[Openswan Users]
xp client problems (ERROR: asynchronous network error...)
Tomasz Grzelak
tgrzelak at wktpolska.com.pl
Mon Jul 31 15:35:00 CEST 2006
Hello!
I'm trying to configure an M$ L2TP/IPSec (win xp + sp2 +
AssumeUDPEncapsulationContextOnSendRule=2 applied to the registry)
client to the Openswan on Debian Sarge, kernel 2.6.17.7. I tried
versions 2.4.6rc5 and 2.4.5 - both had the same problem.
The client is behind NAT (it is NATed to W.X.Y.Z), the Openswan server
is at the public IP A.B.C.D.
IKE works fine, the SA is established (I can see it in the pluto log),
and next I can see UDP[4500] packets coming to my server, but I can't
see any responses from the server to the client.
In the pluto log there are lines:
ERROR: asynchronous network error report on eth0 (sport=4500) for
message to W.X.Y.Z port 13631, complainant A.B.C.D: No route to host
[errno 113, origin ICMP type 3 code 1 (not authenticated)]
In the l2tp daemon (I use xl2tp 1.04) log I see:
l2tpd[27167]: This binary does not support kernel L2TP.
l2tpd[27167]: l2tpd version 1.04-X started on monitoring PID:27167
l2tpd[27167]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
l2tpd[27167]: Forked by Scott Balmos and David Stipp, (C) 2001
l2tpd[27167]: Inherited by Jeff McAdams, (C) 2002
l2tpd[27167]: Listening on IP address 0.0.0.0, port 1701
l2tpd[27167]: control_finish: Peer requested tunnel 3 twice, ignoring
second one.
l2tpd[27167]: control_finish: Peer requested tunnel 3 twice, ignoring
second one.
l2tpd[27167]: control_finish: Peer requested tunnel 3 twice, ignoring
second one.
l2tpd[27167]: Maximum retries exceeded for tunnel 53841. Closing.
l2tpd[27167]: Connection 3 closed to W.X.Y.Z, port 1701 (Timeout)
l2tpd[27167]: Unable to deliver closing message for tunnel 53841.
Destroying anyway.
Can you help me, please?
Tomasz Grzelak
Below the ipsec.conf file I attach the pluto log from the starting
(excuse me for the size, but I believe there are important information
which can help).
My ipsec.conf is:
-------------------------------------------------------------------------
version 2.0 # conforms to second version of ipsec.conf specification
# basic configuration
config setup
# plutodebug / klipsdebug = "all", "none" or a combation from
below:
# "raw crypt parsing emitting control klips pfkey natt x509
private"
# eg:
interfaces="ipsec0=eth0"
plutodebug="parsing control"
#
# Only enable klipsdebug=all if you are a developer
#
# NAT-TRAVERSAL support, see README.NAT-Traversal
nat_traversal=yes
virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:!172.20.20.0/28
#
# enable this if you see "failed to find any available worker"
#nhelpers=0
# Add connections here
conn roadwarrior
compress=yes
authby=rsasig
pfs=no
auto=add
rekey=no
left=A.B.C.D
leftrsasigkey=%cert
leftcert=/etc/ipsec.d/certs/openswan.crt
leftprotoport=17/1701
#leftsubnet=172.20.20.0/28
right=%any
rightca=%same
rightrsasigkey=%cert
rightprotoport=17/1701
rightsubnet=vhost:%priv,%no
# sample VPN connections, see /etc/ipsec.d/examples/
#Disable Opportunistic Encryption
include /etc/ipsec.d/examples/no_oe.conf
-------------------------------------------------------------------------
Pluto:
-------------------------------------------------------------------------
Jul 31 13:51:45 localhost ipsec__plutorun: Starting Pluto subsystem...
