0 ea f5 98 f1 c0 67 73 5e 20 7e
Aug 17 09:11:54 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #1
Aug 17 09:11:54 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 10 seconds for #1
Aug 17 09:11:54 mickey pluto[5162]: |
Aug 17 09:11:54 mickey pluto[5162]: | *received 72 bytes from 194.73.118.113:500 on eth0
Aug 17 09:11:54 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:54 mickey pluto[5162]: | 0b 10 05 00 00 00 00 00 00 00 00 48 00 00 00 2c
Aug 17 09:11:54 mickey pluto[5162]: | 00 00 00 01 00 00 00 10 0a 07 72 e3 d0 c7 f5 63
Aug 17 09:11:54 mickey pluto[5162]: | f5 a6 7b 58 e1 b4 88 c9 bb 74 88 76 8d 0a 07 43
Aug 17 09:11:54 mickey pluto[5162]: | 5b 7b 3b 7d 03 a5 f2 8f
Aug 17 09:11:54 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:11:54 mickey pluto[5162]: | initiator cookie:
Aug 17 09:11:54 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94
Aug 17 09:11:54 mickey pluto[5162]: | responder cookie:
Aug 17 09:11:54 mickey pluto[5162]: | 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:54 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_N
Aug 17 09:11:54 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:11:54 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_INFO
Aug 17 09:11:54 mickey pluto[5162]: | flags: none
Aug 17 09:11:54 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:11:54 mickey pluto[5162]: | length: 72
Aug 17 09:11:54 mickey pluto[5162]: | ICOOKIE: bf 89 c6 06 46 90 aa 94
Aug 17 09:11:54 mickey pluto[5162]: | RCOOKIE: 01 21 c1 62 c5 15 aa c2
Aug 17 09:11:54 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:11:54 mickey pluto[5162]: | state hash entry 1
Aug 17 09:11:54 mickey pluto[5162]: | peer and cookies match on #1, provided msgid 00000000 vs 00000000
Aug 17 09:11:54 mickey pluto[5162]: | state object #1 found, in STATE_MAIN_I3
Aug 17 09:11:54 mickey pluto[5162]: | ***parse ISAKMP Notification Payload:
Aug 17 09:11:54 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:11:54 mickey pluto[5162]: | length: 44
Aug 17 09:11:54 mickey pluto[5162]: | DOI: ISAKMP_DOI_IPSEC
Aug 17 09:11:54 mickey pluto[5162]: | protocol ID: 0
Aug 17 09:11:54 mickey pluto[5162]: | SPI size: 0
Aug 17 09:11:54 mickey pluto[5162]: | Notify Message Type: PAYLOAD_MALFORMED
Aug 17 09:11:55 mickey pluto[5162]: "tunnelipsec" #1: ignoring informational payload, type PAYLOAD_MALFORMED
Aug 17 09:11:55 mickey pluto[5162]: | info: 0a 07 72 e3 d0 c7 f5 63 f5 a6 7b 58 e1 b4 88 c9
Aug 17 09:11:55 mickey pluto[5162]: | bb 74 88 76 8d 0a 07 43 5b 7b 3b 7d 03 a5 f2 8f
Aug 17 09:11:55 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 9 seconds for #1
Aug 17 09:12:04 mickey pluto[5162]: |
Aug 17 09:12:04 mickey pluto[5162]: | *time to handle event
Aug 17 09:12:04 mickey pluto[5162]: | event after this is EVENT_REINIT_SECRET in 3576 seconds
Aug 17 09:12:04 mickey pluto[5162]: | handling event EVENT_RETRANSMIT for 194.73.118.113 "tunnelipsec" #1
Aug 17 09:12:04 mickey pluto[5162]: | sending 60 bytes for EVENT_RETRANSMIT through eth0 to 194.73.118.113:500:
Aug 17 09:12:04 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:04 mickey pluto[5162]: | 05 10 02 01 00 00 00 00 00 00 00 3c b2 82 02 21
Aug 17 09:12:04 mickey pluto[5162]: | a6 2e f8 5f 50 89 1c bc da e1 86 e6 36 58 0d 25
Aug 17 09:12:04 mickey pluto[5162]: | 07 f0 ea f5 98 f1 c0 67 73 5e 20 7e
Aug 17 09:12:04 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 20 seconds for #1
Aug 17 09:12:04 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 20 seconds for #1
Aug 17 09:12:04 mickey pluto[5162]: |
Aug 17 09:12:04 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:12:04 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:04 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:12:04 mickey pluto[5162]: | 7f 18 ed 05 37 85 03 d3 52 e6 e4 2b c1 4d 2f 99
Aug 17 09:12:04 mickey pluto[5162]: | 93 df ff a0 41 55 ef 1d 63 34 a4 57 1a db 12 7a
Aug 17 09:12:04 mickey pluto[5162]: | c9 2e f0 d7 81 1f 42 ba c1 9d 7d 09 b1 7e 49 2d
Aug 17 09:12:04 mickey pluto[5162]: | 67 8f 99 4c 5b 41 cb 65 ff da 12 a1 02 3c f9 6c
Aug 17 09:12:04 mickey pluto[5162]: | a4 8e 47 6e b4 57 39 2c 76 ad ea 62 ee 44 14 da
Aug 17 09:12:04 mickey pluto[5162]: | 9c be b7 92 66 c3 63 59 e1 ac d5 5f 36 18 1a 61
Aug 17 09:12:04 mickey pluto[5162]: | 28 c2 14 fc 7f 1b 64 00 80 44 b8 c7 a6 0e e3 e5
Aug 17 09:12:04 mickey pluto[5162]: | 1a bd 79 70 7f 58 e9 91 2a 67 b7 24 55 e2 1f 3d
Aug 17 09:12:04 mickey pluto[5162]: | 0d 00 00 18 b8 5e 80 b9 f8 d1 f1 1c 5f ba fb 40
Aug 17 09:12:04 mickey pluto[5162]: | 6b 0e bc d0 ed 7e b2 d6 0d 00 00 14 12 f5 f2 8c
Aug 17 09:12:04 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:12:04 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 f4 e6 66 7f
Aug 17 09:12:04 mickey pluto[5162]: | c5 14 aa c2 f9 20 35 3e fe 73 12 14 00 00 00 14
Aug 17 09:12:04 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:12:04 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:12:04 mickey pluto[5162]: | initiator cookie:
Aug 17 09:12:04 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94
Aug 17 09:12:04 mickey pluto[5162]: | responder cookie:
Aug 17 09:12:04 mickey pluto[5162]: | 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:04 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:12:04 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:12:04 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:12:04 mickey pluto[5162]: | flags: none
Aug 17 09:12:04 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:12:04 mickey pluto[5162]: | length: 256
Aug 17 09:12:05 mickey pluto[5162]: | ICOOKIE: bf 89 c6 06 46 90 aa 94
Aug 17 09:12:05 mickey pluto[5162]: | RCOOKIE: 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:05 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:12:05 mickey pluto[5162]: | state hash entry 1
Aug 17 09:12:05 mickey pluto[5162]: | peer and cookies match on #1, provided msgid 00000000 vs 00000000
Aug 17 09:12:05 mickey pluto[5162]: | state object #1 found, in STATE_MAIN_I3
Aug 17 09:12:05 mickey pluto[5162]: "tunnelipsec" #1: discarding duplicate packet; already STATE_MAIN_I3
Aug 17 09:12:05 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 19 seconds for #1
Aug 17 09:12:12 mickey pluto[5162]: |
Aug 17 09:12:12 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:12:12 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:12 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:12:12 mickey pluto[5162]: | 7f 18 ed 05 37 85 03 d3 52 e6 e4 2b c1 4d 2f 99
Aug 17 09:12:12 mickey pluto[5162]: | 93 df ff a0 41 55 ef 1d 63 34 a4 57 1a db 12 7a
Aug 17 09:12:12 mickey pluto[5162]: | c9 2e f0 d7 81 1f 42 ba c1 9d 7d 09 b1 7e 49 2d
Aug 17 09:12:12 mickey pluto[5162]: | 67 8f 99 4c 5b 41 cb 65 ff da 12 a1 02 3c f9 6c
Aug 17 09:12:12 mickey pluto[5162]: | a4 8e 47 6e b4 57 39 2c 76 ad ea 62 ee 44 14 da
Aug 17 09:12:12 mickey pluto[5162]: | 9c be b7 92 66 c3 63 59 e1 ac d5 5f 36 18 1a 61
Aug 17 09:12:12 mickey pluto[5162]: | 28 c2 14 fc 7f 1b 64 00 80 44 b8 c7 a6 0e e3 e5
Aug 17 09:12:12 mickey pluto[5162]: | 1a bd 79 70 7f 58 e9 91 2a 67 b7 24 55 e2 1f 3d
Aug 17 09:12:12 mickey pluto[5162]: | 0d 00 00 18 b8 5e 80 b9 f8 d1 f1 1c 5f ba fb 40
Aug 17 09:12:12 mickey pluto[5162]: | 6b 0e bc d0 ed 7e b2 d6 0d 00 00 14 12 f5 f2 8c
Aug 17 09:12:12 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:12:12 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 f4 e6 66 7f
Aug 17 09:12:12 mickey pluto[5162]: | c5 14 aa c2 f9 20 35 3e fe 73 12 14 00 00 00 14
Aug 17 09:12:12 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:12:12 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:12:12 mickey pluto[5162]: | initiator cookie:
Aug 17 09:12:12 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94
Aug 17 09:12:12 mickey pluto[5162]: | responder cookie:
Aug 17 09:12:12 mickey pluto[5162]: | 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:12 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:12:12 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:12:12 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:12:12 mickey pluto[5162]: | flags: none
Aug 17 09:12:12 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:12:12 mickey pluto[5162]: | length: 256
Aug 17 09:12:12 mickey pluto[5162]: | ICOOKIE: bf 89 c6 06 46 90 aa 94
Aug 17 09:12:12 mickey pluto[5162]: | RCOOKIE: 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:12 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:12:12 mickey pluto[5162]: | state hash entry 1
Aug 17 09:12:12 mickey pluto[5162]: | peer and cookies match on #1, provided msgid 00000000 vs 00000000
Aug 17 09:12:12 mickey pluto[5162]: | state object #1 found, in STATE_MAIN_I3
Aug 17 09:12:12 mickey pluto[5162]: "tunnelipsec" #1: discarding duplicate packet; already STATE_MAIN_I3
Aug 17 09:12:12 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 12 seconds for #1
Aug 17 09:12:20 mickey pluto[5162]: |
Aug 17 09:12:20 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:12:20 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:20 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:12:20 mickey pluto[5162]: | 7f 18 ed 05 37 85 03 d3 52 e6 e4 2b c1 4d 2f 99
Aug 17 09:12:20 mickey pluto[5162]: | 93 df ff a0 41 55 ef 1d 63 34 a4 57 1a db 12 7a
Aug 17 09:12:20 mickey pluto[5162]: | c9 2e f0 d7 81 1f 42 ba c1 9d 7d 09 b1 7e 49 2d
Aug 17 09:12:20 mickey pluto[5162]: | 67 8f 99 4c 5b 41 cb 65 ff da 12 a1 02 3c f9 6c
Aug 17 09:12:20 mickey pluto[5162]: | a4 8e 47 6e b4 57 39 2c 76 ad ea 62 ee 44 14 da
Aug 17 09:12:20 mickey pluto[5162]: | 9c be b7 92 66 c3 63 59 e1 ac d5 5f 36 18 1a 61
Aug 17 09:12:20 mickey pluto[5162]: | 28 c2 14 fc 7f 1b 64 00 80 44 b8 c7 a6 0e e3 e5
Aug 17 09:12:20 mickey pluto[5162]: | 1a bd 79 70 7f 58 e9 91 2a 67 b7 24 55 e2 1f 3d
Aug 17 09:12:20 mickey pluto[5162]: | 0d 00 00 18 b8 5e 80 b9 f8 d1 f1 1c 5f ba fb 40
Aug 17 09:12:20 mickey pluto[5162]: | 6b 0e bc d0 ed 7e b2 d6 0d 00 00 14 12 f5 f2 8c
Aug 17 09:12:20 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:12:20 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 f4 e6 66 7f
Aug 17 09:12:20 mickey pluto[5162]: | c5 14 aa c2 f9 20 35 3e fe 73 12 14 00 00 00 14
Aug 17 09:12:20 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:12:20 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:12:20 mickey pluto[5162]: | initiator cookie:
Aug 17 09:12:20 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94
Aug 17 09:12:20 mickey pluto[5162]: | responder cookie:
Aug 17 09:12:20 mickey pluto[5162]: | 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:20 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:12:20 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:12:20 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:12:20 mickey pluto[5162]: | flags: none
Aug 17 09:12:20 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:12:20 mickey pluto[5162]: | length: 256
Aug 17 09:12:20 mickey pluto[5162]: | ICOOKIE: bf 89 c6 06 46 90 aa 94
Aug 17 09:12:20 mickey pluto[5162]: | RCOOKIE: 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:20 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:12:20 mickey pluto[5162]: | state hash entry 1
Aug 17 09:12:20 mickey pluto[5162]: | peer and cookies match on #1, provided msgid 00000000 vs 00000000
Aug 17 09:12:20 mickey pluto[5162]: | state object #1 found, in STATE_MAIN_I3
Aug 17 09:12:20 mickey pluto[5162]: "tunnelipsec" #1: discarding duplicate packet; already STATE_MAIN_I3
Aug 17 09:12:20 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 4 seconds for #1
Aug 17 09:12:24 mickey pluto[5162]: |
Aug 17 09:12:24 mickey pluto[5162]: | *time to handle event
Aug 17 09:12:24 mickey pluto[5162]: | event after this is EVENT_REINIT_SECRET in 3556 seconds
Aug 17 09:12:24 mickey pluto[5162]: | handling event EVENT_RETRANSMIT for 194.73.118.113 "tunnelipsec" #1
Aug 17 09:12:24 mickey pluto[5162]: | sending 60 bytes for EVENT_RETRANSMIT through eth0 to 194.73.118.113:500:
Aug 17 09:12:24 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:24 mickey pluto[5162]: | 05 10 02 01 00 00 00 00 00 00 00 3c b2 82 02 21
Aug 17 09:12:24 mickey pluto[5162]: | a6 2e f8 5f 50 89 1c bc da e1 86 e6 36 58 0d 25
Aug 17 09:12:24 mickey pluto[5162]: | 07 f0 ea f5 98 f1 c0 67 73 5e 20 7e
Aug 17 09:12:24 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 40 seconds for #1
Aug 17 09:12:24 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 40 seconds for #1
Aug 17 09:12:24 mickey pluto[5162]: |
Aug 17 09:12:24 mickey pluto[5162]: | *received 76 bytes from 194.73.118.113:500 on eth0
Aug 17 09:12:24 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:24 mickey pluto[5162]: | 08 10 05 01 90 d0 c4 e3 00 00 00 4c a2 8e 3e 9d
Aug 17 09:12:24 mickey pluto[5162]: | b4 ee a6 4c d7 8e 61 62 54 54 a3 db c5 f0 6a 67
Aug 17 09:12:24 mickey pluto[5162]: | c6 8a 6a 0f b7 27 69 d9 b6 81 a5 78 15 23 aa fa
Aug 17 09:12:24 mickey pluto[5162]: | a5 9b 58 c3 af ab 03 34 d2 4a 86 fa
Aug 17 09:12:24 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:12:24 mickey pluto[5162]: | initiator cookie:
Aug 17 09:12:24 mickey pluto[5162]: | bf 89 c6 06 46 90 aa 94
Aug 17 09:12:25 mickey pluto[5162]: | responder cookie:
Aug 17 09:12:25 mickey pluto[5162]: | 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:25 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_HASH
Aug 17 09:12:25 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:12:25 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_INFO
Aug 17 09:12:25 mickey pluto[5162]: | flags: ISAKMP_FLAG_ENCRYPTION
Aug 17 09:12:25 mickey pluto[5162]: | message ID: 90 d0 c4 e3
Aug 17 09:12:25 mickey pluto[5162]: | length: 76
Aug 17 09:12:25 mickey pluto[5162]: | ICOOKIE: bf 89 c6 06 46 90 aa 94
Aug 17 09:12:25 mickey pluto[5162]: | RCOOKIE: 01 21 c1 62 c5 15 aa c2
Aug 17 09:12:25 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:12:25 mickey pluto[5162]: | state hash entry 1
Aug 17 09:12:25 mickey pluto[5162]: | peer and cookies match on #1, provided msgid 00000000 vs 00000000
Aug 17 09:12:25 mickey pluto[5162]: | state object #1 found, in STATE_MAIN_I3
Aug 17 09:12:25 mickey pluto[5162]: "tunnelipsec" #1: encrypted Informational Exchange message is invalid because it is for incomplete ISAKMP SA
Aug 17 09:12:25 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 39 seconds for #1
Aug 17 09:12:29 mickey pluto[5162]: |
Aug 17 09:12:29 mickey pluto[5162]: | *received whack message
Aug 17 09:12:29 mickey pluto[5162]: | Queuing pending Quick Mode with 194.73.118.113 "tunnelipsec"
Aug 17 09:12:29 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 35 seconds for #1
Aug 17 09:13:04 mickey pluto[5162]: |
Aug 17 09:13:04 mickey pluto[5162]: | *time to handle event
Aug 17 09:13:04 mickey pluto[5162]: | event after this is EVENT_REINIT_SECRET in 3516 seconds
Aug 17 09:13:04 mickey pluto[5162]: | handling event EVENT_RETRANSMIT for 194.73.118.113 "tunnelipsec" #1
Aug 17 09:13:04 mickey pluto[5162]: "tunnelipsec" #1: max number of retransmissions (2) reached STATE_MAIN_I3. Possible authentication failure: no acceptable response to our first encrypted message
Aug 17 09:13:04 mickey pluto[5162]: "tunnelipsec" #1: starting keying attempt 2 of an unlimited number
Aug 17 09:13:04 mickey pluto[5162]: | creating state object #2 at 0x80c5378
Aug 17 09:13:04 mickey pluto[5162]: | ICOOKIE: d4 a1 99 22 01 55 ff db
Aug 17 09:13:04 mickey pluto[5162]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 17 09:13:04 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:13:04 mickey pluto[5162]: | state hash entry 8
Aug 17 09:13:04 mickey pluto[5162]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #2
Aug 17 09:13:04 mickey pluto[5162]: "tunnelipsec" #2: initiating Main Mode to replace #1
Aug 17 09:13:04 mickey pluto[5162]: | **emit ISAKMP Message:
Aug 17 09:13:05 mickey pluto[5162]: | initiator cookie:
Aug 17 09:13:05 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db
Aug 17 09:13:05 mickey pluto[5162]: | responder cookie:
Aug 17 09:13:05 mickey pluto[5162]: | 00 00 00 00 00 00 00 00
Aug 17 09:13:05 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_SA
Aug 17 09:13:05 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:13:05 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:13:05 mickey pluto[5162]: | flags: none
Aug 17 09:13:05 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:13:05 mickey pluto[5162]: | ***emit ISAKMP Security Association Payload:
Aug 17 09:13:05 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:13:05 mickey pluto[5162]: | DOI: ISAKMP_DOI_IPSEC
Aug 17 09:13:05 mickey pluto[5162]: | ****emit IPsec DOI SIT:
Aug 17 09:13:05 mickey pluto[5162]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
Aug 17 09:13:05 mickey pluto[5162]: | ****emit ISAKMP Proposal Payload:
Aug 17 09:13:05 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:13:05 mickey pluto[5162]: | proposal number: 0
Aug 17 09:13:05 mickey pluto[5162]: | protocol ID: PROTO_ISAKMP
Aug 17 09:13:05 mickey pluto[5162]: | SPI size: 0
Aug 17 09:13:05 mickey pluto[5162]: | number of transforms: 4
Aug 17 09:13:05 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:13:05 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_T
Aug 17 09:13:05 mickey pluto[5162]: | transform number: 0
Aug 17 09:13:05 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:13:05 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:05 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:13:05 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:05 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:13:05 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:05 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:13:05 mickey pluto[5162]: | length/value: 3600
Aug 17 09:13:05 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:05 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:13:05 mickey pluto[5162]: | length/value: 5
Aug 17 09:13:06 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:13:06 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:06 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:13:06 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:06 mickey pluto[5162]: | [1 is OAKLEY_MD5]
Aug 17 09:13:06 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:06 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:13:06 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:06 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:13:06 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:06 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:13:06 mickey pluto[5162]: | length/value: 5
Aug 17 09:13:06 mickey pluto[5162]: | [5 is OAKLEY_GROUP_MODP1536 (extension)]
Aug 17 09:13:06 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:13:06 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:13:06 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_T
Aug 17 09:13:06 mickey pluto[5162]: | transform number: 1
Aug 17 09:13:06 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:13:06 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:06 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:13:06 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:06 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:13:06 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:06 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:13:06 mickey pluto[5162]: | length/value: 3600
Aug 17 09:13:06 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:06 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:13:06 mickey pluto[5162]: | length/value: 5
Aug 17 09:13:06 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:13:06 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:06 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:13:06 mickey pluto[5162]: | length/value: 2
Aug 17 09:13:06 mickey pluto[5162]: | [2 is OAKLEY_SHA]
Aug 17 09:13:06 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:06 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:13:06 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:06 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:13:06 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:07 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:13:07 mickey pluto[5162]: | length/value: 5
Aug 17 09:13:07 mickey pluto[5162]: | [5 is OAKLEY_GROUP_MODP1536 (extension)]
Aug 17 09:13:07 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:13:07 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:13:07 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_T
Aug 17 09:13:07 mickey pluto[5162]: | transform number: 2
Aug 17 09:13:07 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:13:07 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:07 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:13:07 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:07 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:13:07 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:07 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:13:07 mickey pluto[5162]: | length/value: 3600
Aug 17 09:13:07 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:07 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:13:07 mickey pluto[5162]: | length/value: 5
Aug 17 09:13:07 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:13:07 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:07 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:13:07 mickey pluto[5162]: | length/value: 2
Aug 17 09:13:07 mickey pluto[5162]: | [2 is OAKLEY_SHA]
Aug 17 09:13:07 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:07 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:13:07 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:07 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:13:07 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:07 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:13:07 mickey pluto[5162]: | length/value: 2
Aug 17 09:13:07 mickey pluto[5162]: | [2 is OAKLEY_GROUP_MODP1024]
Aug 17 09:13:07 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:13:07 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:13:07 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:13:07 mickey pluto[5162]: | transform number: 3
Aug 17 09:13:07 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:13:07 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:07 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:13:07 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:08 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:13:08 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:08 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:13:08 mickey pluto[5162]: | length/value: 3600
Aug 17 09:13:08 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:08 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:13:08 mickey pluto[5162]: | length/value: 5
Aug 17 09:13:08 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:13:08 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:08 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:13:08 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:08 mickey pluto[5162]: | [1 is OAKLEY_MD5]
Aug 17 09:13:08 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:08 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:13:08 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:08 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:13:08 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:13:08 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:13:08 mickey pluto[5162]: | length/value: 2
Aug 17 09:13:08 mickey pluto[5162]: | [2 is OAKLEY_GROUP_MODP1024]
Aug 17 09:13:08 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:13:08 mickey pluto[5162]: | emitting length of ISAKMP Proposal Payload: 136
Aug 17 09:13:08 mickey pluto[5162]: | emitting length of ISAKMP Security Association Payload: 148
Aug 17 09:13:08 mickey pluto[5162]: | emitting length of ISAKMP Message: 176
Aug 17 09:13:08 mickey pluto[5162]: | sending 176 bytes for main_outI1 through eth0 to 194.73.118.113:500:
Aug 17 09:13:08 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db 00 00 00 00 00 00 00 00
Aug 17 09:13:08 mickey pluto[5162]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94
Aug 17 09:13:08 mickey pluto[5162]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04
Aug 17 09:13:08 mickey pluto[5162]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:13:08 mickey pluto[5162]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05
Aug 17 09:13:08 mickey pluto[5162]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:13:08 mickey pluto[5162]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05
Aug 17 09:13:08 mickey pluto[5162]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:13:08 mickey pluto[5162]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02
Aug 17 09:13:08 mickey pluto[5162]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:13:08 mickey pluto[5162]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02
Aug 17 09:13:08 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #2
Aug 17 09:13:08 mickey pluto[5162]: | ICOOKIE: bf 89 c6 06 46 90 aa 94
Aug 17 09:13:08 mickey pluto[5162]: | RCOOKIE: 01 21 c1 62 c5 15 aa c2
Aug 17 09:13:08 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:13:09 mickey pluto[5162]: | state hash entry 1
Aug 17 09:13:09 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 9 seconds for #2
Aug 17 09:13:09 mickey pluto[5162]: |
Aug 17 09:13:09 mickey pluto[5162]: | *received 104 bytes from 194.73.118.113:500 on eth0
Aug 17 09:13:09 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:09 mickey pluto[5162]: | 01 10 02 00 00 00 00 00 00 00 00 68 0d 00 00 34
Aug 17 09:13:09 mickey pluto[5162]: | 00 00 00 01 00 00 00 01 00 00 00 28 01 01 00 01
Aug 17 09:13:09 mickey pluto[5162]: | 00 00 00 20 03 01 00 00 80 01 00 05 80 02 00 01
Aug 17 09:13:09 mickey pluto[5162]: | 80 04 00 02 80 03 00 01 80 0b 00 01 80 0c 0e 10
Aug 17 09:13:09 mickey pluto[5162]: | 00 00 00 18 40 48 b7 d5 6e bc e8 85 25 e7 de 7f
Aug 17 09:13:09 mickey pluto[5162]: | 00 d6 c2 d3 c0 00 00 00
Aug 17 09:13:09 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:13:09 mickey pluto[5162]: | initiator cookie:
Aug 17 09:13:09 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db
Aug 17 09:13:09 mickey pluto[5162]: | responder cookie:
Aug 17 09:13:09 mickey pluto[5162]: | dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:09 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_SA
Aug 17 09:13:09 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:13:09 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:13:09 mickey pluto[5162]: | flags: none
Aug 17 09:13:09 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:13:09 mickey pluto[5162]: | length: 104
Aug 17 09:13:09 mickey pluto[5162]: | ICOOKIE: d4 a1 99 22 01 55 ff db
Aug 17 09:13:09 mickey pluto[5162]: | RCOOKIE: dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:09 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:13:09 mickey pluto[5162]: | state hash entry 24
Aug 17 09:13:09 mickey pluto[5162]: | state object not found
Aug 17 09:13:09 mickey pluto[5162]: | ICOOKIE: d4 a1 99 22 01 55 ff db
Aug 17 09:13:09 mickey pluto[5162]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 17 09:13:09 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:13:09 mickey pluto[5162]: | state hash entry 8
Aug 17 09:13:09 mickey pluto[5162]: | peer and cookies match on #2, provided msgid 00000000 vs 00000000
Aug 17 09:13:09 mickey pluto[5162]: | state object #2 found, in STATE_MAIN_I1
Aug 17 09:13:09 mickey pluto[5162]: | ***parse ISAKMP Security Association Payload:
Aug 17 09:13:09 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:13:09 mickey pluto[5162]: | length: 52
Aug 17 09:13:09 mickey pluto[5162]: | DOI: ISAKMP_DOI_IPSEC
Aug 17 09:13:09 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:13:09 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:13:09 mickey pluto[5162]: | length: 24
Aug 17 09:13:09 mickey pluto[5162]: "tunnelipsec" #2: ignoring Vendor ID payload [4048b7d56ebce885...]
Aug 17 09:13:09 mickey pluto[5162]: | ****parse IPsec DOI SIT:
Aug 17 09:13:09 mickey pluto[5162]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
Aug 17 09:13:10 mickey pluto[5162]: | ****parse ISAKMP Proposal Payload:
Aug 17 09:13:10 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:13:10 mickey pluto[5162]: | length: 40
Aug 17 09:13:10 mickey pluto[5162]: | proposal number: 1
Aug 17 09:13:10 mickey pluto[5162]: | protocol ID: PROTO_ISAKMP
Aug 17 09:13:10 mickey pluto[5162]: | SPI size: 0
Aug 17 09:13:10 mickey pluto[5162]: | number of transforms: 1
Aug 17 09:13:10 mickey pluto[5162]: | *****parse ISAKMP Transform Payload (ISAKMP):
Aug 17 09:13:10 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:13:10 mickey pluto[5162]: | length: 32
Aug 17 09:13:10 mickey pluto[5162]: | transform number: 3
Aug 17 09:13:10 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:13:10 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:13:10 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:13:10 mickey pluto[5162]: | length/value: 5
Aug 17 09:13:10 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:13:10 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:13:10 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:13:10 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:10 mickey pluto[5162]: | [1 is OAKLEY_MD5]
Aug 17 09:13:10 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:13:10 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:13:10 mickey pluto[5162]: | length/value: 2
Aug 17 09:13:10 mickey pluto[5162]: | [2 is OAKLEY_GROUP_MODP1024]
Aug 17 09:13:10 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:13:10 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:13:10 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:10 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:13:10 mickey pluto[5162]: | looking for secret for 62.189.139.36->194.73.118.113 of kind PPK_PSK
Aug 17 09:13:10 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:13:10 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:13:10 mickey pluto[5162]: | length/value: 1
Aug 17 09:13:10 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:13:10 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:13:10 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:13:10 mickey pluto[5162]: | length/value: 3600
Aug 17 09:13:10 mickey pluto[5162]: | Oakley Transform 3 accepted
Aug 17 09:13:10 mickey pluto[5162]: | sender checking NAT-t: 0 and 0
Aug 17 09:13:10 mickey pluto[5162]: | **emit ISAKMP Message:
Aug 17 09:13:10 mickey pluto[5162]: | initiator cookie:
Aug 17 09:13:10 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db
Aug 17 09:13:10 mickey pluto[5162]: | responder cookie:
Aug 17 09:13:10 mickey pluto[5162]: | dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:11 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:13:11 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:13:11 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:13:11 mickey pluto[5162]: | flags: none
Aug 17 09:13:11 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:13:11 mickey pluto[5162]: | Local DH secret:
Aug 17 09:13:11 mickey pluto[5162]: | 66 db ee e7 d9 0b 0f 07 fe f1 e1 79 67 93 b9 e2
Aug 17 09:13:11 mickey pluto[5162]: | d9 e1 56 dc b6 7b 01 16 ec 93 44 05 e8 20 ba f6
Aug 17 09:13:11 mickey pluto[5162]: | Public DH value sent:
Aug 17 09:13:11 mickey pluto[5162]: | 55 9e ce 7b 20 a8 dd 7a 84 e4 b8 25 77 80 a6 73
Aug 17 09:13:11 mickey pluto[5162]: | d7 cc d0 a0 65 44 cf 70 f4 00 a8 71 e7 8d 81 39
Aug 17 09:13:11 mickey pluto[5162]: | 7a 86 2f b1 8a 79 a7 e7 53 55 77 79 bb b8 bc ca
Aug 17 09:13:11 mickey pluto[5162]: | bb ed eb 40 0c 0f 01 c2 b8 f5 f4 aa b9 0c cf 6e
Aug 17 09:13:11 mickey pluto[5162]: | 77 fe f3 af 32 64 37 b6 7e 85 80 90 2e 47 ad 43
Aug 17 09:13:11 mickey pluto[5162]: | da 9d 89 83 6b 4b c8 df e8 6a 4a 35 e7 4d 7f ed
Aug 17 09:13:11 mickey pluto[5162]: | 1a 64 eb 1c 1b fc eb 49 e9 e4 45 f9 8e ea 15 c9
Aug 17 09:13:11 mickey pluto[5162]: | 9c 64 50 e3 bf bb f9 86 ed c2 df 48 66 3a 9b e1
Aug 17 09:13:11 mickey pluto[5162]: | ***emit ISAKMP Key Exchange Payload:
Aug 17 09:13:11 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONCE
Aug 17 09:13:11 mickey pluto[5162]: | emitting 128 raw bytes of keyex value into ISAKMP Key Exchange Payload
Aug 17 09:13:11 mickey pluto[5162]: | keyex value 55 9e ce 7b 20 a8 dd 7a 84 e4 b8 25 77 80 a6 73
Aug 17 09:13:11 mickey pluto[5162]: | d7 cc d0 a0 65 44 cf 70 f4 00 a8 71 e7 8d 81 39
Aug 17 09:13:11 mickey pluto[5162]: | 7a 86 2f b1 8a 79 a7 e7 53 55 77 79 bb b8 bc ca
Aug 17 09:13:11 mickey pluto[5162]: | bb ed eb 40 0c 0f 01 c2 b8 f5 f4 aa b9 0c cf 6e
Aug 17 09:13:11 mickey pluto[5162]: | 77 fe f3 af 32 64 37 b6 7e 85 80 90 2e 47 ad 43
Aug 17 09:13:11 mickey pluto[5162]: | da 9d 89 83 6b 4b c8 df e8 6a 4a 35 e7 4d 7f ed
Aug 17 09:13:11 mickey pluto[5162]: | 1a 64 eb 1c 1b fc eb 49 e9 e4 45 f9 8e ea 15 c9
Aug 17 09:13:11 mickey pluto[5162]: | 9c 64 50 e3 bf bb f9 86 ed c2 df 48 66 3a 9b e1
Aug 17 09:13:11 mickey pluto[5162]: | emitting length of ISAKMP Key Exchange Payload: 132
Aug 17 09:13:11 mickey pluto[5162]: | ***emit ISAKMP Nonce Payload:
Aug 17 09:13:11 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:13:11 mickey pluto[5162]: | emitting 16 raw bytes of Ni into ISAKMP Nonce Payload
Aug 17 09:13:11 mickey pluto[5162]: | Ni 1d d7 64 d1 e3 f1 38 78 e8 60 2c 93 f8 11 40 da
Aug 17 09:13:11 mickey pluto[5162]: | emitting length of ISAKMP Nonce Payload: 20
Aug 17 09:13:11 mickey pluto[5162]: | emitting length of ISAKMP Message: 180
Aug 17 09:13:11 mickey pluto[5162]: | ICOOKIE: d4 a1 99 22 01 55 ff db
Aug 17 09:13:11 mickey pluto[5162]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 17 09:13:11 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:13:12 mickey pluto[5162]: | state hash entry 8
Aug 17 09:13:12 mickey pluto[5162]: | ICOOKIE: d4 a1 99 22 01 55 ff db
Aug 17 09:13:12 mickey pluto[5162]: | RCOOKIE: dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:12 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:13:12 mickey pluto[5162]: | state hash entry 24
Aug 17 09:13:12 mickey pluto[5162]: "tunnelipsec" #2: transition from state STATE_MAIN_I1 to state STATE_MAIN_I2
Aug 17 09:13:12 mickey pluto[5162]: | sending 180 bytes for STATE_MAIN_I1 through eth0 to 194.73.118.113:500:
Aug 17 09:13:12 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:12 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 00 b4 0a 00 00 84
Aug 17 09:13:12 mickey pluto[5162]: | 55 9e ce 7b 20 a8 dd 7a 84 e4 b8 25 77 80 a6 73
Aug 17 09:13:12 mickey pluto[5162]: | d7 cc d0 a0 65 44 cf 70 f4 00 a8 71 e7 8d 81 39
Aug 17 09:13:12 mickey pluto[5162]: | 7a 86 2f b1 8a 79 a7 e7 53 55 77 79 bb b8 bc ca
Aug 17 09:13:12 mickey pluto[5162]: | bb ed eb 40 0c 0f 01 c2 b8 f5 f4 aa b9 0c cf 6e
Aug 17 09:13:12 mickey pluto[5162]: | 77 fe f3 af 32 64 37 b6 7e 85 80 90 2e 47 ad 43
Aug 17 09:13:12 mickey pluto[5162]: | da 9d 89 83 6b 4b c8 df e8 6a 4a 35 e7 4d 7f ed
Aug 17 09:13:12 mickey pluto[5162]: | 1a 64 eb 1c 1b fc eb 49 e9 e4 45 f9 8e ea 15 c9
Aug 17 09:13:12 mickey pluto[5162]: | 9c 64 50 e3 bf bb f9 86 ed c2 df 48 66 3a 9b e1
Aug 17 09:13:12 mickey pluto[5162]: | 00 00 00 14 1d d7 64 d1 e3 f1 38 78 e8 60 2c 93
Aug 17 09:13:12 mickey pluto[5162]: | f8 11 40 da
Aug 17 09:13:12 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #2
Aug 17 09:13:12 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 10 seconds for #2
Aug 17 09:13:12 mickey pluto[5162]: |
Aug 17 09:13:12 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:13:12 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:12 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:13:12 mickey pluto[5162]: | e0 6b 50 56 08 11 c4 70 0e c9 f5 cf 80 0c ad 56
Aug 17 09:13:12 mickey pluto[5162]: | 50 7f e2 fe 50 83 6a 63 e0 5d 1f 05 c8 c0 ca 9f
Aug 17 09:13:12 mickey pluto[5162]: | 2b 6a 36 3d 8b 63 b9 0e a4 65 35 a5 80 9b 62 f5
Aug 17 09:13:12 mickey pluto[5162]: | 74 22 fa 59 46 41 27 1e 1e 14 43 0f 19 00 8f af
Aug 17 09:13:12 mickey pluto[5162]: | 1e ac bb a8 a3 52 38 66 c2 41 9c b1 f5 44 4e 6b
Aug 17 09:13:12 mickey pluto[5162]: | a0 2a 70 d2 07 c3 51 40 70 14 ed 2e a6 ea 80 cf
Aug 17 09:13:12 mickey pluto[5162]: | 34 04 9a d9 a2 6c 3b 3c 60 10 8c c7 c6 c5 d7 ce
Aug 17 09:13:12 mickey pluto[5162]: | 3a db da aa e9 8e 83 ca 31 85 f7 30 1a a2 07 2b
Aug 17 09:13:12 mickey pluto[5162]: | 0d 00 00 18 2f 4f 07 d5 b7 af ec ea 7c ce 71 37
Aug 17 09:13:12 mickey pluto[5162]: | c5 5b a0 7c 8e 95 d1 3c 0d 00 00 14 12 f5 f2 8c
Aug 17 09:13:12 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:13:12 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 29 da de f0
Aug 17 09:13:12 mickey pluto[5162]: | 57 4d 50 76 ba 6a a1 73 d3 cd 5f 48 00 00 00 14
Aug 17 09:13:13 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:13:13 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:13:13 mickey pluto[5162]: | initiator cookie:
Aug 17 09:13:13 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db
Aug 17 09:13:13 mickey pluto[5162]: | responder cookie:
Aug 17 09:13:13 mickey pluto[5162]: | dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:13 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:13:13 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:13:13 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:13:13 mickey pluto[5162]: | flags: none
Aug 17 09:13:13 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:13:13 mickey pluto[5162]: | length: 256
Aug 17 09:13:13 mickey pluto[5162]: | ICOOKIE: d4 a1 99 22 01 55 ff db
Aug 17 09:13:13 mickey pluto[5162]: | RCOOKIE: dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:13 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:13:13 mickey pluto[5162]: | state hash entry 24
Aug 17 09:13:13 mickey pluto[5162]: | peer and cookies match on #2, provided msgid 00000000 vs 00000000
Aug 17 09:13:13 mickey pluto[5162]: | state object #2 found, in STATE_MAIN_I2
Aug 17 09:13:13 mickey pluto[5162]: | ***parse ISAKMP Key Exchange Payload:
Aug 17 09:13:13 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONCE
Aug 17 09:13:13 mickey pluto[5162]: | length: 132
Aug 17 09:13:13 mickey pluto[5162]: | ***parse ISAKMP Nonce Payload:
Aug 17 09:13:13 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:13:13 mickey pluto[5162]: | length: 24
Aug 17 09:13:13 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:13:13 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:13:13 mickey pluto[5162]: | length: 20
Aug 17 09:13:13 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:13:13 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:13:13 mickey pluto[5162]: | length: 12
Aug 17 09:13:13 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:13:13 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:13:13 mickey pluto[5162]: | length: 20
Aug 17 09:13:13 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:13:13 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:13:13 mickey pluto[5162]: | length: 20
Aug 17 09:13:13 mickey pluto[5162]: "tunnelipsec" #2: ignoring Vendor ID payload [Cisco-Unity]
Aug 17 09:13:13 mickey pluto[5162]: "tunnelipsec" #2: received Vendor ID payload [XAUTH]
Aug 17 09:13:13 mickey pluto[5162]: "tunnelipsec" #2: ignoring Vendor ID payload [29dadef0574d5076...]
Aug 17 09:13:13 mickey pluto[5162]: "tunnelipsec" #2: ignoring Vendor ID payload [1f07f70eaa6514d3...]