Jul 31 13:51:45 localhost pluto[19518]: Starting Pluto (Openswan Version
2.4.6rc5 X.509-1.5.4 PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR; Vendor ID
OElA at M|UmkvJ)
Jul 31 13:51:45 localhost pluto[19518]: Setting NAT-Traversal port-4500
floating to on
Jul 31 13:51:45 localhost pluto[19518]: port floating activation
criteria nat_t=1/port_fload=1
Jul 31 13:51:45 localhost pluto[19518]: including NAT-Traversal patch
(Version 0.6c)
Jul 31 13:51:45 localhost pluto[19518]: | opening /dev/hw_random
Jul 31 13:51:45 localhost pluto[19518]: WARNING: Open of /dev/hw_random
failed in init_rnd_pool(), trying alternate sources of random
Jul 31 13:51:45 localhost pluto[19518]: | opening /dev/urandom
Jul 31 13:51:45 localhost pluto[19518]: WARNING: Using /dev/urandom as
the source of random
Jul 31 13:51:45 localhost pluto[19518]: | inserting event
EVENT_REINIT_SECRET, timeout in 3600 seconds
Jul 31 13:51:45 localhost pluto[19518]: | inserting event
EVENT_PENDING_PHASE2, timeout in 120 seconds
Jul 31 13:51:45 localhost pluto[19518]: ike_alg_register_enc():
Activating OAKLEY_AES_CBC: Ok (ret=0)
Jul 31 13:51:45 localhost pluto[19518]: starting up 1 cryptographic helpers
Jul 31 13:51:45 localhost pluto[19522]: | opening /dev/hw_random
Jul 31 13:51:45 localhost pluto[19522]: WARNING: Open of /dev/hw_random
failed in init_rnd_pool(), trying alternate sources of random
Jul 31 13:51:45 localhost pluto[19522]: | opening /dev/urandom
Jul 31 13:51:45 localhost pluto[19522]: WARNING: Using /dev/urandom as
the source of random
Jul 31 13:51:45 localhost pluto[19518]: started helper pid=19522 (fd:6)
Jul 31 13:51:45 localhost pluto[19518]: Using Linux 2.6 IPsec interface
code on 2.6.17.7
Jul 31 13:51:46 localhost pluto[19522]: ! helper 0 waiting on fd: 7
Jul 31 13:51:46 localhost pluto[19518]: Changing to directory
'/etc/ipsec.d/cacerts'
Jul 31 13:51:46 localhost pluto[19518]: loaded CA cert file 'CA.crt'
(1363 bytes)
Jul 31 13:51:46 localhost pluto[19518]: | file content is not binary ASN.1
Jul 31 13:51:46 localhost pluto[19518]: | -----BEGIN CERTIFICATE-----
Jul 31 13:51:46 localhost pluto[19518]: | -----END CERTIFICATE-----
Jul 31 13:51:46 localhost pluto[19518]: | file coded in PEM format
Jul 31 13:51:46 localhost pluto[19518]: | L0 - certificate:
Jul 31 13:51:46 localhost pluto[19518]: | L1 - tbsCertificate:
Jul 31 13:51:46 localhost pluto[19518]: | L2 - DEFAULT v1:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - version:
Jul 31 13:51:46 localhost pluto[19518]: | v3
Jul 31 13:51:46 localhost pluto[19518]: | L2 - serialNumber:
Jul 31 13:51:46 localhost pluto[19518]: | L2 - signature:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - algorithmIdentifier:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - algorithm:
Jul 31 13:51:46 localhost pluto[19518]: | 'md5WithRSAEncryption'
Jul 31 13:51:46 localhost pluto[19518]: | L2 - issuer:
Jul 31 13:51:46 localhost pluto[19518]: | 'C=PL, ST=Malopolska,
L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:51:46 localhost pluto[19518]: | L2 - validity:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - notBefore:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - utcTime:
Jul 31 13:51:46 localhost pluto[19518]: | 'Jul 27 06:17:46 UTC 2006'
Jul 31 13:51:46 localhost pluto[19518]: | L3 - notAfter:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - utcTime:
Jul 31 13:51:46 localhost pluto[19518]: | 'Jul 24 06:17:46 UTC 2016'
Jul 31 13:51:46 localhost pluto[19518]: | L2 - subject:
Jul 31 13:51:46 localhost pluto[19518]: | 'C=PL, ST=Malopolska,