Aug 17 09:13:13 mickey pluto[5162]: | **emit ISAKMP Message:
Aug 17 09:13:14 mickey pluto[5162]: | initiator cookie:
Aug 17 09:13:14 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db
Aug 17 09:13:14 mickey pluto[5162]: | responder cookie:
Aug 17 09:13:14 mickey pluto[5162]: | dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:14 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_ID
Aug 17 09:13:14 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:13:14 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:13:14 mickey pluto[5162]: | flags: ISAKMP_FLAG_ENCRYPTION
Aug 17 09:13:14 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:13:14 mickey pluto[5162]: | DH public value received:
Aug 17 09:13:14 mickey pluto[5162]: | e0 6b 50 56 08 11 c4 70 0e c9 f5 cf 80 0c ad 56
Aug 17 09:13:14 mickey pluto[5162]: | 50 7f e2 fe 50 83 6a 63 e0 5d 1f 05 c8 c0 ca 9f
Aug 17 09:13:14 mickey pluto[5162]: | 2b 6a 36 3d 8b 63 b9 0e a4 65 35 a5 80 9b 62 f5
Aug 17 09:13:14 mickey pluto[5162]: | 74 22 fa 59 46 41 27 1e 1e 14 43 0f 19 00 8f af
Aug 17 09:13:14 mickey pluto[5162]: | 1e ac bb a8 a3 52 38 66 c2 41 9c b1 f5 44 4e 6b
Aug 17 09:13:14 mickey pluto[5162]: | a0 2a 70 d2 07 c3 51 40 70 14 ed 2e a6 ea 80 cf
Aug 17 09:13:14 mickey pluto[5162]: | 34 04 9a d9 a2 6c 3b 3c 60 10 8c c7 c6 c5 d7 ce
Aug 17 09:13:14 mickey pluto[5162]: | 3a db da aa e9 8e 83 ca 31 85 f7 30 1a a2 07 2b
Aug 17 09:13:14 mickey pluto[5162]: | thinking about whether to send my certificate:
Aug 17 09:13:14 mickey pluto[5162]: | I have RSA key: OAKLEY_PRESHARED_KEY cert.type: CERT_NONE sendcert: CERT_SENDIFASKED
Aug 17 09:13:14 mickey pluto[5162]: | and I did not get a certificate request, so do not send cert.
Aug 17 09:13:14 mickey pluto[5162]: | I am not sending a certificate request
Aug 17 09:13:14 mickey pluto[5162]: | DH shared secret:
Aug 17 09:13:14 mickey pluto[5162]: | 14 86 c0 3f d9 e6 84 e7 77 ba 10 73 6c 0a c4 54
Aug 17 09:13:14 mickey pluto[5162]: | c4 91 22 a1 e2 0e 68 0f 92 83 10 f9 ac 90 24 a0
Aug 17 09:13:14 mickey pluto[5162]: | af 93 0b 82 a5 a2 00 8f 3a ea dd 46 30 50 e9 72
Aug 17 09:13:14 mickey pluto[5162]: | 32 92 5c 87 53 84 fa 6d e0 61 86 59 15 51 8b 04
Aug 17 09:13:14 mickey pluto[5162]: | ec ff c8 c8 3e fd f6 df a3 08 f9 28 70 74 af 01
Aug 17 09:13:14 mickey pluto[5162]: | e9 7a 57 0e cb 74 ef b2 95 4b 3d 89 7d 0b 8e 22
Aug 17 09:13:14 mickey pluto[5162]: | 08 79 7c ec 16 e7 87 af b4 fb 38 23 96 0b 53 10
Aug 17 09:13:14 mickey pluto[5162]: | 7c f8 35 d9 79 26 bb 5d 6b f9 7c 0f 04 b8 a0 07
Aug 17 09:13:14 mickey pluto[5162]: | looking for secret for 62.189.139.36->194.73.118.113 of kind PPK_PSK
Aug 17 09:13:14 mickey pluto[5162]: | Skeyid: 4b 3c d8 ed 89 e8 cb 2d f7 88 11 59 71 80 d6 97
Aug 17 09:13:14 mickey pluto[5162]: | Skeyid_d: 69 81 30 56 db a3 65 f7 f9 62 a4 ad b7 02 d6 df
Aug 17 09:13:14 mickey pluto[5162]: | Skeyid_a: f0 c5 9e 76 7e 75 dc c3 22 b4 a0 35 7f c8 f6 87
Aug 17 09:13:14 mickey pluto[5162]: | Skeyid_e: 3f 77 9a 0b bc dc 98 bf 80 bf 45 1e 0e 23 50 cf
Aug 17 09:13:14 mickey pluto[5162]: | enc key: 08 a3 85 60 73 13 9e fb ce 4e cd 5e f8 84 d1 49
Aug 17 09:13:14 mickey pluto[5162]: | 8d 70 49 89 5b 98 ba 02
Aug 17 09:13:15 mickey pluto[5162]: | IV: eb 17 67 16 66 d5 27 35 29 3a 21 5c 5c a0 0d c1
Aug 17 09:13:15 mickey pluto[5162]: | ***emit ISAKMP Identification Payload (IPsec DOI):
Aug 17 09:13:15 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_HASH
Aug 17 09:13:15 mickey pluto[5162]: | ID type: ID_IPV4_ADDR
Aug 17 09:13:15 mickey pluto[5162]: | Protocol ID: 0
Aug 17 09:13:15 mickey pluto[5162]: | port: 0
Aug 17 09:13:15 mickey pluto[5162]: | emitting 4 raw bytes of my identity into ISAKMP Identification Payload (IPsec DOI)
Aug 17 09:13:15 mickey pluto[5162]: | my identity 3e bd 8b 24
Aug 17 09:13:15 mickey pluto[5162]: | emitting length of ISAKMP Identification Payload (IPsec DOI): 12
Aug 17 09:13:15 mickey pluto[5162]: | hashing 144 bytes of SA
Aug 17 09:13:15 mickey pluto[5162]: | ***emit ISAKMP Hash Payload:
Aug 17 09:13:15 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:13:15 mickey pluto[5162]: | emitting 16 raw bytes of HASH_I into ISAKMP Hash Payload
Aug 17 09:13:15 mickey pluto[5162]: | HASH_I 98 aa 3e a0 fe bb 77 4e d5 50 ab a2 dc 5a 4f 32
Aug 17 09:13:15 mickey pluto[5162]: | emitting length of ISAKMP Hash Payload: 20
Aug 17 09:13:15 mickey pluto[5162]: | encrypting:
Aug 17 09:13:15 mickey pluto[5162]: | 08 00 00 0c 01 00 00 00 3e bd 8b 24 00 00 00 14
Aug 17 09:13:15 mickey pluto[5162]: | 98 aa 3e a0 fe bb 77 4e d5 50 ab a2 dc 5a 4f 32
Aug 17 09:13:15 mickey pluto[5162]: | encrypting using OAKLEY_3DES_CBC
Aug 17 09:13:15 mickey pluto[5162]: | next IV: 47 f5 c2 ca 78 41 e0 a6
Aug 17 09:13:15 mickey pluto[5162]: | emitting length of ISAKMP Message: 60
Aug 17 09:13:15 mickey pluto[5162]: "tunnelipsec" #2: transition from state STATE_MAIN_I2 to state STATE_MAIN_I3
Aug 17 09:13:15 mickey pluto[5162]: | sending 60 bytes for STATE_MAIN_I2 through eth0 to 194.73.118.113:500:
Aug 17 09:13:15 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:15 mickey pluto[5162]: | 05 10 02 01 00 00 00 00 00 00 00 3c 3a b2 9d b0
Aug 17 09:13:15 mickey pluto[5162]: | 67 f0 34 b7 16 e0 dc 11 e4 c8 f8 4c 9a 84 77 82
Aug 17 09:13:15 mickey pluto[5162]: | 9e bb f4 28 47 f5 c2 ca 78 41 e0 a6
Aug 17 09:13:15 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #2
Aug 17 09:13:15 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 10 seconds for #2
Aug 17 09:13:15 mickey pluto[5162]: |
Aug 17 09:13:15 mickey pluto[5162]: | *received 72 bytes from 194.73.118.113:500 on eth0
Aug 17 09:13:15 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:15 mickey pluto[5162]: | 0b 10 05 00 00 00 00 00 00 00 00 48 00 00 00 2c
Aug 17 09:13:15 mickey pluto[5162]: | 00 00 00 01 00 00 00 10 8a 03 d3 a7 c0 10 7c b5
Aug 17 09:13:15 mickey pluto[5162]: | 12 aa ff 7d d0 f0 e7 aa 65 1d 2a 3f 69 73 66 5c
Aug 17 09:13:15 mickey pluto[5162]: | 19 d8 3a e5 46 f6 b5 57
Aug 17 09:13:15 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:13:15 mickey pluto[5162]: | initiator cookie:
Aug 17 09:13:15 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db
Aug 17 09:13:15 mickey pluto[5162]: | responder cookie:
Aug 17 09:13:16 mickey pluto[5162]: | dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:16 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_N
Aug 17 09:13:16 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:13:16 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_INFO
Aug 17 09:13:16 mickey pluto[5162]: | flags: none
Aug 17 09:13:16 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:13:16 mickey pluto[5162]: | length: 72
Aug 17 09:13:16 mickey pluto[5162]: | ICOOKIE: d4 a1 99 22 01 55 ff db
Aug 17 09:13:16 mickey pluto[5162]: | RCOOKIE: dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:16 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:13:16 mickey pluto[5162]: | state hash entry 24
Aug 17 09:13:16 mickey pluto[5162]: | peer and cookies match on #2, provided msgid 00000000 vs 00000000
Aug 17 09:13:16 mickey pluto[5162]: | state object #2 found, in STATE_MAIN_I3
Aug 17 09:13:16 mickey pluto[5162]: | ***parse ISAKMP Notification Payload:
Aug 17 09:13:16 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:13:16 mickey pluto[5162]: | length: 44
Aug 17 09:13:16 mickey pluto[5162]: | DOI: ISAKMP_DOI_IPSEC
Aug 17 09:13:16 mickey pluto[5162]: | protocol ID: 0
Aug 17 09:13:16 mickey pluto[5162]: | SPI size: 0
Aug 17 09:13:16 mickey pluto[5162]: | Notify Message Type: PAYLOAD_MALFORMED
Aug 17 09:13:16 mickey pluto[5162]: "tunnelipsec" #2: ignoring informational payload, type PAYLOAD_MALFORMED
Aug 17 09:13:16 mickey pluto[5162]: | info: 8a 03 d3 a7 c0 10 7c b5 12 aa ff 7d d0 f0 e7 aa
Aug 17 09:13:16 mickey pluto[5162]: | 65 1d 2a 3f 69 73 66 5c 19 d8 3a e5 46 f6 b5 57
Aug 17 09:13:16 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 9 seconds for #2
Aug 17 09:13:25 mickey pluto[5162]: |
Aug 17 09:13:25 mickey pluto[5162]: | *time to handle event
Aug 17 09:13:25 mickey pluto[5162]: | event after this is EVENT_REINIT_SECRET in 3495 seconds
Aug 17 09:13:25 mickey pluto[5162]: | handling event EVENT_RETRANSMIT for 194.73.118.113 "tunnelipsec" #2
Aug 17 09:13:25 mickey pluto[5162]: | sending 60 bytes for EVENT_RETRANSMIT through eth0 to 194.73.118.113:500:
Aug 17 09:13:25 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:25 mickey pluto[5162]: | 05 10 02 01 00 00 00 00 00 00 00 3c 3a b2 9d b0
Aug 17 09:13:25 mickey pluto[5162]: | 67 f0 34 b7 16 e0 dc 11 e4 c8 f8 4c 9a 84 77 82
Aug 17 09:13:25 mickey pluto[5162]: | 9e bb f4 28 47 f5 c2 ca 78 41 e0 a6
Aug 17 09:13:25 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 20 seconds for #2
Aug 17 09:13:25 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 20 seconds for #2
Aug 17 09:13:25 mickey pluto[5162]: |
Aug 17 09:13:25 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:13:25 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:25 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:13:25 mickey pluto[5162]: | e0 6b 50 56 08 11 c4 70 0e c9 f5 cf 80 0c ad 56
Aug 17 09:13:25 mickey pluto[5162]: | 50 7f e2 fe 50 83 6a 63 e0 5d 1f 05 c8 c0 ca 9f
Aug 17 09:13:25 mickey pluto[5162]: | 2b 6a 36 3d 8b 63 b9 0e a4 65 35 a5 80 9b 62 f5
Aug 17 09:13:25 mickey pluto[5162]: | 74 22 fa 59 46 41 27 1e 1e 14 43 0f 19 00 8f af
Aug 17 09:13:25 mickey pluto[5162]: | 1e ac bb a8 a3 52 38 66 c2 41 9c b1 f5 44 4e 6b
Aug 17 09:13:25 mickey pluto[5162]: | a0 2a 70 d2 07 c3 51 40 70 14 ed 2e a6 ea 80 cf
Aug 17 09:13:25 mickey pluto[5162]: | 34 04 9a d9 a2 6c 3b 3c 60 10 8c c7 c6 c5 d7 ce
Aug 17 09:13:25 mickey pluto[5162]: | 3a db da aa e9 8e 83 ca 31 85 f7 30 1a a2 07 2b
Aug 17 09:13:25 mickey pluto[5162]: | 0d 00 00 18 2f 4f 07 d5 b7 af ec ea 7c ce 71 37
Aug 17 09:13:25 mickey pluto[5162]: | c5 5b a0 7c 8e 95 d1 3c 0d 00 00 14 12 f5 f2 8c
Aug 17 09:13:25 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:13:25 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 29 da de f0
Aug 17 09:13:26 mickey pluto[5162]: | 57 4d 50 76 ba 6a a1 73 d3 cd 5f 48 00 00 00 14
Aug 17 09:13:26 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:13:26 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:13:26 mickey pluto[5162]: | initiator cookie:
Aug 17 09:13:26 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db
Aug 17 09:13:26 mickey pluto[5162]: | responder cookie:
Aug 17 09:13:26 mickey pluto[5162]: | dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:26 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:13:26 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:13:26 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:13:26 mickey pluto[5162]: | flags: none
Aug 17 09:13:26 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:13:26 mickey pluto[5162]: | length: 256
Aug 17 09:13:26 mickey pluto[5162]: | ICOOKIE: d4 a1 99 22 01 55 ff db
Aug 17 09:13:26 mickey pluto[5162]: | RCOOKIE: dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:26 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:13:26 mickey pluto[5162]: | state hash entry 24
Aug 17 09:13:26 mickey pluto[5162]: | peer and cookies match on #2, provided msgid 00000000 vs 00000000
Aug 17 09:13:26 mickey pluto[5162]: | state object #2 found, in STATE_MAIN_I3
Aug 17 09:13:26 mickey pluto[5162]: "tunnelipsec" #2: discarding duplicate packet; already STATE_MAIN_I3
Aug 17 09:13:26 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 19 seconds for #2
Aug 17 09:13:33 mickey pluto[5162]: |
Aug 17 09:13:33 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:13:33 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:33 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:13:33 mickey pluto[5162]: | e0 6b 50 56 08 11 c4 70 0e c9 f5 cf 80 0c ad 56
Aug 17 09:13:33 mickey pluto[5162]: | 50 7f e2 fe 50 83 6a 63 e0 5d 1f 05 c8 c0 ca 9f
Aug 17 09:13:33 mickey pluto[5162]: | 2b 6a 36 3d 8b 63 b9 0e a4 65 35 a5 80 9b 62 f5
Aug 17 09:13:33 mickey pluto[5162]: | 74 22 fa 59 46 41 27 1e 1e 14 43 0f 19 00 8f af
Aug 17 09:13:33 mickey pluto[5162]: | 1e ac bb a8 a3 52 38 66 c2 41 9c b1 f5 44 4e 6b
Aug 17 09:13:33 mickey pluto[5162]: | a0 2a 70 d2 07 c3 51 40 70 14 ed 2e a6 ea 80 cf
Aug 17 09:13:33 mickey pluto[5162]: | 34 04 9a d9 a2 6c 3b 3c 60 10 8c c7 c6 c5 d7 ce
Aug 17 09:13:33 mickey pluto[5162]: | 3a db da aa e9 8e 83 ca 31 85 f7 30 1a a2 07 2b
Aug 17 09:13:33 mickey pluto[5162]: | 0d 00 00 18 2f 4f 07 d5 b7 af ec ea 7c ce 71 37
Aug 17 09:13:33 mickey pluto[5162]: | c5 5b a0 7c 8e 95 d1 3c 0d 00 00 14 12 f5 f2 8c
Aug 17 09:13:33 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:13:33 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 29 da de f0
Aug 17 09:13:33 mickey pluto[5162]: | 57 4d 50 76 ba 6a a1 73 d3 cd 5f 48 00 00 00 14
Aug 17 09:13:33 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:13:33 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:13:33 mickey pluto[5162]: | initiator cookie:
Aug 17 09:13:33 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db
Aug 17 09:13:33 mickey pluto[5162]: | responder cookie:
Aug 17 09:13:33 mickey pluto[5162]: | dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:33 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:13:33 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:13:33 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:13:33 mickey pluto[5162]: | flags: none
Aug 17 09:13:33 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:13:33 mickey pluto[5162]: | length: 256
Aug 17 09:13:34 mickey pluto[5162]: | ICOOKIE: d4 a1 99 22 01 55 ff db
Aug 17 09:13:34 mickey pluto[5162]: | RCOOKIE: dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:34 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:13:34 mickey pluto[5162]: | state hash entry 24
Aug 17 09:13:34 mickey pluto[5162]: | peer and cookies match on #2, provided msgid 00000000 vs 00000000
Aug 17 09:13:34 mickey pluto[5162]: | state object #2 found, in STATE_MAIN_I3
Aug 17 09:13:34 mickey pluto[5162]: "tunnelipsec" #2: discarding duplicate packet; already STATE_MAIN_I3
Aug 17 09:13:34 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 11 seconds for #2
Aug 17 09:13:41 mickey pluto[5162]: |
Aug 17 09:13:41 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:13:41 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:41 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:13:41 mickey pluto[5162]: | e0 6b 50 56 08 11 c4 70 0e c9 f5 cf 80 0c ad 56
Aug 17 09:13:41 mickey pluto[5162]: | 50 7f e2 fe 50 83 6a 63 e0 5d 1f 05 c8 c0 ca 9f
Aug 17 09:13:41 mickey pluto[5162]: | 2b 6a 36 3d 8b 63 b9 0e a4 65 35 a5 80 9b 62 f5
Aug 17 09:13:41 mickey pluto[5162]: | 74 22 fa 59 46 41 27 1e 1e 14 43 0f 19 00 8f af
Aug 17 09:13:41 mickey pluto[5162]: | 1e ac bb a8 a3 52 38 66 c2 41 9c b1 f5 44 4e 6b
Aug 17 09:13:41 mickey pluto[5162]: | a0 2a 70 d2 07 c3 51 40 70 14 ed 2e a6 ea 80 cf
Aug 17 09:13:41 mickey pluto[5162]: | 34 04 9a d9 a2 6c 3b 3c 60 10 8c c7 c6 c5 d7 ce
Aug 17 09:13:41 mickey pluto[5162]: | 3a db da aa e9 8e 83 ca 31 85 f7 30 1a a2 07 2b
Aug 17 09:13:41 mickey pluto[5162]: | 0d 00 00 18 2f 4f 07 d5 b7 af ec ea 7c ce 71 37
Aug 17 09:13:41 mickey pluto[5162]: | c5 5b a0 7c 8e 95 d1 3c 0d 00 00 14 12 f5 f2 8c
Aug 17 09:13:41 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:13:41 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 29 da de f0
Aug 17 09:13:41 mickey pluto[5162]: | 57 4d 50 76 ba 6a a1 73 d3 cd 5f 48 00 00 00 14
Aug 17 09:13:41 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:13:41 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:13:41 mickey pluto[5162]: | initiator cookie:
Aug 17 09:13:41 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db
Aug 17 09:13:41 mickey pluto[5162]: | responder cookie:
Aug 17 09:13:41 mickey pluto[5162]: | dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:41 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:13:41 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:13:41 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:13:41 mickey pluto[5162]: | flags: none
Aug 17 09:13:41 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:13:41 mickey pluto[5162]: | length: 256
Aug 17 09:13:42 mickey pluto[5162]: | ICOOKIE: d4 a1 99 22 01 55 ff db
Aug 17 09:13:42 mickey pluto[5162]: | RCOOKIE: dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:42 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:13:42 mickey pluto[5162]: | state hash entry 24
Aug 17 09:13:42 mickey pluto[5162]: | peer and cookies match on #2, provided msgid 00000000 vs 00000000
Aug 17 09:13:42 mickey pluto[5162]: | state object #2 found, in STATE_MAIN_I3
Aug 17 09:13:42 mickey pluto[5162]: "tunnelipsec" #2: discarding duplicate packet; already STATE_MAIN_I3
Aug 17 09:13:42 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 3 seconds for #2
Aug 17 09:13:45 mickey pluto[5162]: |
Aug 17 09:13:45 mickey pluto[5162]: | *time to handle event
Aug 17 09:13:45 mickey pluto[5162]: | event after this is EVENT_REINIT_SECRET in 3475 seconds
Aug 17 09:13:45 mickey pluto[5162]: | handling event EVENT_RETRANSMIT for 194.73.118.113 "tunnelipsec" #2
Aug 17 09:13:45 mickey pluto[5162]: | sending 60 bytes for EVENT_RETRANSMIT through eth0 to 194.73.118.113:500:
Aug 17 09:13:45 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:45 mickey pluto[5162]: | 05 10 02 01 00 00 00 00 00 00 00 3c 3a b2 9d b0
Aug 17 09:13:45 mickey pluto[5162]: | 67 f0 34 b7 16 e0 dc 11 e4 c8 f8 4c 9a 84 77 82
Aug 17 09:13:45 mickey pluto[5162]: | 9e bb f4 28 47 f5 c2 ca 78 41 e0 a6
Aug 17 09:13:45 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 40 seconds for #2
Aug 17 09:13:45 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 40 seconds for #2
Aug 17 09:13:45 mickey pluto[5162]: |
Aug 17 09:13:45 mickey pluto[5162]: | *received 76 bytes from 194.73.118.113:500 on eth0
Aug 17 09:13:45 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:45 mickey pluto[5162]: | 08 10 05 01 76 8f 6e 80 00 00 00 4c 36 18 47 93
Aug 17 09:13:45 mickey pluto[5162]: | 95 10 88 e3 d6 a2 52 84 bb 0b 2f f0 c7 c3 8b 9e
Aug 17 09:13:45 mickey pluto[5162]: | f8 f6 18 f8 19 02 ec dd 50 86 fd 0b ae a7 c1 0d
Aug 17 09:13:45 mickey pluto[5162]: | be 60 b7 80 57 c8 5b 50 e9 5b 2c 86
Aug 17 09:13:45 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:13:45 mickey pluto[5162]: | initiator cookie:
Aug 17 09:13:45 mickey pluto[5162]: | d4 a1 99 22 01 55 ff db
Aug 17 09:13:45 mickey pluto[5162]: | responder cookie:
Aug 17 09:13:45 mickey pluto[5162]: | dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:45 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_HASH
Aug 17 09:13:45 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:13:45 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_INFO
Aug 17 09:13:45 mickey pluto[5162]: | flags: ISAKMP_FLAG_ENCRYPTION
Aug 17 09:13:45 mickey pluto[5162]: | message ID: 76 8f 6e 80
Aug 17 09:13:45 mickey pluto[5162]: | length: 76
Aug 17 09:13:45 mickey pluto[5162]: | ICOOKIE: d4 a1 99 22 01 55 ff db
Aug 17 09:13:45 mickey pluto[5162]: | RCOOKIE: dc 1d 79 ed 57 4c 50 76
Aug 17 09:13:45 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:13:45 mickey pluto[5162]: | state hash entry 24
Aug 17 09:13:45 mickey pluto[5162]: | peer and cookies match on #2, provided msgid 00000000 vs 00000000
Aug 17 09:13:45 mickey pluto[5162]: | state object #2 found, in STATE_MAIN_I3
Aug 17 09:13:45 mickey pluto[5162]: "tunnelipsec" #2: encrypted Informational Exchange message is invalid because it is for incomplete ISAKMP SA
Aug 17 09:13:45 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 40 seconds for #2
Aug 17 09:14:25 mickey pluto[5162]: |
Aug 17 09:14:25 mickey pluto[5162]: | *time to handle event
Aug 17 09:14:25 mickey pluto[5162]: | event after this is EVENT_REINIT_SECRET in 3435 seconds
Aug 17 09:14:25 mickey pluto[5162]: | handling event EVENT_RETRANSMIT for 194.73.118.113 "tunnelipsec" #2
Aug 17 09:14:25 mickey pluto[5162]: "tunnelipsec" #2: max number of retransmissions (2) reached STATE_MAIN_I3. Possible authentication failure: no acceptable response to our first encrypted message
Aug 17 09:14:25 mickey pluto[5162]: "tunnelipsec" #2: starting keying attempt 3 of an unlimited number
Aug 17 09:14:25 mickey pluto[5162]: | creating state object #3 at 0x80c5e98
Aug 17 09:14:25 mickey pluto[5162]: | ICOOKIE: 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:25 mickey pluto[5162]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 17 09:14:25 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:14:25 mickey pluto[5162]: | state hash entry 15
Aug 17 09:14:25 mickey pluto[5162]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #3
Aug 17 09:14:25 mickey pluto[5162]: "tunnelipsec" #3: initiating Main Mode to replace #2
Aug 17 09:14:25 mickey pluto[5162]: | **emit ISAKMP Message:
Aug 17 09:14:25 mickey pluto[5162]: | initiator cookie:
Aug 17 09:14:26 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:26 mickey pluto[5162]: | responder cookie:
Aug 17 09:14:26 mickey pluto[5162]: | 00 00 00 00 00 00 00 00
Aug 17 09:14:26 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_SA
Aug 17 09:14:26 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:14:26 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:14:26 mickey pluto[5162]: | flags: none
Aug 17 09:14:26 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:14:26 mickey pluto[5162]: | ***emit ISAKMP Security Association Payload:
Aug 17 09:14:26 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:14:26 mickey pluto[5162]: | DOI: ISAKMP_DOI_IPSEC
Aug 17 09:14:26 mickey pluto[5162]: | ****emit IPsec DOI SIT:
Aug 17 09:14:26 mickey pluto[5162]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
Aug 17 09:14:26 mickey pluto[5162]: | ****emit ISAKMP Proposal Payload:
Aug 17 09:14:26 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:14:26 mickey pluto[5162]: | proposal number: 0
Aug 17 09:14:26 mickey pluto[5162]: | protocol ID: PROTO_ISAKMP
Aug 17 09:14:26 mickey pluto[5162]: | SPI size: 0
Aug 17 09:14:26 mickey pluto[5162]: | number of transforms: 4
Aug 17 09:14:26 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:14:26 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_T
Aug 17 09:14:26 mickey pluto[5162]: | transform number: 0
Aug 17 09:14:26 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:14:26 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:26 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:14:26 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:26 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:14:26 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:26 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:14:26 mickey pluto[5162]: | length/value: 3600
Aug 17 09:14:26 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:26 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:14:26 mickey pluto[5162]: | length/value: 5
Aug 17 09:14:26 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:14:26 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:26 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:14:26 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:26 mickey pluto[5162]: | [1 is OAKLEY_MD5]
Aug 17 09:14:26 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:26 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:14:26 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:27 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:14:27 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:27 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:14:27 mickey pluto[5162]: | length/value: 5
Aug 17 09:14:27 mickey pluto[5162]: | [5 is OAKLEY_GROUP_MODP1536 (extension)]
Aug 17 09:14:27 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:14:27 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:14:27 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_T
Aug 17 09:14:27 mickey pluto[5162]: | transform number: 1
Aug 17 09:14:27 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:14:27 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:27 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:14:27 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:27 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:14:27 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:27 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:14:27 mickey pluto[5162]: | length/value: 3600
Aug 17 09:14:27 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:27 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:14:27 mickey pluto[5162]: | length/value: 5
Aug 17 09:14:27 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:14:27 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:27 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:14:27 mickey pluto[5162]: | length/value: 2
Aug 17 09:14:27 mickey pluto[5162]: | [2 is OAKLEY_SHA]
Aug 17 09:14:27 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:27 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:14:27 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:27 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:14:27 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:27 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:14:27 mickey pluto[5162]: | length/value: 5
Aug 17 09:14:27 mickey pluto[5162]: | [5 is OAKLEY_GROUP_MODP1536 (extension)]
Aug 17 09:14:27 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:14:28 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:14:28 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_T
Aug 17 09:14:28 mickey pluto[5162]: | transform number: 2
Aug 17 09:14:28 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:14:28 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:28 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:14:28 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:28 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:14:28 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:28 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:14:28 mickey pluto[5162]: | length/value: 3600
Aug 17 09:14:28 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:28 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:14:28 mickey pluto[5162]: | length/value: 5
Aug 17 09:14:28 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:14:28 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:28 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:14:28 mickey pluto[5162]: | length/value: 2
Aug 17 09:14:28 mickey pluto[5162]: | [2 is OAKLEY_SHA]
Aug 17 09:14:28 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:28 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:14:28 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:28 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:14:28 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:28 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:14:28 mickey pluto[5162]: | length/value: 2
Aug 17 09:14:28 mickey pluto[5162]: | [2 is OAKLEY_GROUP_MODP1024]
Aug 17 09:14:28 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:14:28 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:14:28 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:14:28 mickey pluto[5162]: | transform number: 3
Aug 17 09:14:28 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:14:28 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:28 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:14:28 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:28 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:14:28 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:28 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:14:28 mickey pluto[5162]: | length/value: 3600
Aug 17 09:14:29 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:29 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:14:29 mickey pluto[5162]: | length/value: 5
Aug 17 09:14:29 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:14:29 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:29 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:14:29 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:29 mickey pluto[5162]: | [1 is OAKLEY_MD5]
Aug 17 09:14:29 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:29 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:14:29 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:29 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:14:29 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:14:29 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:14:29 mickey pluto[5162]: | length/value: 2
Aug 17 09:14:29 mickey pluto[5162]: | [2 is OAKLEY_GROUP_MODP1024]
Aug 17 09:14:29 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:14:29 mickey pluto[5162]: | emitting length of ISAKMP Proposal Payload: 136
Aug 17 09:14:29 mickey pluto[5162]: | emitting length of ISAKMP Security Association Payload: 148
Aug 17 09:14:29 mickey pluto[5162]: | emitting length of ISAKMP Message: 176
Aug 17 09:14:29 mickey pluto[5162]: | sending 176 bytes for main_outI1 through eth0 to 194.73.118.113:500:
Aug 17 09:14:29 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0 00 00 00 00 00 00 00 00
Aug 17 09:14:29 mickey pluto[5162]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94
Aug 17 09:14:29 mickey pluto[5162]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04
Aug 17 09:14:29 mickey pluto[5162]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:14:29 mickey pluto[5162]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05
Aug 17 09:14:29 mickey pluto[5162]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:14:29 mickey pluto[5162]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05
Aug 17 09:14:29 mickey pluto[5162]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:14:29 mickey pluto[5162]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02
Aug 17 09:14:29 mickey pluto[5162]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:14:29 mickey pluto[5162]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02
Aug 17 09:14:29 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #3
Aug 17 09:14:29 mickey pluto[5162]: | ICOOKIE: d4 a1 99 22 01 55 ff db
Aug 17 09:14:29 mickey pluto[5162]: | RCOOKIE: dc 1d 79 ed 57 4c 50 76
Aug 17 09:14:29 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:14:29 mickey pluto[5162]: | state hash entry 24
Aug 17 09:14:29 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 10 seconds for #3
Aug 17 09:14:29 mickey pluto[5162]: |
Aug 17 09:14:29 mickey pluto[5162]: | *received 104 bytes from 194.73.118.113:500 on eth0
Aug 17 09:14:29 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:30 mickey pluto[5162]: | 01 10 02 00 00 00 00 00 00 00 00 68 0d 00 00 34
Aug 17 09:14:30 mickey pluto[5162]: | 00 00 00 01 00 00 00 01 00 00 00 28 01 01 00 01
Aug 17 09:14:30 mickey pluto[5162]: | 00 00 00 20 03 01 00 00 80 01 00 05 80 02 00 01
Aug 17 09:14:30 mickey pluto[5162]: | 80 04 00 02 80 03 00 01 80 0b 00 01 80 0c 0e 10
Aug 17 09:14:30 mickey pluto[5162]: | 00 00 00 18 40 48 b7 d5 6e bc e8 85 25 e7 de 7f
Aug 17 09:14:30 mickey pluto[5162]: | 00 d6 c2 d3 c0 00 00 00
Aug 17 09:14:30 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:14:30 mickey pluto[5162]: | initiator cookie:
Aug 17 09:14:30 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:30 mickey pluto[5162]: | responder cookie:
Aug 17 09:14:30 mickey pluto[5162]: | 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:30 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_SA
Aug 17 09:14:30 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:14:30 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:14:30 mickey pluto[5162]: | flags: none
Aug 17 09:14:30 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:14:30 mickey pluto[5162]: | length: 104
Aug 17 09:14:30 mickey pluto[5162]: | ICOOKIE: 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:30 mickey pluto[5162]: | RCOOKIE: 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:30 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:14:30 mickey pluto[5162]: | state hash entry 5
Aug 17 09:14:30 mickey pluto[5162]: | state object not found
Aug 17 09:14:30 mickey pluto[5162]: | ICOOKIE: 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:30 mickey pluto[5162]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 17 09:14:30 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:14:30 mickey pluto[5162]: | state hash entry 15
Aug 17 09:14:30 mickey pluto[5162]: | peer and cookies match on #3, provided msgid 00000000 vs 00000000
Aug 17 09:14:30 mickey pluto[5162]: | state object #3 found, in STATE_MAIN_I1
Aug 17 09:14:30 mickey pluto[5162]: | ***parse ISAKMP Security Association Payload:
Aug 17 09:14:30 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:14:30 mickey pluto[5162]: | length: 52
Aug 17 09:14:30 mickey pluto[5162]: | DOI: ISAKMP_DOI_IPSEC
Aug 17 09:14:30 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:14:30 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:14:30 mickey pluto[5162]: | length: 24
Aug 17 09:14:30 mickey pluto[5162]: "tunnelipsec" #3: ignoring Vendor ID payload [4048b7d56ebce885...]
Aug 17 09:14:30 mickey pluto[5162]: | ****parse IPsec DOI SIT:
Aug 17 09:14:30 mickey pluto[5162]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
Aug 17 09:14:30 mickey pluto[5162]: | ****parse ISAKMP Proposal Payload:
Aug 17 09:14:30 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:14:30 mickey pluto[5162]: | length: 40
Aug 17 09:14:31 mickey pluto[5162]: | proposal number: 1
Aug 17 09:14:31 mickey pluto[5162]: | protocol ID: PROTO_ISAKMP
Aug 17 09:14:31 mickey pluto[5162]: | SPI size: 0
Aug 17 09:14:31 mickey pluto[5162]: | number of transforms: 1
Aug 17 09:14:31 mickey pluto[5162]: | *****parse ISAKMP Transform Payload (ISAKMP):
Aug 17 09:14:31 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:14:31 mickey pluto[5162]: | length: 32
Aug 17 09:14:31 mickey pluto[5162]: | transform number: 3
Aug 17 09:14:31 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:14:31 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:14:31 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:14:31 mickey pluto[5162]: | length/value: 5
Aug 17 09:14:31 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:14:31 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:14:31 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:14:31 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:31 mickey pluto[5162]: | [1 is OAKLEY_MD5]
Aug 17 09:14:31 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:14:31 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:14:31 mickey pluto[5162]: | length/value: 2
Aug 17 09:14:31 mickey pluto[5162]: | [2 is OAKLEY_GROUP_MODP1024]
Aug 17 09:14:31 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:14:31 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:14:31 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:31 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:14:31 mickey pluto[5162]: | looking for secret for 62.189.139.36->194.73.118.113 of kind PPK_PSK
Aug 17 09:14:31 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:14:31 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:14:31 mickey pluto[5162]: | length/value: 1
Aug 17 09:14:31 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:14:31 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:14:31 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:14:31 mickey pluto[5162]: | length/value: 3600
Aug 17 09:14:31 mickey pluto[5162]: | Oakley Transform 3 accepted
Aug 17 09:14:31 mickey pluto[5162]: | sender checking NAT-t: 0 and 0
Aug 17 09:14:31 mickey pluto[5162]: | **emit ISAKMP Message:
Aug 17 09:14:31 mickey pluto[5162]: | initiator cookie:
Aug 17 09:14:31 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:32 mickey pluto[5162]: | responder cookie:
Aug 17 09:14:32 mickey pluto[5162]: | 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:32 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:14:32 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:14:32 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:14:32 mickey pluto[5162]: | flags: none
Aug 17 09:14:32 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:14:32 mickey pluto[5162]: | Local DH secret:
Aug 17 09:14:32 mickey pluto[5162]: | 3b 8b 8b be cd 00 6e 4a 1b 5c 02 39 86 59 66 65
Aug 17 09:14:32 mickey pluto[5162]: | dc 8c 11 e0 6d 59 d3 36 a2 88 35 78 8f 62 f9 80
Aug 17 09:14:32 mickey pluto[5162]: | Public DH value sent:
Aug 17 09:14:32 mickey pluto[5162]: | e5 5b 42 72 d9 82 03 bc b9 43 7b 0d b0 38 a4 5d
Aug 17 09:14:32 mickey pluto[5162]: | d3 fe bd 18 78 3e fe af fc a7 05 ab b2 4a 99 ef
Aug 17 09:14:32 mickey pluto[5162]: | 11 e9 af 39 cb b1 94 cd 3a 6f b4 28 ea 36 1b f6
Aug 17 09:14:32 mickey pluto[5162]: | 00 4c ce 08 94 e6 e9 34 7a 64 80 2f fe e7 f8 fb
Aug 17 09:14:32 mickey pluto[5162]: | e2 0b ee c6 1c 6f 8f c7 3e 19 9a 49 26 ca 80 45
Aug 17 09:14:32 mickey pluto[5162]: | b9 2a 37 73 bf 43 d5 64 5c 63 d8 f8 c0 05 7c 07
Aug 17 09:14:32 mickey pluto[5162]: | 56 6b 7a 9a 9b 1b b9 0c 23 29 ee ac c1 6d 37 ba
Aug 17 09:14:32 mickey pluto[5162]: | d7 34 1d 26 77 c8 3b 50 4d 4c 5c a5 d8 da 33 40
Aug 17 09:14:32 mickey pluto[5162]: | ***emit ISAKMP Key Exchange Payload:
Aug 17 09:14:32 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONCE
Aug 17 09:14:32 mickey pluto[5162]: | emitting 128 raw bytes of keyex value into ISAKMP Key Exchange Payload
Aug 17 09:14:32 mickey pluto[5162]: | keyex value e5 5b 42 72 d9 82 03 bc b9 43 7b 0d b0 38 a4 5d
Aug 17 09:14:32 mickey pluto[5162]: | d3 fe bd 18 78 3e fe af fc a7 05 ab b2 4a 99 ef
Aug 17 09:14:32 mickey pluto[5162]: | 11 e9 af 39 cb b1 94 cd 3a 6f b4 28 ea 36 1b f6
Aug 17 09:14:32 mickey pluto[5162]: | 00 4c ce 08 94 e6 e9 34 7a 64 80 2f fe e7 f8 fb
Aug 17 09:14:32 mickey pluto[5162]: | e2 0b ee c6 1c 6f 8f c7 3e 19 9a 49 26 ca 80 45
Aug 17 09:14:32 mickey pluto[5162]: | b9 2a 37 73 bf 43 d5 64 5c 63 d8 f8 c0 05 7c 07
Aug 17 09:14:32 mickey pluto[5162]: | 56 6b 7a 9a 9b 1b b9 0c 23 29 ee ac c1 6d 37 ba
Aug 17 09:14:32 mickey pluto[5162]: | d7 34 1d 26 77 c8 3b 50 4d 4c 5c a5 d8 da 33 40
Aug 17 09:14:32 mickey pluto[5162]: | emitting length of ISAKMP Key Exchange Payload: 132
Aug 17 09:14:32 mickey pluto[5162]: | ***emit ISAKMP Nonce Payload:
Aug 17 09:14:32 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:14:32 mickey pluto[5162]: | emitting 16 raw bytes of Ni into ISAKMP Nonce Payload
Aug 17 09:14:32 mickey pluto[5162]: | Ni 4f 57 bb e8 ab 4e 25 a3 6c b8 1f 9a 47 f1 4e 53
Aug 17 09:14:32 mickey pluto[5162]: | emitting length of ISAKMP Nonce Payload: 20
Aug 17 09:14:32 mickey pluto[5162]: | emitting length of ISAKMP Message: 180
Aug 17 09:14:32 mickey pluto[5162]: | ICOOKIE: 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:32 mickey pluto[5162]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 17 09:14:32 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:14:32 mickey pluto[5162]: | state hash entry 15
Aug 17 09:14:32 mickey pluto[5162]: | ICOOKIE: 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:33 mickey pluto[5162]: | RCOOKIE: 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:33 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:14:33 mickey pluto[5162]: | state hash entry 5
Aug 17 09:14:33 mickey pluto[5162]: "tunnelipsec" #3: transition from state STATE_MAIN_I1 to state STATE_MAIN_I2
Aug 17 09:14:33 mickey pluto[5162]: | sending 180 bytes for STATE_MAIN_I1 through eth0 to 194.73.118.113:500:
Aug 17 09:14:33 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:33 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 00 b4 0a 00 00 84
Aug 17 09:14:33 mickey pluto[5162]: | e5 5b 42 72 d9 82 03 bc b9 43 7b 0d b0 38 a4 5d
Aug 17 09:14:33 mickey pluto[5162]: | d3 fe bd 18 78 3e fe af fc a7 05 ab b2 4a 99 ef
Aug 17 09:14:33 mickey pluto[5162]: | 11 e9 af 39 cb b1 94 cd 3a 6f b4 28 ea 36 1b f6
Aug 17 09:14:33 mickey pluto[5162]: | 00 4c ce 08 94 e6 e9 34 7a 64 80 2f fe e7 f8 fb
Aug 17 09:14:33 mickey pluto[5162]: | e2 0b ee c6 1c 6f 8f c7 3e 19 9a 49 26 ca 80 45
Aug 17 09:14:33 mickey pluto[5162]: | b9 2a 37 73 bf 43 d5 64 5c 63 d8 f8 c0 05 7c 07
Aug 17 09:14:33 mickey pluto[5162]: | 56 6b 7a 9a 9b 1b b9 0c 23 29 ee ac c1 6d 37 ba
Aug 17 09:14:33 mickey pluto[5162]: | d7 34 1d 26 77 c8 3b 50 4d 4c 5c a5 d8 da 33 40
Aug 17 09:14:33 mickey pluto[5162]: | 00 00 00 14 4f 57 bb e8 ab 4e 25 a3 6c b8 1f 9a
Aug 17 09:14:33 mickey pluto[5162]: | 47 f1 4e 53
Aug 17 09:14:33 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #3
Aug 17 09:14:33 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 10 seconds for #3
Aug 17 09:14:33 mickey pluto[5162]: |
Aug 17 09:14:33 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:14:33 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:33 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:14:33 mickey pluto[5162]: | 6d 08 a1 2a 5e 1a 8a 7a 68 be c3 f9 eb 82 c9 13
Aug 17 09:14:33 mickey pluto[5162]: | fd d4 91 05 1a 29 59 6d a8 cb 38 bd f7 c6 71 69
Aug 17 09:14:33 mickey pluto[5162]: | b0 93 0d c9 13 89 27 fa 77 0b e7 7f ed 5b 0e a3
Aug 17 09:14:33 mickey pluto[5162]: | ea f4 44 18 97 c1 b2 55 ca 31 49 d2 95 c0 d1 91
Aug 17 09:14:33 mickey pluto[5162]: | 4e 51 ae 09 ce 3d 2e ad 4e 3a 44 da d0 95 ba 7f
Aug 17 09:14:33 mickey pluto[5162]: | 1c 58 8f 73 a3 15 ad f1 fd cf 0e b2 8f f1 7c fd
Aug 17 09:14:33 mickey pluto[5162]: | da 81 06 e7 b2 7c 5a df b1 ac 66 e1 5f 52 e1 6e
Aug 17 09:14:33 mickey pluto[5162]: | cc 6b 67 3b d1 68 a6 58 0a 7c bb 49 e8 55 54 ab
Aug 17 09:14:33 mickey pluto[5162]: | 0d 00 00 18 96 4a b5 21 bc 01 4b c9 67 76 29 46
Aug 17 09:14:33 mickey pluto[5162]: | a3 21 a3 65 27 b0 51 99 0d 00 00 14 12 f5 f2 8c
Aug 17 09:14:33 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:14:33 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 f0 f5 05 f8
Aug 17 09:14:33 mickey pluto[5162]: | fa 4f f5 c7 e7 cf a8 60 54 3f f0 3a 00 00 00 14
Aug 17 09:14:33 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:14:33 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:14:33 mickey pluto[5162]: | initiator cookie:
Aug 17 09:14:34 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:34 mickey pluto[5162]: | responder cookie:
Aug 17 09:14:34 mickey pluto[5162]: | 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:34 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:14:34 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:14:34 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:14:34 mickey pluto[5162]: | flags: none
Aug 17 09:14:34 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:14:34 mickey pluto[5162]: | length: 256
Aug 17 09:14:34 mickey pluto[5162]: | ICOOKIE: 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:34 mickey pluto[5162]: | RCOOKIE: 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:34 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:14:34 mickey pluto[5162]: | state hash entry 5
Aug 17 09:14:34 mickey pluto[5162]: | peer and cookies match on #3, provided msgid 00000000 vs 00000000
Aug 17 09:14:34 mickey pluto[5162]: | state object #3 found, in STATE_MAIN_I2
Aug 17 09:14:34 mickey pluto[5162]: | ***parse ISAKMP Key Exchange Payload:
Aug 17 09:14:34 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONCE
Aug 17 09:14:34 mickey pluto[5162]: | length: 132
Aug 17 09:14:34 mickey pluto[5162]: | ***parse ISAKMP Nonce Payload:
Aug 17 09:14:34 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:14:34 mickey pluto[5162]: | length: 24
Aug 17 09:14:34 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:14:34 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:14:34 mickey pluto[5162]: | length: 20
Aug 17 09:14:34 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:14:34 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:14:34 mickey pluto[5162]: | length: 12
Aug 17 09:14:34 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:14:34 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:14:34 mickey pluto[5162]: | length: 20
Aug 17 09:14:34 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:14:34 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:14:34 mickey pluto[5162]: | length: 20
Aug 17 09:14:34 mickey pluto[5162]: "tunnelipsec" #3: ignoring Vendor ID payload [Cisco-Unity]
Aug 17 09:14:34 mickey pluto[5162]: "tunnelipsec" #3: received Vendor ID payload [XAUTH]
Aug 17 09:14:34 mickey pluto[5162]: "tunnelipsec" #3: ignoring Vendor ID payload [f0f505f8fa4ff5c7...]