L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:51:46 localhost pluto[19518]: | L2 - subjectPublicKeyInfo:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - algorithm:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - algorithmIdentifier:
Jul 31 13:51:46 localhost pluto[19518]: | L5 - algorithm:
Jul 31 13:51:46 localhost pluto[19518]: | 'rsaEncryption'
Jul 31 13:51:46 localhost pluto[19518]: | L3 - subjectPublicKey:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - RSAPublicKey:
Jul 31 13:51:46 localhost pluto[19518]: | L5 - modulus:
Jul 31 13:51:46 localhost pluto[19518]: | L5 - publicExponent:
Jul 31 13:51:46 localhost pluto[19518]: | L2 - optional extensions:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - extensions:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - extension:
Jul 31 13:51:46 localhost pluto[19518]: | L5 - extnID:
Jul 31 13:51:46 localhost pluto[19518]: | 'subjectKeyIdentifier'
Jul 31 13:51:46 localhost pluto[19518]: | L5 - critical:
Jul 31 13:51:46 localhost pluto[19518]: | FALSE
Jul 31 13:51:46 localhost pluto[19518]: | L5 - extnValue:
Jul 31 13:51:46 localhost pluto[19518]: | L6 - keyIdentifier:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - extension:
Jul 31 13:51:46 localhost pluto[19518]: | L5 - extnID:
Jul 31 13:51:46 localhost pluto[19518]: | 'authorityKeyIdentifier'
Jul 31 13:51:46 localhost pluto[19518]: | L5 - critical:
Jul 31 13:51:46 localhost pluto[19518]: | FALSE
Jul 31 13:51:46 localhost pluto[19518]: | L5 - extnValue:
Jul 31 13:51:46 localhost pluto[19518]: | L6 - authorityKeyIdentifier:
Jul 31 13:51:46 localhost pluto[19518]: | L7 - keyIdentifier:
Jul 31 13:51:46 localhost pluto[19518]: | L8 - keyIdentifier:
Jul 31 13:51:46 localhost pluto[19518]: | L7 - authorityCertIssuer:
Jul 31 13:51:46 localhost pluto[19518]: | L8 - generalNames:
Jul 31 13:51:46 localhost pluto[19518]: | L9 - generalName:
Jul 31 13:51:46 localhost pluto[19518]: | L10 - directoryName:
Jul 31 13:51:46 localhost pluto[19518]: | 'C=PL, ST=Malopolska,
L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:51:46 localhost pluto[19518]: | L7 - authorityCertSerialNumber:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - extension:
Jul 31 13:51:46 localhost pluto[19518]: | L5 - extnID:
Jul 31 13:51:46 localhost pluto[19518]: | 'basicConstraints'
Jul 31 13:51:46 localhost pluto[19518]: | L5 - critical:
Jul 31 13:51:46 localhost pluto[19518]: | FALSE
Jul 31 13:51:46 localhost pluto[19518]: | L5 - extnValue:
Jul 31 13:51:46 localhost pluto[19518]: | L6 - basicConstraints:
Jul 31 13:51:46 localhost pluto[19518]: | L7 - CA:
Jul 31 13:51:46 localhost pluto[19518]: | TRUE
Jul 31 13:51:46 localhost pluto[19518]: | L1 - signatureAlgorithm:
Jul 31 13:51:46 localhost pluto[19518]: | L2 - algorithmIdentifier:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - algorithm:
Jul 31 13:51:46 localhost pluto[19518]: | 'md5WithRSAEncryption'
Jul 31 13:51:46 localhost pluto[19518]: | L1 - signatureValue:
Jul 31 13:51:46 localhost pluto[19518]: | authcert inserted
Jul 31 13:51:46 localhost pluto[19518]: Changing to directory
'/etc/ipsec.d/aacerts'
Jul 31 13:51:46 localhost pluto[19518]: Changing to directory
'/etc/ipsec.d/ocspcerts'
Jul 31 13:51:46 localhost pluto[19518]: Changing to directory
'/etc/ipsec.d/crls'
Jul 31 13:51:46 localhost pluto[19518]: loaded crl file 'crl.pem' (536
bytes)
Jul 31 13:51:46 localhost pluto[19518]: | file content is not binary ASN.1
Jul 31 13:51:46 localhost pluto[19518]: | -----BEGIN X509 CRL-----
Jul 31 13:51:46 localhost pluto[19518]: | -----END X509 CRL-----
Jul 31 13:51:46 localhost pluto[19518]: | file coded in PEM format
Jul 31 13:51:46 localhost pluto[19518]: | L0 - certificateList:
Jul 31 13:51:46 localhost pluto[19518]: | L1 - tbsCertList:
Jul 31 13:51:46 localhost pluto[19518]: | L2 - signature:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - algorithmIdentifier:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - algorithm:
Jul 31 13:51:46 localhost pluto[19518]: | 'md5WithRSAEncryption'
Jul 31 13:51:46 localhost pluto[19518]: | L2 - issuer:
Jul 31 13:51:46 localhost pluto[19518]: | 'C=PL, ST=Malopolska,
L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:51:46 localhost pluto[19518]: | L2 - thisUpdate:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - utcTime:
Jul 31 13:51:46 localhost pluto[19518]: | 'Jul 27 06:44:40 UTC 2006'
Jul 31 13:51:46 localhost pluto[19518]: | L2 - nextUpdate:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - utcTime:
Jul 31 13:51:46 localhost pluto[19518]: | 'Jul 24 06:44:40 UTC 2016'
Jul 31 13:51:46 localhost pluto[19518]: | L1 - signatureAlgorithm:
Jul 31 13:51:46 localhost pluto[19518]: | L2 - algorithmIdentifier:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - algorithm:
Jul 31 13:51:46 localhost pluto[19518]: | 'md5WithRSAEncryption'
Jul 31 13:51:46 localhost pluto[19518]: | L1 - signatureValue:
Jul 31 13:51:46 localhost pluto[19518]: | signature algorithm:
'md5WithRSAEncryption'
Jul 31 13:51:46 localhost pluto[19518]: | digest: 23 d4 10 08 7c 98
e2 ec bb d1 b2 76 8d d9 19 f6
Jul 31 13:51:46 localhost pluto[19518]: | decrypted signature:
Jul 31 13:51:46 localhost pluto[19518]: | 00 00 01 ff ff ff ff ff ff
ff ff ff ff ff ff ff
Jul 31 13:51:46 localhost pluto[19518]: | ff ff ff ff ff ff ff ff ff
ff ff ff ff ff ff ff
Jul 31 13:51:46 localhost last message repeated 3 times
Jul 31 13:51:46 localhost pluto[19518]: | ff ff ff ff ff ff ff ff ff
ff ff ff ff ff 00 30
Jul 31 13:51:46 localhost pluto[19518]: | 20 30 0c 06 08 2a 86 48 86
f7 0d 02 05 05 00 04
Jul 31 13:51:46 localhost pluto[19518]: | 10 23 d4 10 08 7c 98 e2 ec
bb d1 b2 76 8d d9 19
Jul 31 13:51:46 localhost pluto[19518]: | f6
Jul 31 13:51:46 localhost pluto[19518]: | inserting event
EVENT_LOG_DAILY, timeout in 36494 seconds
Jul 31 13:51:46 localhost pluto[19518]: | next event
EVENT_PENDING_PHASE2 in 119 seconds
Jul 31 13:51:46 localhost pluto[19518]: |
Jul 31 13:51:46 localhost pluto[19518]: | *received whack message
Jul 31 13:51:46 localhost pluto[19518]: | Added new connection
roadwarrior with policy RSASIG+ENCRYPT+COMPRESS+TUNNEL+DONTREKEY
Jul 31 13:51:46 localhost pluto[19518]: loaded host cert file
'/etc/ipsec.d/certs/openswan.crt' (924 bytes)
Jul 31 13:51:46 localhost pluto[19518]: | file content is not binary ASN.1
Jul 31 13:51:46 localhost pluto[19518]: | -----BEGIN CERTIFICATE-----
Jul 31 13:51:46 localhost pluto[19518]: | -----END CERTIFICATE-----
Jul 31 13:51:46 localhost pluto[19518]: | file coded in PEM format
Jul 31 13:51:46 localhost pluto[19518]: | L0 - certificate:
Jul 31 13:51:46 localhost pluto[19518]: | L1 - tbsCertificate:
Jul 31 13:51:46 localhost pluto[19518]: | L2 - DEFAULT v1:
Jul 31 13:51:46 localhost pluto[19518]: | v1
Jul 31 13:51:46 localhost pluto[19518]: | L2 - serialNumber:
Jul 31 13:51:46 localhost pluto[19518]: | L2 - signature:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - algorithmIdentifier:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - algorithm:
Jul 31 13:51:46 localhost pluto[19518]: | 'md5WithRSAEncryption'