Aug 17 09:14:34 mickey pluto[5162]: "tunnelipsec" #3: ignoring Vendor ID payload [1f07f70eaa6514d3...]
Aug 17 09:14:34 mickey pluto[5162]: | **emit ISAKMP Message:
Aug 17 09:14:34 mickey pluto[5162]: | initiator cookie:
Aug 17 09:14:34 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:34 mickey pluto[5162]: | responder cookie:
Aug 17 09:14:34 mickey pluto[5162]: | 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:35 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_ID
Aug 17 09:14:35 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:14:35 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:14:35 mickey pluto[5162]: | flags: ISAKMP_FLAG_ENCRYPTION
Aug 17 09:14:35 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:14:35 mickey pluto[5162]: | DH public value received:
Aug 17 09:14:35 mickey pluto[5162]: | 6d 08 a1 2a 5e 1a 8a 7a 68 be c3 f9 eb 82 c9 13
Aug 17 09:14:35 mickey pluto[5162]: | fd d4 91 05 1a 29 59 6d a8 cb 38 bd f7 c6 71 69
Aug 17 09:14:35 mickey pluto[5162]: | b0 93 0d c9 13 89 27 fa 77 0b e7 7f ed 5b 0e a3
Aug 17 09:14:35 mickey pluto[5162]: | ea f4 44 18 97 c1 b2 55 ca 31 49 d2 95 c0 d1 91
Aug 17 09:14:35 mickey pluto[5162]: | 4e 51 ae 09 ce 3d 2e ad 4e 3a 44 da d0 95 ba 7f
Aug 17 09:14:35 mickey pluto[5162]: | 1c 58 8f 73 a3 15 ad f1 fd cf 0e b2 8f f1 7c fd
Aug 17 09:14:35 mickey pluto[5162]: | da 81 06 e7 b2 7c 5a df b1 ac 66 e1 5f 52 e1 6e
Aug 17 09:14:35 mickey pluto[5162]: | cc 6b 67 3b d1 68 a6 58 0a 7c bb 49 e8 55 54 ab
Aug 17 09:14:35 mickey pluto[5162]: | thinking about whether to send my certificate:
Aug 17 09:14:35 mickey pluto[5162]: | I have RSA key: OAKLEY_PRESHARED_KEY cert.type: CERT_NONE sendcert: CERT_SENDIFASKED
Aug 17 09:14:35 mickey pluto[5162]: | and I did not get a certificate request, so do not send cert.
Aug 17 09:14:35 mickey pluto[5162]: | I am not sending a certificate request
Aug 17 09:14:35 mickey pluto[5162]: | DH shared secret:
Aug 17 09:14:35 mickey pluto[5162]: | 42 6b 1c 03 56 f7 3a a5 c7 22 0a f7 50 02 e8 bc
Aug 17 09:14:35 mickey pluto[5162]: | dd b9 09 b2 79 6a e4 15 50 e9 e0 a6 d6 d3 a0 58
Aug 17 09:14:35 mickey pluto[5162]: | 06 3c bf 37 b0 81 c9 41 6f d5 b1 19 27 09 6f 4f
Aug 17 09:14:35 mickey pluto[5162]: | b0 95 59 ac c7 70 ce 59 f7 c9 3a 70 b4 aa 2f 45
Aug 17 09:14:35 mickey pluto[5162]: | c7 a5 30 96 42 db 80 ab f1 76 bf f2 0d 04 f7 86
Aug 17 09:14:35 mickey pluto[5162]: | fd b1 a7 c3 3f 13 f3 c2 9e ea cd c0 4e 82 ca f9
Aug 17 09:14:35 mickey pluto[5162]: | b6 58 01 e8 d8 16 e8 cc eb 1d d8 66 ee a7 5d 42
Aug 17 09:14:35 mickey pluto[5162]: | 51 09 1a c0 15 4a 88 b9 a6 f5 53 08 09 93 a8 f5
Aug 17 09:14:35 mickey pluto[5162]: | looking for secret for 62.189.139.36->194.73.118.113 of kind PPK_PSK
Aug 17 09:14:35 mickey pluto[5162]: | Skeyid: 59 7c a2 e0 e4 00 e6 b2 1d 03 0e 64 28 f9 3a 14
Aug 17 09:14:35 mickey pluto[5162]: | Skeyid_d: 8a 6c 65 65 13 bd 39 46 af 4f e4 d9 22 3e e6 dd
Aug 17 09:14:35 mickey pluto[5162]: | Skeyid_a: ee 38 14 b8 f9 e6 a2 36 37 9d ee 04 7f 7d 07 1f
Aug 17 09:14:35 mickey pluto[5162]: | Skeyid_e: ed ed c7 e2 33 a9 af b6 ff 60 9e bb 9e fb a0 9c
Aug 17 09:14:35 mickey pluto[5162]: | enc key: bd 9c d6 c2 e9 c2 53 3a fe 66 cb b9 97 11 38 31
Aug 17 09:14:35 mickey pluto[5162]: | a8 f5 3b 4b 0e 9b e7 c4
Aug 17 09:14:35 mickey pluto[5162]: | IV: e3 df 6d 89 8e 4c 9c de a6 b5 c9 54 38 f7 d0 ca
Aug 17 09:14:35 mickey pluto[5162]: | ***emit ISAKMP Identification Payload (IPsec DOI):
Aug 17 09:14:35 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_HASH
Aug 17 09:14:35 mickey pluto[5162]: | ID type: ID_IPV4_ADDR
Aug 17 09:14:35 mickey pluto[5162]: | Protocol ID: 0
Aug 17 09:14:35 mickey pluto[5162]: | port: 0
Aug 17 09:14:35 mickey pluto[5162]: | emitting 4 raw bytes of my identity into ISAKMP Identification Payload (IPsec DOI)
Aug 17 09:14:35 mickey pluto[5162]: | my identity 3e bd 8b 24
Aug 17 09:14:35 mickey pluto[5162]: | emitting length of ISAKMP Identification Payload (IPsec DOI): 12
Aug 17 09:14:36 mickey pluto[5162]: | hashing 144 bytes of SA
Aug 17 09:14:36 mickey pluto[5162]: | ***emit ISAKMP Hash Payload:
Aug 17 09:14:36 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:14:36 mickey pluto[5162]: | emitting 16 raw bytes of HASH_I into ISAKMP Hash Payload
Aug 17 09:14:36 mickey pluto[5162]: | HASH_I e5 61 59 8e 38 35 e2 6e b6 7d 6a 3a cf b6 30 6c
Aug 17 09:14:36 mickey pluto[5162]: | emitting length of ISAKMP Hash Payload: 20
Aug 17 09:14:36 mickey pluto[5162]: | encrypting:
Aug 17 09:14:36 mickey pluto[5162]: | 08 00 00 0c 01 00 00 00 3e bd 8b 24 00 00 00 14
Aug 17 09:14:36 mickey pluto[5162]: | e5 61 59 8e 38 35 e2 6e b6 7d 6a 3a cf b6 30 6c
Aug 17 09:14:36 mickey pluto[5162]: | encrypting using OAKLEY_3DES_CBC
Aug 17 09:14:36 mickey pluto[5162]: | next IV: 1c ef ec e2 cd fb 64 5c
Aug 17 09:14:36 mickey pluto[5162]: | emitting length of ISAKMP Message: 60
Aug 17 09:14:36 mickey pluto[5162]: "tunnelipsec" #3: transition from state STATE_MAIN_I2 to state STATE_MAIN_I3
Aug 17 09:14:36 mickey pluto[5162]: | sending 60 bytes for STATE_MAIN_I2 through eth0 to 194.73.118.113:500:
Aug 17 09:14:36 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:36 mickey pluto[5162]: | 05 10 02 01 00 00 00 00 00 00 00 3c 61 6f 3c 9e
Aug 17 09:14:36 mickey pluto[5162]: | aa 6f 12 43 fb 1c 68 9d ee d8 a6 dd 28 5a 2c ad
Aug 17 09:14:36 mickey pluto[5162]: | 3f ea e7 b2 1c ef ec e2 cd fb 64 5c
Aug 17 09:14:36 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #3
Aug 17 09:14:36 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 10 seconds for #3
Aug 17 09:14:36 mickey pluto[5162]: |
Aug 17 09:14:36 mickey pluto[5162]: | *received 72 bytes from 194.73.118.113:500 on eth0
Aug 17 09:14:36 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:36 mickey pluto[5162]: | 0b 10 05 00 00 00 00 00 00 00 00 48 00 00 00 2c
Aug 17 09:14:36 mickey pluto[5162]: | 00 00 00 01 00 00 00 10 5b a4 c9 a0 87 38 13 f3
Aug 17 09:14:36 mickey pluto[5162]: | 3d 87 71 f6 0c 6f 27 32 c5 f5 e3 4a 2e 25 9b 79
Aug 17 09:14:36 mickey pluto[5162]: | d4 72 96 54 87 b2 55 2c
Aug 17 09:14:36 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:14:36 mickey pluto[5162]: | initiator cookie:
Aug 17 09:14:36 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:36 mickey pluto[5162]: | responder cookie:
Aug 17 09:14:36 mickey pluto[5162]: | 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:36 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_N
Aug 17 09:14:36 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:14:36 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_INFO
Aug 17 09:14:36 mickey pluto[5162]: | flags: none
Aug 17 09:14:37 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:14:37 mickey pluto[5162]: | length: 72
Aug 17 09:14:37 mickey pluto[5162]: | ICOOKIE: 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:37 mickey pluto[5162]: | RCOOKIE: 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:37 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:14:37 mickey pluto[5162]: | state hash entry 5
Aug 17 09:14:37 mickey pluto[5162]: | peer and cookies match on #3, provided msgid 00000000 vs 00000000
Aug 17 09:14:37 mickey pluto[5162]: | state object #3 found, in STATE_MAIN_I3
Aug 17 09:14:37 mickey pluto[5162]: | ***parse ISAKMP Notification Payload:
Aug 17 09:14:37 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:14:37 mickey pluto[5162]: | length: 44
Aug 17 09:14:37 mickey pluto[5162]: | DOI: ISAKMP_DOI_IPSEC
Aug 17 09:14:37 mickey pluto[5162]: | protocol ID: 0
Aug 17 09:14:37 mickey pluto[5162]: | SPI size: 0
Aug 17 09:14:37 mickey pluto[5162]: | Notify Message Type: PAYLOAD_MALFORMED
Aug 17 09:14:37 mickey pluto[5162]: "tunnelipsec" #3: ignoring informational payload, type PAYLOAD_MALFORMED
Aug 17 09:14:37 mickey pluto[5162]: | info: 5b a4 c9 a0 87 38 13 f3 3d 87 71 f6 0c 6f 27 32
Aug 17 09:14:37 mickey pluto[5162]: | c5 f5 e3 4a 2e 25 9b 79 d4 72 96 54 87 b2 55 2c
Aug 17 09:14:37 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 9 seconds for #3
Aug 17 09:14:46 mickey pluto[5162]: |
Aug 17 09:14:46 mickey pluto[5162]: | *time to handle event
Aug 17 09:14:46 mickey pluto[5162]: | event after this is EVENT_REINIT_SECRET in 3414 seconds
Aug 17 09:14:46 mickey pluto[5162]: | handling event EVENT_RETRANSMIT for 194.73.118.113 "tunnelipsec" #3
Aug 17 09:14:46 mickey pluto[5162]: | sending 60 bytes for EVENT_RETRANSMIT through eth0 to 194.73.118.113:500:
Aug 17 09:14:46 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:46 mickey pluto[5162]: | 05 10 02 01 00 00 00 00 00 00 00 3c 61 6f 3c 9e
Aug 17 09:14:46 mickey pluto[5162]: | aa 6f 12 43 fb 1c 68 9d ee d8 a6 dd 28 5a 2c ad
Aug 17 09:14:46 mickey pluto[5162]: | 3f ea e7 b2 1c ef ec e2 cd fb 64 5c
Aug 17 09:14:46 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 20 seconds for #3
Aug 17 09:14:46 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 20 seconds for #3
Aug 17 09:14:46 mickey pluto[5162]: |
Aug 17 09:14:46 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:14:46 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:46 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:14:46 mickey pluto[5162]: | 6d 08 a1 2a 5e 1a 8a 7a 68 be c3 f9 eb 82 c9 13
Aug 17 09:14:46 mickey pluto[5162]: | fd d4 91 05 1a 29 59 6d a8 cb 38 bd f7 c6 71 69
Aug 17 09:14:46 mickey pluto[5162]: | b0 93 0d c9 13 89 27 fa 77 0b e7 7f ed 5b 0e a3
Aug 17 09:14:46 mickey pluto[5162]: | ea f4 44 18 97 c1 b2 55 ca 31 49 d2 95 c0 d1 91
Aug 17 09:14:46 mickey pluto[5162]: | 4e 51 ae 09 ce 3d 2e ad 4e 3a 44 da d0 95 ba 7f
Aug 17 09:14:46 mickey pluto[5162]: | 1c 58 8f 73 a3 15 ad f1 fd cf 0e b2 8f f1 7c fd
Aug 17 09:14:46 mickey pluto[5162]: | da 81 06 e7 b2 7c 5a df b1 ac 66 e1 5f 52 e1 6e
Aug 17 09:14:46 mickey pluto[5162]: | cc 6b 67 3b d1 68 a6 58 0a 7c bb 49 e8 55 54 ab
Aug 17 09:14:46 mickey pluto[5162]: | 0d 00 00 18 96 4a b5 21 bc 01 4b c9 67 76 29 46
Aug 17 09:14:46 mickey pluto[5162]: | a3 21 a3 65 27 b0 51 99 0d 00 00 14 12 f5 f2 8c
Aug 17 09:14:46 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:14:46 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 f0 f5 05 f8
Aug 17 09:14:46 mickey pluto[5162]: | fa 4f f5 c7 e7 cf a8 60 54 3f f0 3a 00 00 00 14
Aug 17 09:14:46 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:14:46 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:14:47 mickey pluto[5162]: | initiator cookie:
Aug 17 09:14:47 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:47 mickey pluto[5162]: | responder cookie:
Aug 17 09:14:47 mickey pluto[5162]: | 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:47 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:14:47 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:14:47 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:14:47 mickey pluto[5162]: | flags: none
Aug 17 09:14:47 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:14:47 mickey pluto[5162]: | length: 256
Aug 17 09:14:47 mickey pluto[5162]: | ICOOKIE: 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:47 mickey pluto[5162]: | RCOOKIE: 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:47 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:14:47 mickey pluto[5162]: | state hash entry 5
Aug 17 09:14:47 mickey pluto[5162]: | peer and cookies match on #3, provided msgid 00000000 vs 00000000
Aug 17 09:14:47 mickey pluto[5162]: | state object #3 found, in STATE_MAIN_I3
Aug 17 09:14:47 mickey pluto[5162]: "tunnelipsec" #3: discarding duplicate packet; already STATE_MAIN_I3
Aug 17 09:14:47 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 19 seconds for #3
Aug 17 09:14:54 mickey pluto[5162]: |
Aug 17 09:14:54 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:14:54 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:54 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:14:54 mickey pluto[5162]: | 6d 08 a1 2a 5e 1a 8a 7a 68 be c3 f9 eb 82 c9 13
Aug 17 09:14:54 mickey pluto[5162]: | fd d4 91 05 1a 29 59 6d a8 cb 38 bd f7 c6 71 69
Aug 17 09:14:54 mickey pluto[5162]: | b0 93 0d c9 13 89 27 fa 77 0b e7 7f ed 5b 0e a3
Aug 17 09:14:54 mickey pluto[5162]: | ea f4 44 18 97 c1 b2 55 ca 31 49 d2 95 c0 d1 91
Aug 17 09:14:54 mickey pluto[5162]: | 4e 51 ae 09 ce 3d 2e ad 4e 3a 44 da d0 95 ba 7f
Aug 17 09:14:54 mickey pluto[5162]: | 1c 58 8f 73 a3 15 ad f1 fd cf 0e b2 8f f1 7c fd
Aug 17 09:14:54 mickey pluto[5162]: | da 81 06 e7 b2 7c 5a df b1 ac 66 e1 5f 52 e1 6e
Aug 17 09:14:54 mickey pluto[5162]: | cc 6b 67 3b d1 68 a6 58 0a 7c bb 49 e8 55 54 ab
Aug 17 09:14:54 mickey pluto[5162]: | 0d 00 00 18 96 4a b5 21 bc 01 4b c9 67 76 29 46
Aug 17 09:14:54 mickey pluto[5162]: | a3 21 a3 65 27 b0 51 99 0d 00 00 14 12 f5 f2 8c
Aug 17 09:14:54 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:14:54 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 f0 f5 05 f8
Aug 17 09:14:54 mickey pluto[5162]: | fa 4f f5 c7 e7 cf a8 60 54 3f f0 3a 00 00 00 14
Aug 17 09:14:54 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:14:54 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:14:54 mickey pluto[5162]: | initiator cookie:
Aug 17 09:14:54 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:54 mickey pluto[5162]: | responder cookie:
Aug 17 09:14:54 mickey pluto[5162]: | 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:54 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:14:54 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:14:54 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:14:54 mickey pluto[5162]: | flags: none
Aug 17 09:14:54 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:14:54 mickey pluto[5162]: | length: 256
Aug 17 09:14:55 mickey pluto[5162]: | ICOOKIE: 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:14:55 mickey pluto[5162]: | RCOOKIE: 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:14:55 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:14:55 mickey pluto[5162]: | state hash entry 5
Aug 17 09:14:55 mickey pluto[5162]: | peer and cookies match on #3, provided msgid 00000000 vs 00000000
Aug 17 09:14:55 mickey pluto[5162]: | state object #3 found, in STATE_MAIN_I3
Aug 17 09:14:55 mickey pluto[5162]: "tunnelipsec" #3: discarding duplicate packet; already STATE_MAIN_I3
Aug 17 09:14:55 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 11 seconds for #3
Aug 17 09:15:02 mickey pluto[5162]: |
Aug 17 09:15:02 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:15:02 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:15:02 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:15:02 mickey pluto[5162]: | 6d 08 a1 2a 5e 1a 8a 7a 68 be c3 f9 eb 82 c9 13
Aug 17 09:15:02 mickey pluto[5162]: | fd d4 91 05 1a 29 59 6d a8 cb 38 bd f7 c6 71 69
Aug 17 09:15:02 mickey pluto[5162]: | b0 93 0d c9 13 89 27 fa 77 0b e7 7f ed 5b 0e a3
Aug 17 09:15:02 mickey pluto[5162]: | ea f4 44 18 97 c1 b2 55 ca 31 49 d2 95 c0 d1 91
Aug 17 09:15:02 mickey pluto[5162]: | 4e 51 ae 09 ce 3d 2e ad 4e 3a 44 da d0 95 ba 7f
Aug 17 09:15:02 mickey pluto[5162]: | 1c 58 8f 73 a3 15 ad f1 fd cf 0e b2 8f f1 7c fd
Aug 17 09:15:02 mickey pluto[5162]: | da 81 06 e7 b2 7c 5a df b1 ac 66 e1 5f 52 e1 6e
Aug 17 09:15:02 mickey pluto[5162]: | cc 6b 67 3b d1 68 a6 58 0a 7c bb 49 e8 55 54 ab
Aug 17 09:15:02 mickey pluto[5162]: | 0d 00 00 18 96 4a b5 21 bc 01 4b c9 67 76 29 46
Aug 17 09:15:02 mickey pluto[5162]: | a3 21 a3 65 27 b0 51 99 0d 00 00 14 12 f5 f2 8c
Aug 17 09:15:02 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:15:02 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 f0 f5 05 f8
Aug 17 09:15:02 mickey pluto[5162]: | fa 4f f5 c7 e7 cf a8 60 54 3f f0 3a 00 00 00 14
Aug 17 09:15:02 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:15:02 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:15:02 mickey pluto[5162]: | initiator cookie:
Aug 17 09:15:02 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:15:03 mickey pluto[5162]: | responder cookie:
Aug 17 09:15:03 mickey pluto[5162]: | 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:15:03 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:15:03 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:15:03 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:15:03 mickey pluto[5162]: | flags: none
Aug 17 09:15:03 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:15:03 mickey pluto[5162]: | length: 256
Aug 17 09:15:03 mickey pluto[5162]: | ICOOKIE: 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:15:03 mickey pluto[5162]: | RCOOKIE: 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:15:03 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:15:03 mickey pluto[5162]: | state hash entry 5