Jul 31 13:51:46 localhost pluto[19518]: | L2 - issuer:
Jul 31 13:51:46 localhost pluto[19518]: | 'C=PL, ST=Malopolska,
L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:51:46 localhost pluto[19518]: | L2 - validity:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - notBefore:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - utcTime:
Jul 31 13:51:46 localhost pluto[19518]: | 'Jul 27 06:41:10 UTC 2006'
Jul 31 13:51:46 localhost pluto[19518]: | L3 - notAfter:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - utcTime:
Jul 31 13:51:46 localhost pluto[19518]: | 'Jul 24 06:41:10 UTC 2016'
Jul 31 13:51:46 localhost pluto[19518]: | L2 - subject:
Jul 31 13:51:46 localhost pluto[19518]: | 'C=PL, ST=Malopolska,
L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=Openswan 2.4.6rc3,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:51:46 localhost pluto[19518]: | L2 - subjectPublicKeyInfo:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - algorithm:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - algorithmIdentifier:
Jul 31 13:51:46 localhost pluto[19518]: | L5 - algorithm:
Jul 31 13:51:46 localhost pluto[19518]: | 'rsaEncryption'
Jul 31 13:51:46 localhost pluto[19518]: | L3 - subjectPublicKey:
Jul 31 13:51:46 localhost pluto[19518]: | L4 - RSAPublicKey:
Jul 31 13:51:46 localhost pluto[19518]: | L5 - modulus:
Jul 31 13:51:46 localhost pluto[19518]: | L5 - publicExponent:
Jul 31 13:51:46 localhost pluto[19518]: | L1 - signatureAlgorithm:
Jul 31 13:51:46 localhost pluto[19518]: | L2 - algorithmIdentifier:
Jul 31 13:51:46 localhost pluto[19518]: | L3 - algorithm:
Jul 31 13:51:46 localhost pluto[19518]: | 'md5WithRSAEncryption'
Jul 31 13:51:46 localhost pluto[19518]: | L1 - signatureValue:
Jul 31 13:51:46 localhost pluto[19518]: | certificate is valid
Jul 31 13:51:47 localhost pluto[19518]: | counting wild cards for C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=Openswan 2.4.6rc3, E=tgrzelak at wktpolska.com.pl is 0
Jul 31 13:51:47 localhost pluto[19518]: | counting wild cards for (none)
is 15
Jul 31 13:51:47 localhost pluto[19518]: | based upon policy, the
connection is a template.
Jul 31 13:51:47 localhost pluto[19518]: added connection description
"roadwarrior"
Jul 31 13:51:47 localhost pluto[19518]: | A.B.C.D[C=PL, ST=Malopolska,
L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=Openswan 2.4.6rc3,
E=tgrzelak at wktpolska.com.pl]:17/1701...%virtual:17/1701===?
Jul 31 13:51:47 localhost pluto[19518]: | ike_life: 3600s; ipsec_life:
28800s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 0; policy:
RSASIG+ENCRYPT+COMPRESS+TUNNEL+DONTREKEY
Jul 31 13:51:47 localhost pluto[19518]: | next event
EVENT_PENDING_PHASE2 in 119 seconds
Jul 31 13:51:47 localhost pluto[19518]: |
Jul 31 13:51:47 localhost pluto[19518]: | *received whack message
Jul 31 13:51:47 localhost pluto[19518]: listening for IKE messages
Jul 31 13:51:47 localhost pluto[19518]: | found lo with address 127.0.0.1
Jul 31 13:51:47 localhost pluto[19518]: | found eth0 with address A.B.C.D
Jul 31 13:51:47 localhost pluto[19518]: | found eth1 with address
172.20.20.1
Jul 31 13:51:47 localhost pluto[19518]: | found tun0 with address A.B.C.D
Jul 31 13:51:47 localhost pluto[19518]: adding interface eth1/eth1
172.20.20.1:500
Jul 31 13:51:47 localhost pluto[19518]: adding interface eth1/eth1
172.20.20.1:4500
Jul 31 13:51:47 localhost pluto[19518]: adding interface eth0/eth0
A.B.C.D:500
Jul 31 13:51:47 localhost pluto[19518]: adding interface eth0/eth0
A.B.C.D:4500