Aug 17 09:15:03 mickey pluto[5162]: | peer and cookies match on #3, provided msgid 00000000 vs 00000000
Aug 17 09:15:03 mickey pluto[5162]: | state object #3 found, in STATE_MAIN_I3
Aug 17 09:15:03 mickey pluto[5162]: "tunnelipsec" #3: discarding duplicate packet; already STATE_MAIN_I3
Aug 17 09:15:03 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 3 seconds for #3
Aug 17 09:15:06 mickey pluto[5162]: |
Aug 17 09:15:06 mickey pluto[5162]: | *time to handle event
Aug 17 09:15:06 mickey pluto[5162]: | event after this is EVENT_REINIT_SECRET in 3394 seconds
Aug 17 09:15:06 mickey pluto[5162]: | handling event EVENT_RETRANSMIT for 194.73.118.113 "tunnelipsec" #3
Aug 17 09:15:06 mickey pluto[5162]: | sending 60 bytes for EVENT_RETRANSMIT through eth0 to 194.73.118.113:500:
Aug 17 09:15:06 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:15:06 mickey pluto[5162]: | 05 10 02 01 00 00 00 00 00 00 00 3c 61 6f 3c 9e
Aug 17 09:15:06 mickey pluto[5162]: | aa 6f 12 43 fb 1c 68 9d ee d8 a6 dd 28 5a 2c ad
Aug 17 09:15:06 mickey pluto[5162]: | 3f ea e7 b2 1c ef ec e2 cd fb 64 5c
Aug 17 09:15:06 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 40 seconds for #3
Aug 17 09:15:06 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 40 seconds for #3
Aug 17 09:15:06 mickey pluto[5162]: |
Aug 17 09:15:06 mickey pluto[5162]: | *received 76 bytes from 194.73.118.113:500 on eth0
Aug 17 09:15:06 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:15:06 mickey pluto[5162]: | 08 10 05 01 73 d3 a3 da 00 00 00 4c e9 0d a5 ad
Aug 17 09:15:06 mickey pluto[5162]: | 57 db 7c 60 0e e1 e2 f8 f3 de 13 09 3a 05 8d 16
Aug 17 09:15:06 mickey pluto[5162]: | 09 eb f1 c3 96 58 93 31 e9 03 28 eb 86 90 1c 1e
Aug 17 09:15:06 mickey pluto[5162]: | fe 09 1e 6e 5d c3 70 26 f7 93 78 7b
Aug 17 09:15:07 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:15:07 mickey pluto[5162]: | initiator cookie:
Aug 17 09:15:07 mickey pluto[5162]: | 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:15:07 mickey pluto[5162]: | responder cookie:
Aug 17 09:15:07 mickey pluto[5162]: | 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:15:07 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_HASH
Aug 17 09:15:07 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:15:07 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_INFO
Aug 17 09:15:07 mickey pluto[5162]: | flags: ISAKMP_FLAG_ENCRYPTION
Aug 17 09:15:07 mickey pluto[5162]: | message ID: 73 d3 a3 da
Aug 17 09:15:07 mickey pluto[5162]: | length: 76
Aug 17 09:15:07 mickey pluto[5162]: | ICOOKIE: 04 d7 ce 64 15 f1 b8 c0
Aug 17 09:15:07 mickey pluto[5162]: | RCOOKIE: 05 32 a2 e5 fa 4e f5 c7
Aug 17 09:15:07 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:15:07 mickey pluto[5162]: | state hash entry 5
Aug 17 09:15:07 mickey pluto[5162]: | peer and cookies match on #3, provided msgid 00000000 vs 00000000
Aug 17 09:15:07 mickey pluto[5162]: | state object #3 found, in STATE_MAIN_I3
Aug 17 09:15:07 mickey pluto[5162]: "tunnelipsec" #3: encrypted Informational Exchange message is invalid because it is for incomplete ISAKMP SA
Aug 17 09:15:07 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 39 seconds for #3
Aug 17 09:15:46 mickey pluto[5162]: |
Aug 17 09:15:46 mickey pluto[5162]: | *time to handle event
Aug 17 09:15:46 mickey pluto[5162]: | event after this is EVENT_REINIT_SECRET in 3354 seconds
Aug 17 09:15:46 mickey pluto[5162]: | handling event EVENT_RETRANSMIT for 194.73.118.113 "tunnelipsec" #3
Aug 17 09:15:46 mickey pluto[5162]: "tunnelipsec" #3: max number of retransmissions (2) reached STATE_MAIN_I3. Possible authentication failure: no acceptable response to our first encrypted message
Aug 17 09:15:46 mickey pluto[5162]: "tunnelipsec" #3: starting keying attempt 4 of an unlimited number
Aug 17 09:15:46 mickey pluto[5162]: | creating state object #4 at 0x80c54e0
Aug 17 09:15:46 mickey pluto[5162]: | ICOOKIE: de 0d bf 05 e1 67 54 74
Aug 17 09:15:46 mickey pluto[5162]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 17 09:15:46 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:15:46 mickey pluto[5162]: | state hash entry 5
Aug 17 09:15:46 mickey pluto[5162]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #4
Aug 17 09:15:46 mickey pluto[5162]: "tunnelipsec" #4: initiating Main Mode to replace #3
Aug 17 09:15:46 mickey pluto[5162]: | **emit ISAKMP Message:
Aug 17 09:15:46 mickey pluto[5162]: | initiator cookie:
Aug 17 09:15:46 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74
Aug 17 09:15:46 mickey pluto[5162]: | responder cookie:
Aug 17 09:15:46 mickey pluto[5162]: | 00 00 00 00 00 00 00 00
Aug 17 09:15:46 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_SA
Aug 17 09:15:46 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:15:46 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:15:46 mickey pluto[5162]: | flags: none
Aug 17 09:15:46 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:15:46 mickey pluto[5162]: | ***emit ISAKMP Security Association Payload:
Aug 17 09:15:46 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:15:46 mickey pluto[5162]: | DOI: ISAKMP_DOI_IPSEC
Aug 17 09:15:46 mickey pluto[5162]: | ****emit IPsec DOI SIT:
Aug 17 09:15:46 mickey pluto[5162]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
Aug 17 09:15:46 mickey pluto[5162]: | ****emit ISAKMP Proposal Payload:
Aug 17 09:15:46 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:15:46 mickey pluto[5162]: | proposal number: 0
Aug 17 09:15:46 mickey pluto[5162]: | protocol ID: PROTO_ISAKMP
Aug 17 09:15:47 mickey pluto[5162]: | SPI size: 0
Aug 17 09:15:47 mickey pluto[5162]: | number of transforms: 4
Aug 17 09:15:47 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:15:47 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_T
Aug 17 09:15:47 mickey pluto[5162]: | transform number: 0
Aug 17 09:15:47 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:15:47 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:47 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:15:47 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:47 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:15:47 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:47 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:15:47 mickey pluto[5162]: | length/value: 3600
Aug 17 09:15:47 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:47 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:15:47 mickey pluto[5162]: | length/value: 5
Aug 17 09:15:47 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:15:47 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:47 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:15:47 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:47 mickey pluto[5162]: | [1 is OAKLEY_MD5]
Aug 17 09:15:47 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:47 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:15:47 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:47 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:15:47 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:47 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:15:47 mickey pluto[5162]: | length/value: 5
Aug 17 09:15:47 mickey pluto[5162]: | [5 is OAKLEY_GROUP_MODP1536 (extension)]
Aug 17 09:15:47 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:15:47 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:15:47 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_T
Aug 17 09:15:47 mickey pluto[5162]: | transform number: 1
Aug 17 09:15:47 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:15:47 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:47 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:15:47 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:47 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:15:47 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:47 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:15:48 mickey pluto[5162]: | length/value: 3600
Aug 17 09:15:48 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:48 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:15:48 mickey pluto[5162]: | length/value: 5
Aug 17 09:15:48 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:15:48 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:48 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:15:48 mickey pluto[5162]: | length/value: 2
Aug 17 09:15:48 mickey pluto[5162]: | [2 is OAKLEY_SHA]
Aug 17 09:15:48 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:48 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:15:48 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:48 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:15:48 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:48 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:15:48 mickey pluto[5162]: | length/value: 5
Aug 17 09:15:48 mickey pluto[5162]: | [5 is OAKLEY_GROUP_MODP1536 (extension)]
Aug 17 09:15:48 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:15:48 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:15:48 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_T
Aug 17 09:15:48 mickey pluto[5162]: | transform number: 2
Aug 17 09:15:48 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:15:48 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:48 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:15:48 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:48 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:15:48 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:48 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:15:48 mickey pluto[5162]: | length/value: 3600
Aug 17 09:15:48 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:48 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:15:48 mickey pluto[5162]: | length/value: 5
Aug 17 09:15:48 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:15:48 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:48 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:15:48 mickey pluto[5162]: | length/value: 2
Aug 17 09:15:48 mickey pluto[5162]: | [2 is OAKLEY_SHA]
Aug 17 09:15:49 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:49 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:15:49 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:49 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:15:49 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:49 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:15:49 mickey pluto[5162]: | length/value: 2
Aug 17 09:15:49 mickey pluto[5162]: | [2 is OAKLEY_GROUP_MODP1024]
Aug 17 09:15:49 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:15:49 mickey pluto[5162]: | *****emit ISAKMP Transform Payload (ISAKMP):
Aug 17 09:15:49 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:15:49 mickey pluto[5162]: | transform number: 3
Aug 17 09:15:49 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:15:49 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:49 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:15:49 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:49 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:15:49 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:49 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:15:49 mickey pluto[5162]: | length/value: 3600
Aug 17 09:15:49 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:49 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:15:49 mickey pluto[5162]: | length/value: 5
Aug 17 09:15:49 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:15:49 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:49 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:15:49 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:49 mickey pluto[5162]: | [1 is OAKLEY_MD5]
Aug 17 09:15:49 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:49 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:15:49 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:49 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:15:49 mickey pluto[5162]: | ******emit ISAKMP Oakley attribute:
Aug 17 09:15:49 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:15:49 mickey pluto[5162]: | length/value: 2
Aug 17 09:15:49 mickey pluto[5162]: | [2 is OAKLEY_GROUP_MODP1024]
Aug 17 09:15:49 mickey pluto[5162]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32
Aug 17 09:15:49 mickey pluto[5162]: | emitting length of ISAKMP Proposal Payload: 136
Aug 17 09:15:49 mickey pluto[5162]: | emitting length of ISAKMP Security Association Payload: 148
Aug 17 09:15:49 mickey pluto[5162]: | emitting length of ISAKMP Message: 176
Aug 17 09:15:49 mickey pluto[5162]: | sending 176 bytes for main_outI1 through eth0 to 194.73.118.113:500:
Aug 17 09:15:50 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74 00 00 00 00 00 00 00 00
Aug 17 09:15:50 mickey pluto[5162]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94
Aug 17 09:15:50 mickey pluto[5162]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04
Aug 17 09:15:50 mickey pluto[5162]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:15:50 mickey pluto[5162]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05
Aug 17 09:15:50 mickey pluto[5162]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:15:50 mickey pluto[5162]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05
Aug 17 09:15:50 mickey pluto[5162]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:15:50 mickey pluto[5162]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02
Aug 17 09:15:50 mickey pluto[5162]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10
Aug 17 09:15:50 mickey pluto[5162]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02
Aug 17 09:15:50 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #4
Aug 17 09:15:50 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 10 seconds for #4
Aug 17 09:15:50 mickey pluto[5162]: |
Aug 17 09:15:50 mickey pluto[5162]: | *received 104 bytes from 194.73.118.113:500 on eth0
Aug 17 09:15:50 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74 fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:50 mickey pluto[5162]: | 01 10 02 00 00 00 00 00 00 00 00 68 0d 00 00 34
Aug 17 09:15:50 mickey pluto[5162]: | 00 00 00 01 00 00 00 01 00 00 00 28 01 01 00 01
Aug 17 09:15:50 mickey pluto[5162]: | 00 00 00 20 03 01 00 00 80 01 00 05 80 02 00 01
Aug 17 09:15:50 mickey pluto[5162]: | 80 04 00 02 80 03 00 01 80 0b 00 01 80 0c 0e 10
Aug 17 09:15:50 mickey pluto[5162]: | 00 00 00 18 40 48 b7 d5 6e bc e8 85 25 e7 de 7f
Aug 17 09:15:50 mickey pluto[5162]: | 00 d6 c2 d3 c0 00 00 00
Aug 17 09:15:50 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:15:50 mickey pluto[5162]: | initiator cookie:
Aug 17 09:15:50 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74
Aug 17 09:15:50 mickey pluto[5162]: | responder cookie:
Aug 17 09:15:50 mickey pluto[5162]: | fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:50 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_SA
Aug 17 09:15:50 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:15:50 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:15:50 mickey pluto[5162]: | flags: none
Aug 17 09:15:50 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:15:50 mickey pluto[5162]: | length: 104
Aug 17 09:15:50 mickey pluto[5162]: | ICOOKIE: de 0d bf 05 e1 67 54 74
Aug 17 09:15:50 mickey pluto[5162]: | RCOOKIE: fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:50 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:15:50 mickey pluto[5162]: | state hash entry 6
Aug 17 09:15:50 mickey pluto[5162]: | state object not found
Aug 17 09:15:50 mickey pluto[5162]: | ICOOKIE: de 0d bf 05 e1 67 54 74
Aug 17 09:15:51 mickey pluto[5162]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 17 09:15:51 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:15:51 mickey pluto[5162]: | state hash entry 5
Aug 17 09:15:51 mickey pluto[5162]: | peer and cookies match on #4, provided msgid 00000000 vs 00000000
Aug 17 09:15:51 mickey pluto[5162]: | state object #4 found, in STATE_MAIN_I1
Aug 17 09:15:51 mickey pluto[5162]: | ***parse ISAKMP Security Association Payload:
Aug 17 09:15:51 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:15:51 mickey pluto[5162]: | length: 52
Aug 17 09:15:51 mickey pluto[5162]: | DOI: ISAKMP_DOI_IPSEC
Aug 17 09:15:51 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:15:51 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:15:51 mickey pluto[5162]: | length: 24
Aug 17 09:15:51 mickey pluto[5162]: "tunnelipsec" #4: ignoring Vendor ID payload [4048b7d56ebce885...]
Aug 17 09:15:51 mickey pluto[5162]: | ****parse IPsec DOI SIT:
Aug 17 09:15:51 mickey pluto[5162]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
Aug 17 09:15:51 mickey pluto[5162]: | ****parse ISAKMP Proposal Payload:
Aug 17 09:15:51 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:15:51 mickey pluto[5162]: | length: 40
Aug 17 09:15:51 mickey pluto[5162]: | proposal number: 1
Aug 17 09:15:51 mickey pluto[5162]: | protocol ID: PROTO_ISAKMP
Aug 17 09:15:51 mickey pluto[5162]: | SPI size: 0
Aug 17 09:15:51 mickey pluto[5162]: | number of transforms: 1
Aug 17 09:15:51 mickey pluto[5162]: | *****parse ISAKMP Transform Payload (ISAKMP):
Aug 17 09:15:51 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:15:51 mickey pluto[5162]: | length: 32
Aug 17 09:15:51 mickey pluto[5162]: | transform number: 3
Aug 17 09:15:51 mickey pluto[5162]: | transform ID: KEY_IKE
Aug 17 09:15:51 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:15:51 mickey pluto[5162]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
Aug 17 09:15:51 mickey pluto[5162]: | length/value: 5
Aug 17 09:15:51 mickey pluto[5162]: | [5 is OAKLEY_3DES_CBC]
Aug 17 09:15:51 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:15:51 mickey pluto[5162]: | af+type: OAKLEY_HASH_ALGORITHM
Aug 17 09:15:51 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:51 mickey pluto[5162]: | [1 is OAKLEY_MD5]
Aug 17 09:15:52 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:15:52 mickey pluto[5162]: | af+type: OAKLEY_GROUP_DESCRIPTION
Aug 17 09:15:52 mickey pluto[5162]: | length/value: 2
Aug 17 09:15:52 mickey pluto[5162]: | [2 is OAKLEY_GROUP_MODP1024]
Aug 17 09:15:52 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:15:52 mickey pluto[5162]: | af+type: OAKLEY_AUTHENTICATION_METHOD
Aug 17 09:15:52 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:52 mickey pluto[5162]: | [1 is OAKLEY_PRESHARED_KEY]
Aug 17 09:15:52 mickey pluto[5162]: | looking for secret for 62.189.139.36->194.73.118.113 of kind PPK_PSK
Aug 17 09:15:52 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:15:52 mickey pluto[5162]: | af+type: OAKLEY_LIFE_TYPE
Aug 17 09:15:52 mickey pluto[5162]: | length/value: 1
Aug 17 09:15:52 mickey pluto[5162]: | [1 is OAKLEY_LIFE_SECONDS]
Aug 17 09:15:52 mickey pluto[5162]: | ******parse ISAKMP Oakley attribute:
Aug 17 09:15:52 mickey pluto[5162]: | af+type: OAKLEY_LIFE_DURATION
Aug 17 09:15:52 mickey pluto[5162]: | length/value: 3600
Aug 17 09:15:52 mickey pluto[5162]: | Oakley Transform 3 accepted
Aug 17 09:15:52 mickey pluto[5162]: | sender checking NAT-t: 0 and 0
Aug 17 09:15:52 mickey pluto[5162]: | **emit ISAKMP Message:
Aug 17 09:15:52 mickey pluto[5162]: | initiator cookie:
Aug 17 09:15:52 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74
Aug 17 09:15:52 mickey pluto[5162]: | responder cookie:
Aug 17 09:15:52 mickey pluto[5162]: | fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:52 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:15:52 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:15:52 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:15:52 mickey pluto[5162]: | flags: none
Aug 17 09:15:52 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:15:52 mickey pluto[5162]: | Local DH secret:
Aug 17 09:15:52 mickey pluto[5162]: | a6 11 a8 41 10 09 4d a1 9e cc 23 5c b8 40 51 b6
Aug 17 09:15:52 mickey pluto[5162]: | b9 9e a8 8d 00 87 59 a9 6b 55 c1 64 72 a8 3d 51
Aug 17 09:15:52 mickey pluto[5162]: | Public DH value sent:
Aug 17 09:15:52 mickey pluto[5162]: | 35 30 e5 bf 51 d1 3c 18 ea 5f 88 5d 45 fa fd 03
Aug 17 09:15:52 mickey pluto[5162]: | 42 29 eb d9 a5 5d 99 dc 53 5e 0d 73 f4 97 62 9a
Aug 17 09:15:52 mickey pluto[5162]: | 12 a9 61 6c 33 b8 8d a1 8e e6 ca fe 49 f5 cf af
Aug 17 09:15:52 mickey pluto[5162]: | 72 0a df 40 f2 76 3f bc 0a aa 5d 0b 02 f3 48 9a
Aug 17 09:15:52 mickey pluto[5162]: | ea 45 46 10 c7 40 d3 b6 54 12 5f bd 11 c6 9f 1f
Aug 17 09:15:52 mickey pluto[5162]: | ab cf 03 df 6d dd 77 a4 67 e0 ea 6d 0f b6 b3 91
Aug 17 09:15:52 mickey pluto[5162]: | 72 3b 0e c4 36 d8 0b 52 26 40 2e 36 9d 3c d7 86
Aug 17 09:15:52 mickey pluto[5162]: | 9a 2c 12 ce 96 c4 24 25 48 23 20 1b bb e2 1b d8
Aug 17 09:15:52 mickey pluto[5162]: | ***emit ISAKMP Key Exchange Payload:
Aug 17 09:15:53 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONCE
Aug 17 09:15:53 mickey pluto[5162]: | emitting 128 raw bytes of keyex value into ISAKMP Key Exchange Payload
Aug 17 09:15:53 mickey pluto[5162]: | keyex value 35 30 e5 bf 51 d1 3c 18 ea 5f 88 5d 45 fa fd 03
Aug 17 09:15:53 mickey pluto[5162]: | 42 29 eb d9 a5 5d 99 dc 53 5e 0d 73 f4 97 62 9a
Aug 17 09:15:53 mickey pluto[5162]: | 12 a9 61 6c 33 b8 8d a1 8e e6 ca fe 49 f5 cf af
Aug 17 09:15:53 mickey pluto[5162]: | 72 0a df 40 f2 76 3f bc 0a aa 5d 0b 02 f3 48 9a
Aug 17 09:15:53 mickey pluto[5162]: | ea 45 46 10 c7 40 d3 b6 54 12 5f bd 11 c6 9f 1f
Aug 17 09:15:53 mickey pluto[5162]: | ab cf 03 df 6d dd 77 a4 67 e0 ea 6d 0f b6 b3 91
Aug 17 09:15:53 mickey pluto[5162]: | 72 3b 0e c4 36 d8 0b 52 26 40 2e 36 9d 3c d7 86
Aug 17 09:15:53 mickey pluto[5162]: | 9a 2c 12 ce 96 c4 24 25 48 23 20 1b bb e2 1b d8
Aug 17 09:15:53 mickey pluto[5162]: | emitting length of ISAKMP Key Exchange Payload: 132
Aug 17 09:15:53 mickey pluto[5162]: | ***emit ISAKMP Nonce Payload:
Aug 17 09:15:53 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:15:53 mickey pluto[5162]: | emitting 16 raw bytes of Ni into ISAKMP Nonce Payload
Aug 17 09:15:53 mickey pluto[5162]: | Ni 1f 44 c4 b3 d0 83 c5 30 d1 bc 3c ca 33 7e 0c 75
Aug 17 09:15:53 mickey pluto[5162]: | emitting length of ISAKMP Nonce Payload: 20
Aug 17 09:15:53 mickey pluto[5162]: | emitting length of ISAKMP Message: 180
Aug 17 09:15:53 mickey pluto[5162]: | ICOOKIE: de 0d bf 05 e1 67 54 74
Aug 17 09:15:53 mickey pluto[5162]: | RCOOKIE: 00 00 00 00 00 00 00 00
Aug 17 09:15:53 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:15:53 mickey pluto[5162]: | state hash entry 5
Aug 17 09:15:53 mickey pluto[5162]: | ICOOKIE: de 0d bf 05 e1 67 54 74
Aug 17 09:15:53 mickey pluto[5162]: | RCOOKIE: fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:53 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:15:53 mickey pluto[5162]: | state hash entry 6
Aug 17 09:15:53 mickey pluto[5162]: "tunnelipsec" #4: transition from state STATE_MAIN_I1 to state STATE_MAIN_I2
Aug 17 09:15:53 mickey pluto[5162]: | sending 180 bytes for STATE_MAIN_I1 through eth0 to 194.73.118.113:500:
Aug 17 09:15:53 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74 fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:53 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 00 b4 0a 00 00 84
Aug 17 09:15:53 mickey pluto[5162]: | 35 30 e5 bf 51 d1 3c 18 ea 5f 88 5d 45 fa fd 03
Aug 17 09:15:53 mickey pluto[5162]: | 42 29 eb d9 a5 5d 99 dc 53 5e 0d 73 f4 97 62 9a
Aug 17 09:15:53 mickey pluto[5162]: | 12 a9 61 6c 33 b8 8d a1 8e e6 ca fe 49 f5 cf af
Aug 17 09:15:53 mickey pluto[5162]: | 72 0a df 40 f2 76 3f bc 0a aa 5d 0b 02 f3 48 9a
Aug 17 09:15:53 mickey pluto[5162]: | ea 45 46 10 c7 40 d3 b6 54 12 5f bd 11 c6 9f 1f
Aug 17 09:15:53 mickey pluto[5162]: | ab cf 03 df 6d dd 77 a4 67 e0 ea 6d 0f b6 b3 91
Aug 17 09:15:53 mickey pluto[5162]: | 72 3b 0e c4 36 d8 0b 52 26 40 2e 36 9d 3c d7 86
Aug 17 09:15:53 mickey pluto[5162]: | 9a 2c 12 ce 96 c4 24 25 48 23 20 1b bb e2 1b d8
Aug 17 09:15:53 mickey pluto[5162]: | 00 00 00 14 1f 44 c4 b3 d0 83 c5 30 d1 bc 3c ca
Aug 17 09:15:53 mickey pluto[5162]: | 33 7e 0c 75
Aug 17 09:15:53 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #4
Aug 17 09:15:53 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 10 seconds for #4
Aug 17 09:15:54 mickey pluto[5162]: |
Aug 17 09:15:54 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:15:54 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74 fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:54 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:15:54 mickey pluto[5162]: | c5 6e 9f 7b 31 88 f6 45 f6 aa 6d fc 2e 8f 27 9f
Aug 17 09:15:54 mickey pluto[5162]: | 54 b2 a8 0d 75 35 7a 7c ac 99 b9 90 29 d2 da 9a
Aug 17 09:15:54 mickey pluto[5162]: | e8 d7 f1 1e 71 3e 63 62 74 05 82 2d c7 cf c7 46
Aug 17 09:15:54 mickey pluto[5162]: | a9 20 8d 29 94 05 61 d9 c7 8f f0 82 eb f8 12 55
Aug 17 09:15:54 mickey pluto[5162]: | 73 8e 98 ac d7 98 9d 75 bf 8c 66 c1 01 59 c5 01
Aug 17 09:15:54 mickey pluto[5162]: | a6 41 aa 3b 21 30 5f b7 ff 5c f2 7f ef 23 0f e6
Aug 17 09:15:54 mickey pluto[5162]: | 11 b6 61 31 c7 ad a1 6b cd 0c 44 fa ee 75 01 19
Aug 17 09:15:54 mickey pluto[5162]: | 0e 16 12 d3 b6 cc c2 88 d3 d5 a1 cd dc a0 24 a3
Aug 17 09:15:54 mickey pluto[5162]: | 0d 00 00 18 9f b0 bc b9 ba 3c ed 13 34 89 2f 95
Aug 17 09:15:54 mickey pluto[5162]: | 02 dc bd 44 53 e7 60 ad 0d 00 00 14 12 f5 f2 8c
Aug 17 09:15:54 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:15:54 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 0f 92 c3 c5
Aug 17 09:15:54 mickey pluto[5162]: | 57 cb 24 3b 3f a5 b1 1a 3e 8e d3 82 00 00 00 14
Aug 17 09:15:54 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:15:54 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:15:54 mickey pluto[5162]: | initiator cookie:
Aug 17 09:15:54 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74
Aug 17 09:15:54 mickey pluto[5162]: | responder cookie:
Aug 17 09:15:54 mickey pluto[5162]: | fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:54 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:15:54 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:15:54 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:15:54 mickey pluto[5162]: | flags: none
Aug 17 09:15:54 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:15:54 mickey pluto[5162]: | length: 256
Aug 17 09:15:54 mickey pluto[5162]: | ICOOKIE: de 0d bf 05 e1 67 54 74
Aug 17 09:15:54 mickey pluto[5162]: | RCOOKIE: fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:54 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:15:54 mickey pluto[5162]: | state hash entry 6
Aug 17 09:15:54 mickey pluto[5162]: | peer and cookies match on #4, provided msgid 00000000 vs 00000000
Aug 17 09:15:54 mickey pluto[5162]: | state object #4 found, in STATE_MAIN_I2
Aug 17 09:15:54 mickey pluto[5162]: | ***parse ISAKMP Key Exchange Payload:
Aug 17 09:15:54 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONCE
Aug 17 09:15:54 mickey pluto[5162]: | length: 132
Aug 17 09:15:55 mickey pluto[5162]: | ***parse ISAKMP Nonce Payload:
Aug 17 09:15:55 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:15:55 mickey pluto[5162]: | length: 24
Aug 17 09:15:55 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:15:55 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:15:55 mickey pluto[5162]: | length: 20
Aug 17 09:15:55 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:15:55 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:15:55 mickey pluto[5162]: | length: 12
Aug 17 09:15:55 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:15:55 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_VID
Aug 17 09:15:55 mickey pluto[5162]: | length: 20
Aug 17 09:15:55 mickey pluto[5162]: | ***parse ISAKMP Vendor ID Payload:
Aug 17 09:15:55 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:15:55 mickey pluto[5162]: | length: 20
Aug 17 09:15:55 mickey pluto[5162]: "tunnelipsec" #4: ignoring Vendor ID payload [Cisco-Unity]
Aug 17 09:15:55 mickey pluto[5162]: "tunnelipsec" #4: received Vendor ID payload [XAUTH]
Aug 17 09:15:55 mickey pluto[5162]: "tunnelipsec" #4: ignoring Vendor ID payload [0f92c3c557cb243b...]
Aug 17 09:15:55 mickey pluto[5162]: "tunnelipsec" #4: ignoring Vendor ID payload [1f07f70eaa6514d3...]
Aug 17 09:15:55 mickey pluto[5162]: | **emit ISAKMP Message:
Aug 17 09:15:55 mickey pluto[5162]: | initiator cookie:
Aug 17 09:15:55 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74
Aug 17 09:15:55 mickey pluto[5162]: | responder cookie:
Aug 17 09:15:55 mickey pluto[5162]: | fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:55 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_ID
Aug 17 09:15:55 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:15:55 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:15:55 mickey pluto[5162]: | flags: ISAKMP_FLAG_ENCRYPTION
Aug 17 09:15:55 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:15:55 mickey pluto[5162]: | DH public value received:
Aug 17 09:15:55 mickey pluto[5162]: | c5 6e 9f 7b 31 88 f6 45 f6 aa 6d fc 2e 8f 27 9f
Aug 17 09:15:55 mickey pluto[5162]: | 54 b2 a8 0d 75 35 7a 7c ac 99 b9 90 29 d2 da 9a
Aug 17 09:15:55 mickey pluto[5162]: | e8 d7 f1 1e 71 3e 63 62 74 05 82 2d c7 cf c7 46
Aug 17 09:15:55 mickey pluto[5162]: | a9 20 8d 29 94 05 61 d9 c7 8f f0 82 eb f8 12 55
Aug 17 09:15:55 mickey pluto[5162]: | 73 8e 98 ac d7 98 9d 75 bf 8c 66 c1 01 59 c5 01
Aug 17 09:15:55 mickey pluto[5162]: | a6 41 aa 3b 21 30 5f b7 ff 5c f2 7f ef 23 0f e6
Aug 17 09:15:55 mickey pluto[5162]: | 11 b6 61 31 c7 ad a1 6b cd 0c 44 fa ee 75 01 19
Aug 17 09:15:55 mickey pluto[5162]: | 0e 16 12 d3 b6 cc c2 88 d3 d5 a1 cd dc a0 24 a3
Aug 17 09:15:55 mickey pluto[5162]: | thinking about whether to send my certificate:
Aug 17 09:15:55 mickey pluto[5162]: | I have RSA key: OAKLEY_PRESHARED_KEY cert.type: CERT_NONE sendcert: CERT_SENDIFASKED
Aug 17 09:15:55 mickey pluto[5162]: | and I did not get a certificate request, so do not send cert.
Aug 17 09:15:55 mickey pluto[5162]: | I am not sending a certificate request
Aug 17 09:15:56 mickey pluto[5162]: | DH shared secret:
Aug 17 09:15:56 mickey pluto[5162]: | 0e b4 81 f8 e5 34 c3 57 69 59 f0 73 66 64 5f 65
Aug 17 09:15:56 mickey pluto[5162]: | 55 d3 66 c3 88 9c ce df fa 97 fb 45 83 d5 de 29
Aug 17 09:15:56 mickey pluto[5162]: | 0c 1f 3d 24 2a 33 f6 c7 7f 14 00 5e b3 e9 82 36
Aug 17 09:15:56 mickey pluto[5162]: | 7e 7f 30 69 81 33 26 d5 56 93 11 04 27 d2 f4 5f
Aug 17 09:15:56 mickey pluto[5162]: | 63 d8 58 a4 1f 78 04 4f b3 8e 92 aa 40 80 0e e9
Aug 17 09:15:56 mickey pluto[5162]: | 72 8b b4 73 fe 35 8f 98 97 83 58 ee d0 9a de 55
Aug 17 09:15:56 mickey pluto[5162]: | 45 fb b9 8a e6 be a7 dd 7c 1a 51 7a c6 63 32 62
Aug 17 09:15:56 mickey pluto[5162]: | 6f 6f 2c 62 05 88 41 59 7c 83 d3 31 66 96 d9 b9
Aug 17 09:15:56 mickey pluto[5162]: | looking for secret for 62.189.139.36->194.73.118.113 of kind PPK_PSK
Aug 17 09:15:56 mickey pluto[5162]: | Skeyid: c3 bd 98 e9 93 ec 12 75 18 b9 17 e6 bc 80 10 55
Aug 17 09:15:56 mickey pluto[5162]: | Skeyid_d: fd 27 8e 77 b5 cd ce 95 1f 97 b9 41 31 42 c9 d0
Aug 17 09:15:56 mickey pluto[5162]: | Skeyid_a: 87 46 73 10 18 5c 73 24 21 c4 cf c4 de 50 0c 3e
Aug 17 09:15:56 mickey pluto[5162]: | Skeyid_e: 64 d4 8f 9e a2 99 3d f8 60 a3 be 8e cb 01 28 fa
Aug 17 09:15:56 mickey pluto[5162]: | enc key: ef ac 78 8f 41 6a c0 3c 10 b4 16 a3 8b 3f 8c 07
Aug 17 09:15:56 mickey pluto[5162]: | da 85 db c9 5d 25 16 f3
Aug 17 09:15:56 mickey pluto[5162]: | IV: a5 d5 03 46 10 8e 06 ac 02 2b 10 b0 74 d9 1d 63
Aug 17 09:15:56 mickey pluto[5162]: | ***emit ISAKMP Identification Payload (IPsec DOI):
Aug 17 09:15:56 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_HASH
Aug 17 09:15:56 mickey pluto[5162]: | ID type: ID_IPV4_ADDR
Aug 17 09:15:56 mickey pluto[5162]: | Protocol ID: 0
Aug 17 09:15:56 mickey pluto[5162]: | port: 0
Aug 17 09:15:56 mickey pluto[5162]: | emitting 4 raw bytes of my identity into ISAKMP Identification Payload (IPsec DOI)
Aug 17 09:15:56 mickey pluto[5162]: | my identity 3e bd 8b 24
Aug 17 09:15:56 mickey pluto[5162]: | emitting length of ISAKMP Identification Payload (IPsec DOI): 12
Aug 17 09:15:56 mickey pluto[5162]: | hashing 144 bytes of SA
Aug 17 09:15:56 mickey pluto[5162]: | ***emit ISAKMP Hash Payload:
Aug 17 09:15:56 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:15:56 mickey pluto[5162]: | emitting 16 raw bytes of HASH_I into ISAKMP Hash Payload
Aug 17 09:15:56 mickey pluto[5162]: | HASH_I f5 35 ca 1b b6 94 89 6c 0a e5 d9 4d 69 f0 af 9a
Aug 17 09:15:56 mickey pluto[5162]: | emitting length of ISAKMP Hash Payload: 20
Aug 17 09:15:56 mickey pluto[5162]: | encrypting:
Aug 17 09:15:56 mickey pluto[5162]: | 08 00 00 0c 01 00 00 00 3e bd 8b 24 00 00 00 14
Aug 17 09:15:56 mickey pluto[5162]: | f5 35 ca 1b b6 94 89 6c 0a e5 d9 4d 69 f0 af 9a
Aug 17 09:15:56 mickey pluto[5162]: | encrypting using OAKLEY_3DES_CBC
Aug 17 09:15:56 mickey pluto[5162]: | next IV: 5f fb 18 c5 48 3c 7e 4c
Aug 17 09:15:57 mickey pluto[5162]: | emitting length of ISAKMP Message: 60
Aug 17 09:15:57 mickey pluto[5162]: "tunnelipsec" #4: transition from state STATE_MAIN_I2 to state STATE_MAIN_I3
Aug 17 09:15:57 mickey pluto[5162]: | sending 60 bytes for STATE_MAIN_I2 through eth0 to 194.73.118.113:500:
Aug 17 09:15:57 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74 fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:57 mickey pluto[5162]: | 05 10 02 01 00 00 00 00 00 00 00 3c 16 89 cb 12
Aug 17 09:15:57 mickey pluto[5162]: | 6f cc 6b ef a2 61 4b 8f a9 34 fc 26 28 91 c9 fa
Aug 17 09:15:57 mickey pluto[5162]: | 85 cc 42 60 5f fb 18 c5 48 3c 7e 4c
Aug 17 09:15:57 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #4
Aug 17 09:15:57 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 10 seconds for #4
Aug 17 09:15:57 mickey pluto[5162]: |
Aug 17 09:15:57 mickey pluto[5162]: | *received 72 bytes from 194.73.118.113:500 on eth0
Aug 17 09:15:57 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74 fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:57 mickey pluto[5162]: | 0b 10 05 00 00 00 00 00 00 00 00 48 00 00 00 2c
Aug 17 09:15:57 mickey pluto[5162]: | 00 00 00 01 00 00 00 10 c1 94 d4 43 d2 07 cd a3
Aug 17 09:15:57 mickey pluto[5162]: | 45 22 c9 7c aa f6 b0 b5 62 72 aa 20 d8 ef 42 49
Aug 17 09:15:57 mickey pluto[5162]: | bd e3 f7 b6 c1 8d c7 11
Aug 17 09:15:57 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:15:57 mickey pluto[5162]: | initiator cookie:
Aug 17 09:15:57 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74
Aug 17 09:15:57 mickey pluto[5162]: | responder cookie:
Aug 17 09:15:57 mickey pluto[5162]: | fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:57 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_N
Aug 17 09:15:57 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:15:57 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_INFO
Aug 17 09:15:57 mickey pluto[5162]: | flags: none
Aug 17 09:15:57 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:15:57 mickey pluto[5162]: | length: 72
Aug 17 09:15:57 mickey pluto[5162]: | ICOOKIE: de 0d bf 05 e1 67 54 74
Aug 17 09:15:57 mickey pluto[5162]: | RCOOKIE: fa 55 64 d8 57 ca 24 3b
Aug 17 09:15:57 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:15:57 mickey pluto[5162]: | state hash entry 6
Aug 17 09:15:57 mickey pluto[5162]: | peer and cookies match on #4, provided msgid 00000000 vs 00000000
Aug 17 09:15:57 mickey pluto[5162]: | state object #4 found, in STATE_MAIN_I3
Aug 17 09:15:57 mickey pluto[5162]: | ***parse ISAKMP Notification Payload:
Aug 17 09:15:57 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_NONE
Aug 17 09:15:57 mickey pluto[5162]: | length: 44
Aug 17 09:15:57 mickey pluto[5162]: | DOI: ISAKMP_DOI_IPSEC
Aug 17 09:15:57 mickey pluto[5162]: | protocol ID: 0
Aug 17 09:15:57 mickey pluto[5162]: | SPI size: 0
Aug 17 09:15:58 mickey pluto[5162]: | Notify Message Type: PAYLOAD_MALFORMED
Aug 17 09:15:58 mickey pluto[5162]: "tunnelipsec" #4: ignoring informational payload, type PAYLOAD_MALFORMED
Aug 17 09:15:58 mickey pluto[5162]: | info: c1 94 d4 43 d2 07 cd a3 45 22 c9 7c aa f6 b0 b5
Aug 17 09:15:58 mickey pluto[5162]: | 62 72 aa 20 d8 ef 42 49 bd e3 f7 b6 c1 8d c7 11
Aug 17 09:15:58 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 9 seconds for #4
Aug 17 09:16:07 mickey pluto[5162]: |
Aug 17 09:16:07 mickey pluto[5162]: | *time to handle event
Aug 17 09:16:07 mickey pluto[5162]: | event after this is EVENT_REINIT_SECRET in 3333 seconds
Aug 17 09:16:07 mickey pluto[5162]: | handling event EVENT_RETRANSMIT for 194.73.118.113 "tunnelipsec" #4
Aug 17 09:16:07 mickey pluto[5162]: | sending 60 bytes for EVENT_RETRANSMIT through eth0 to 194.73.118.113:500:
Aug 17 09:16:07 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74 fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:07 mickey pluto[5162]: | 05 10 02 01 00 00 00 00 00 00 00 3c 16 89 cb 12
Aug 17 09:16:07 mickey pluto[5162]: | 6f cc 6b ef a2 61 4b 8f a9 34 fc 26 28 91 c9 fa
Aug 17 09:16:07 mickey pluto[5162]: | 85 cc 42 60 5f fb 18 c5 48 3c 7e 4c
Aug 17 09:16:07 mickey pluto[5162]: | inserting event EVENT_RETRANSMIT, timeout in 20 seconds for #4
Aug 17 09:16:07 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 20 seconds for #4
Aug 17 09:16:07 mickey pluto[5162]: |
Aug 17 09:16:07 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:16:07 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74 fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:07 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:16:07 mickey pluto[5162]: | c5 6e 9f 7b 31 88 f6 45 f6 aa 6d fc 2e 8f 27 9f
Aug 17 09:16:07 mickey pluto[5162]: | 54 b2 a8 0d 75 35 7a 7c ac 99 b9 90 29 d2 da 9a
Aug 17 09:16:07 mickey pluto[5162]: | e8 d7 f1 1e 71 3e 63 62 74 05 82 2d c7 cf c7 46
Aug 17 09:16:07 mickey pluto[5162]: | a9 20 8d 29 94 05 61 d9 c7 8f f0 82 eb f8 12 55
Aug 17 09:16:07 mickey pluto[5162]: | 73 8e 98 ac d7 98 9d 75 bf 8c 66 c1 01 59 c5 01
Aug 17 09:16:07 mickey pluto[5162]: | a6 41 aa 3b 21 30 5f b7 ff 5c f2 7f ef 23 0f e6
Aug 17 09:16:07 mickey pluto[5162]: | 11 b6 61 31 c7 ad a1 6b cd 0c 44 fa ee 75 01 19
Aug 17 09:16:07 mickey pluto[5162]: | 0e 16 12 d3 b6 cc c2 88 d3 d5 a1 cd dc a0 24 a3
Aug 17 09:16:07 mickey pluto[5162]: | 0d 00 00 18 9f b0 bc b9 ba 3c ed 13 34 89 2f 95
Aug 17 09:16:07 mickey pluto[5162]: | 02 dc bd 44 53 e7 60 ad 0d 00 00 14 12 f5 f2 8c
Aug 17 09:16:07 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:16:07 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 0f 92 c3 c5
Aug 17 09:16:07 mickey pluto[5162]: | 57 cb 24 3b 3f a5 b1 1a 3e 8e d3 82 00 00 00 14
Aug 17 09:16:07 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:16:07 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:16:07 mickey pluto[5162]: | initiator cookie:
Aug 17 09:16:07 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74
Aug 17 09:16:07 mickey pluto[5162]: | responder cookie:
Aug 17 09:16:07 mickey pluto[5162]: | fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:07 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:16:07 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:16:07 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:16:07 mickey pluto[5162]: | flags: none
Aug 17 09:16:07 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:16:07 mickey pluto[5162]: | length: 256
Aug 17 09:16:07 mickey pluto[5162]: | ICOOKIE: de 0d bf 05 e1 67 54 74
Aug 17 09:16:07 mickey pluto[5162]: | RCOOKIE: fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:07 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:16:07 mickey pluto[5162]: | state hash entry 6
Aug 17 09:16:07 mickey pluto[5162]: | peer and cookies match on #4, provided msgid 00000000 vs 00000000
Aug 17 09:16:07 mickey pluto[5162]: | state object #4 found, in STATE_MAIN_I3
Aug 17 09:16:07 mickey pluto[5162]: "tunnelipsec" #4: discarding duplicate packet; already STATE_MAIN_I3
Aug 17 09:16:07 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 20 seconds for #4
Aug 17 09:16:15 mickey pluto[5162]: |
Aug 17 09:16:15 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:16:15 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74 fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:15 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:16:15 mickey pluto[5162]: | c5 6e 9f 7b 31 88 f6 45 f6 aa 6d fc 2e 8f 27 9f
Aug 17 09:16:15 mickey pluto[5162]: | 54 b2 a8 0d 75 35 7a 7c ac 99 b9 90 29 d2 da 9a
Aug 17 09:16:15 mickey pluto[5162]: | e8 d7 f1 1e 71 3e 63 62 74 05 82 2d c7 cf c7 46
Aug 17 09:16:15 mickey pluto[5162]: | a9 20 8d 29 94 05 61 d9 c7 8f f0 82 eb f8 12 55
Aug 17 09:16:15 mickey pluto[5162]: | 73 8e 98 ac d7 98 9d 75 bf 8c 66 c1 01 59 c5 01
Aug 17 09:16:15 mickey pluto[5162]: | a6 41 aa 3b 21 30 5f b7 ff 5c f2 7f ef 23 0f e6
Aug 17 09:16:15 mickey pluto[5162]: | 11 b6 61 31 c7 ad a1 6b cd 0c 44 fa ee 75 01 19
Aug 17 09:16:15 mickey pluto[5162]: | 0e 16 12 d3 b6 cc c2 88 d3 d5 a1 cd dc a0 24 a3
Aug 17 09:16:15 mickey pluto[5162]: | 0d 00 00 18 9f b0 bc b9 ba 3c ed 13 34 89 2f 95
Aug 17 09:16:15 mickey pluto[5162]: | 02 dc bd 44 53 e7 60 ad 0d 00 00 14 12 f5 f2 8c
Aug 17 09:16:15 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:16:15 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 0f 92 c3 c5
Aug 17 09:16:15 mickey pluto[5162]: | 57 cb 24 3b 3f a5 b1 1a 3e 8e d3 82 00 00 00 14
Aug 17 09:16:15 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:16:15 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:16:15 mickey pluto[5162]: | initiator cookie:
Aug 17 09:16:15 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74
Aug 17 09:16:15 mickey pluto[5162]: | responder cookie:
Aug 17 09:16:15 mickey pluto[5162]: | fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:15 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:16:15 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:16:15 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:16:15 mickey pluto[5162]: | flags: none
Aug 17 09:16:15 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:16:15 mickey pluto[5162]: | length: 256
Aug 17 09:16:15 mickey pluto[5162]: | ICOOKIE: de 0d bf 05 e1 67 54 74
Aug 17 09:16:15 mickey pluto[5162]: | RCOOKIE: fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:15 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:16:15 mickey pluto[5162]: | state hash entry 6
Aug 17 09:16:15 mickey pluto[5162]: | peer and cookies match on #4, provided msgid 00000000 vs 00000000
Aug 17 09:16:15 mickey pluto[5162]: | state object #4 found, in STATE_MAIN_I3
Aug 17 09:16:15 mickey pluto[5162]: "tunnelipsec" #4: discarding duplicate packet; already STATE_MAIN_I3
Aug 17 09:16:15 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 12 seconds for #4
Aug 17 09:16:23 mickey pluto[5162]: |
Aug 17 09:16:23 mickey pluto[5162]: | *received 256 bytes from 194.73.118.113:500 on eth0
Aug 17 09:16:23 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74 fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:23 mickey pluto[5162]: | 04 10 02 00 00 00 00 00 00 00 01 00 0a 00 00 84
Aug 17 09:16:23 mickey pluto[5162]: | c5 6e 9f 7b 31 88 f6 45 f6 aa 6d fc 2e 8f 27 9f
Aug 17 09:16:23 mickey pluto[5162]: | 54 b2 a8 0d 75 35 7a 7c ac 99 b9 90 29 d2 da 9a
Aug 17 09:16:23 mickey pluto[5162]: | e8 d7 f1 1e 71 3e 63 62 74 05 82 2d c7 cf c7 46
Aug 17 09:16:23 mickey pluto[5162]: | a9 20 8d 29 94 05 61 d9 c7 8f f0 82 eb f8 12 55
Aug 17 09:16:23 mickey pluto[5162]: | 73 8e 98 ac d7 98 9d 75 bf 8c 66 c1 01 59 c5 01
Aug 17 09:16:23 mickey pluto[5162]: | a6 41 aa 3b 21 30 5f b7 ff 5c f2 7f ef 23 0f e6
Aug 17 09:16:23 mickey pluto[5162]: | 11 b6 61 31 c7 ad a1 6b cd 0c 44 fa ee 75 01 19
Aug 17 09:16:23 mickey pluto[5162]: | 0e 16 12 d3 b6 cc c2 88 d3 d5 a1 cd dc a0 24 a3
Aug 17 09:16:23 mickey pluto[5162]: | 0d 00 00 18 9f b0 bc b9 ba 3c ed 13 34 89 2f 95
Aug 17 09:16:23 mickey pluto[5162]: | 02 dc bd 44 53 e7 60 ad 0d 00 00 14 12 f5 f2 8c
Aug 17 09:16:23 mickey pluto[5162]: | 45 71 68 a9 70 2d 9f e2 74 cc 01 00 0d 00 00 0c
Aug 17 09:16:23 mickey pluto[5162]: | 09 00 26 89 df d6 b7 12 0d 00 00 14 0f 92 c3 c5
Aug 17 09:16:23 mickey pluto[5162]: | 57 cb 24 3b 3f a5 b1 1a 3e 8e d3 82 00 00 00 14
Aug 17 09:16:23 mickey pluto[5162]: | 1f 07 f7 0e aa 65 14 d3 b0 fa 96 54 2a 50 04 00
Aug 17 09:16:23 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:16:23 mickey pluto[5162]: | initiator cookie:
Aug 17 09:16:23 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74
Aug 17 09:16:23 mickey pluto[5162]: | responder cookie:
Aug 17 09:16:23 mickey pluto[5162]: | fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:23 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_KE
Aug 17 09:16:23 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:16:23 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_IDPROT
Aug 17 09:16:23 mickey pluto[5162]: | flags: none
Aug 17 09:16:23 mickey pluto[5162]: | message ID: 00 00 00 00
Aug 17 09:16:23 mickey pluto[5162]: | length: 256
Aug 17 09:16:23 mickey pluto[5162]: | ICOOKIE: de 0d bf 05 e1 67 54 74
Aug 17 09:16:23 mickey pluto[5162]: | RCOOKIE: fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:23 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:16:23 mickey pluto[5162]: | state hash entry 6
Aug 17 09:16:23 mickey pluto[5162]: | peer and cookies match on #4, provided msgid 00000000 vs 00000000
Aug 17 09:16:23 mickey pluto[5162]: | state object #4 found, in STATE_MAIN_I3
Aug 17 09:16:23 mickey pluto[5162]: "tunnelipsec" #4: discarding duplicate packet; already STATE_MAIN_I3
Aug 17 09:16:23 mickey pluto[5162]: | next event EVENT_RETRANSMIT in 4 seconds for #4
Aug 17 09:16:27 mickey pluto[5162]: |
Aug 17 09:16:27 mickey pluto[5162]: | *received whack message
Aug 17 09:16:27 mickey pluto[5162]: "tunnelipsec": terminating SAs using this connection
Aug 17 09:16:27 mickey pluto[5162]: "tunnelipsec" #4: deleting state (STATE_MAIN_I3)
Aug 17 09:16:27 mickey pluto[5162]: | ICOOKIE: de 0d bf 05 e1 67 54 74
Aug 17 09:16:27 mickey pluto[5162]: | RCOOKIE: fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:27 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:16:27 mickey pluto[5162]: | state hash entry 6
Aug 17 09:16:27 mickey pluto[5162]: | next event EVENT_REINIT_SECRET in 3313 seconds
Aug 17 09:16:31 mickey pluto[5162]: |
Aug 17 09:16:31 mickey pluto[5162]: | *received 76 bytes from 194.73.118.113:500 on eth0
Aug 17 09:16:31 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74 fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:31 mickey pluto[5162]: | 08 10 05 01 5a 27 ab 35 00 00 00 4c 67 08 e9 d2
Aug 17 09:16:31 mickey pluto[5162]: | 3d e9 fa 1a 13 c4 6f 07 58 b7 14 fc 1e 6d e2 92
Aug 17 09:16:31 mickey pluto[5162]: | f3 41 a8 3a 3b 86 ca 58 0b d8 97 66 f9 cd 48 c1
Aug 17 09:16:31 mickey pluto[5162]: | 50 8f e0 d3 f9 fd d2 2b 69 3b b6 d6
Aug 17 09:16:31 mickey pluto[5162]: | **parse ISAKMP Message:
Aug 17 09:16:31 mickey pluto[5162]: | initiator cookie:
Aug 17 09:16:31 mickey pluto[5162]: | de 0d bf 05 e1 67 54 74
Aug 17 09:16:31 mickey pluto[5162]: | responder cookie:
Aug 17 09:16:31 mickey pluto[5162]: | fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:31 mickey pluto[5162]: | next payload type: ISAKMP_NEXT_HASH
Aug 17 09:16:31 mickey pluto[5162]: | ISAKMP version: ISAKMP Version 1.0
Aug 17 09:16:31 mickey pluto[5162]: | exchange type: ISAKMP_XCHG_INFO
Aug 17 09:16:31 mickey pluto[5162]: | flags: ISAKMP_FLAG_ENCRYPTION
Aug 17 09:16:31 mickey pluto[5162]: | message ID: 5a 27 ab 35
Aug 17 09:16:31 mickey pluto[5162]: | length: 76
Aug 17 09:16:31 mickey pluto[5162]: | ICOOKIE: de 0d bf 05 e1 67 54 74
Aug 17 09:16:31 mickey pluto[5162]: | RCOOKIE: fa 55 64 d8 57 ca 24 3b
Aug 17 09:16:31 mickey pluto[5162]: | peer: c2 49 76 71
Aug 17 09:16:31 mickey pluto[5162]: | state hash entry 6
Aug 17 09:16:31 mickey pluto[5162]: | state object not found
Aug 17 09:16:31 mickey pluto[5162]: packet from 194.73.118.113:500: Informational Exchange is for an unknown (expired?) SA
Aug 17 09:16:31 mickey pluto[5162]: | next event EVENT_REINIT_SECRET in 3309 seconds
Aug 17 09:16:47 mickey pluto[5162]: |
Aug 17 09:16:47 mickey pluto[5162]: | *received whack message
Aug 17 09:16:47 mickey pluto[5162]: shutting down
Aug 17 09:16:47 mickey pluto[5162]: forgetting secrets
Aug 17 09:16:47 mickey pluto[5162]: "tunnelipsec": deleting connection
Aug 17 09:16:47 mickey pluto[5162]: | delete eroute 145.224.0.0/16:0 --0-> 172.18.100.0/24:0 => int.0 at 62.189.139.36 (raw_eroute)
Aug 17 09:16:47 mickey pluto[5162]: | eroute_connection delete eroute 172.18.100.0/24:0 --0-> 145.224.0.0/16:0 => int.0 at 0.0.0.0 (raw_eroute)
Aug 17 09:16:47 mickey pluto[5162]: | route owner of "tunnelipsec" unrouted: NULL
Aug 17 09:16:47 mickey pluto[5162]: | executing unroute-client: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='unroute-client' PLUTO_CONNECTION='tunnelipsec' PLUTO_NEXT_HOP='194.73.118.113' PLUTO_INTERFACE='eth0' PLUTO_ME='62.189.139.36' PLUTO_MY_ID='62.189.139.36' PLUTO_MY_CLIENT='172.18.100.0/24' PLUTO_MY_CLIENT_NET='172.18.100.0' PLUTO_MY_CLIENT_MASK='255.255.255.0' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='194.73.118.113' PLUTO_PEER_ID='194.73.118.113' PLUTO_PEER_CLIENT='145.224.0.0/16' PLUTO_PEER_CLIENT_NET='145.224.0.0' PLUTO_PEER_CLIENT_MASK='255.255.0.0' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='' ipsec _updown
Aug 17 09:16:47 mickey pluto[5162]: "tunnelipsec": unroute-client output: /usr/local/lib/ipsec/_updown: doroute `ip route del 145.224.0.0/16 via 194.73.118.113 dev eth0 ' failed (RTNETLINK answers: No such process)
Aug 17 09:16:47 mickey pluto[5162]: shutting down interface lo/lo 127.0.0.1
Aug 17 09:16:47 mickey pluto[5162]: shutting down interface eth0/eth0 62.189.139.36
Aug 17 09:16:47 mickey pluto[5162]: shutting down interface eth0:0/eth0:0 172.18.100.1
+ _________________________ date
+ date
Tue Aug 17 09:25:11 BST 2004
More information about the Users
mailing list