Jul 31 13:51:47 localhost pluto[19518]: adding interface lo/lo 127.0.0.1:500
Jul 31 13:51:47 localhost pluto[19518]: adding interface lo/lo
127.0.0.1:4500
Jul 31 13:51:47 localhost pluto[19518]: | found lo with address
0000:0000:0000:0000:0000:0000:0000:0001
Jul 31 13:51:47 localhost pluto[19518]: adding interface lo/lo ::1:500
Jul 31 13:51:47 localhost pluto[19518]: loading secrets from
"/etc/ipsec.secrets"
Jul 31 13:51:47 localhost pluto[19518]: loaded private key file
'/etc/ipsec.d/private/openswan.key' (493 bytes)
Jul 31 13:51:47 localhost pluto[19518]: | file content is not binary ASN.1
Jul 31 13:51:47 localhost pluto[19518]: | -----BEGIN RSA PRIVATE KEY-----
Jul 31 13:51:47 localhost pluto[19518]: | -----END RSA PRIVATE KEY-----
Jul 31 13:51:47 localhost pluto[19518]: | file coded in PEM format
Jul 31 13:51:47 localhost pluto[19518]: | L0 - RSAPrivateKey:
Jul 31 13:51:47 localhost pluto[19518]: | L1 - version:
Jul 31 13:51:47 localhost pluto[19518]: | L1 - modulus:
Jul 31 13:51:47 localhost pluto[19518]: | L1 - publicExponent:
Jul 31 13:51:47 localhost pluto[19518]: | L1 - privateExponent:
Jul 31 13:51:47 localhost pluto[19518]: | L1 - prime1:
Jul 31 13:51:47 localhost pluto[19518]: | L1 - prime2:
Jul 31 13:51:47 localhost pluto[19518]: | L1 - exponent1:
Jul 31 13:51:47 localhost pluto[19518]: | L1 - exponent2:
Jul 31 13:51:47 localhost pluto[19518]: | L1 - coefficient:
Jul 31 13:51:47 localhost pluto[19518]: | loaded private key for keyid:
PPK_RSA:AwEAAdWfZ
Jul 31 13:51:47 localhost pluto[19518]: | next event
EVENT_PENDING_PHASE2 in 118 seconds
Jul 31 13:52:55 localhost pluto[19518]: |
Jul 31 13:52:55 localhost pluto[19518]: | *received 312 bytes from
W.X.Y.Z:13628 on eth0 (port=500)
Jul 31 13:52:55 localhost pluto[19518]: | **parse ISAKMP Message:
Jul 31 13:52:55 localhost pluto[19518]: | initiator cookie:
Jul 31 13:52:55 localhost pluto[19518]: | f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:55 localhost pluto[19518]: | responder cookie:
Jul 31 13:52:55 localhost pluto[19518]: | 00 00 00 00 00 00 00 00
Jul 31 13:52:55 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_SA
Jul 31 13:52:55 localhost pluto[19518]: | ISAKMP version: ISAKMP
Version 1.0
Jul 31 13:52:55 localhost pluto[19518]: | exchange type:
ISAKMP_XCHG_IDPROT
Jul 31 13:52:55 localhost pluto[19518]: | flags: none
Jul 31 13:52:55 localhost pluto[19518]: | message ID: 00 00 00 00
Jul 31 13:52:55 localhost pluto[19518]: | length: 312
Jul 31 13:52:55 localhost pluto[19518]: | processing packet with
exchange type=ISAKMP_XCHG_IDPROT (2)
Jul 31 13:52:55 localhost pluto[19518]: | ***parse ISAKMP Security
Association Payload:
Jul 31 13:52:55 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_VID
Jul 31 13:52:55 localhost pluto[19518]: | length: 200
Jul 31 13:52:55 localhost pluto[19518]: | DOI: ISAKMP_DOI_IPSEC
Jul 31 13:52:55 localhost pluto[19518]: | ***parse ISAKMP Vendor ID Payload:
Jul 31 13:52:55 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_VID
Jul 31 13:52:55 localhost pluto[19518]: | length: 24
Jul 31 13:52:55 localhost pluto[19518]: | ***parse ISAKMP Vendor ID Payload:
Jul 31 13:52:55 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_VID
Jul 31 13:52:55 localhost pluto[19518]: | length: 20
Jul 31 13:52:55 localhost pluto[19518]: | ***parse ISAKMP Vendor ID Payload:
Jul 31 13:52:55 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_VID
Jul 31 13:52:55 localhost pluto[19518]: | length: 20
Jul 31 13:52:55 localhost pluto[19518]: | ***parse ISAKMP Vendor ID Payload:
Jul 31 13:52:55 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NONE
Jul 31 13:52:55 localhost pluto[19518]: | length: 20
Jul 31 13:52:55 localhost pluto[19518]: packet from W.X.Y.Z:13628:
ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000004]
Jul 31 13:52:55 localhost pluto[19518]: packet from W.X.Y.Z:13628:
ignoring Vendor ID payload [FRAGMENTATION]
Jul 31 13:52:55 localhost pluto[19518]: packet from W.X.Y.Z:13628:
received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] method set
to=106
Jul 31 13:52:55 localhost pluto[19518]: packet from W.X.Y.Z:13628:
ignoring Vendor ID payload [Vid-Initial-Contact]
Jul 31 13:52:55 localhost pluto[19518]: | instantiated "roadwarrior" for
W.X.Y.Z
Jul 31 13:52:55 localhost pluto[19518]: | creating state object #1 at
0x8105ca0
Jul 31 13:52:55 localhost pluto[19518]: | processing connection
roadwarrior[1] W.X.Y.Z
Jul 31 13:52:55 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:55 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:52:55 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:52:55 localhost pluto[19518]: | state hash entry 30
Jul 31 13:52:55 localhost pluto[19518]: | inserting event
EVENT_SO_DISCARD, timeout in 0 seconds for #1
Jul 31 13:52:55 localhost pluto[19518]: "roadwarrior"[1] W.X.Y.Z #1:
responding to Main Mode from unknown peer W.X.Y.Z
Jul 31 13:52:55 localhost pluto[19518]: | ****parse IPsec DOI SIT:
Jul 31 13:52:55 localhost pluto[19518]: | IPsec DOI SIT:
SIT_IDENTITY_ONLY
Jul 31 13:52:55 localhost pluto[19518]: | ****parse ISAKMP Proposal Payload:
Jul 31 13:52:55 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NONE
Jul 31 13:52:55 localhost pluto[19518]: | length: 188
Jul 31 13:52:55 localhost pluto[19518]: | proposal number: 1
Jul 31 13:52:55 localhost pluto[19518]: | protocol ID: PROTO_ISAKMP
Jul 31 13:52:55 localhost pluto[19518]: | SPI size: 0
Jul 31 13:52:55 localhost pluto[19518]: | number of transforms: 5
Jul 31 13:52:55 localhost pluto[19518]: | *****parse ISAKMP Transform
Payload (ISAKMP):
Jul 31 13:52:55 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_T
Jul 31 13:52:55 localhost pluto[19518]: | length: 36
Jul 31 13:52:55 localhost pluto[19518]: | transform number: 1
Jul 31 13:52:55 localhost pluto[19518]: | transform ID: KEY_IKE
Jul 31 13:52:55 localhost pluto[19518]: | ******parse ISAKMP Oakley
attribute:
Jul 31 13:52:55 localhost pluto[19518]: | af+type:
OAKLEY_ENCRYPTION_ALGORITHM
Jul 31 13:52:55 localhost pluto[19518]: | length/value: 5
Jul 31 13:52:55 localhost pluto[19518]: | [5 is OAKLEY_3DES_CBC]
Jul 31 13:52:55 localhost pluto[19518]: | ******parse ISAKMP Oakley
attribute:
Jul 31 13:52:55 localhost pluto[19518]: | af+type: OAKLEY_HASH_ALGORITHM
Jul 31 13:52:56 localhost pluto[19518]: | length/value: 2
Jul 31 13:52:56 localhost pluto[19518]: | [2 is OAKLEY_SHA1]
Jul 31 13:52:56 localhost pluto[19518]: | ******parse ISAKMP Oakley
attribute:
Jul 31 13:52:56 localhost pluto[19518]: | af+type:
OAKLEY_GROUP_DESCRIPTION
Jul 31 13:52:56 localhost pluto[19518]: | length/value: 14
Jul 31 13:52:56 localhost pluto[19518]: | [14 is OAKLEY_GROUP_MODP2048]
Jul 31 13:52:56 localhost pluto[19518]: | ******parse ISAKMP Oakley
attribute:
Jul 31 13:52:56 localhost pluto[19518]: | af+type:
OAKLEY_AUTHENTICATION_METHOD
Jul 31 13:52:56 localhost pluto[19518]: | length/value: 3
Jul 31 13:52:56 localhost pluto[19518]: | [3 is OAKLEY_RSA_SIG]
Jul 31 13:52:56 localhost pluto[19518]: | ******parse ISAKMP Oakley
attribute:
Jul 31 13:52:56 localhost pluto[19518]: | af+type: OAKLEY_LIFE_TYPE
Jul 31 13:52:56 localhost pluto[19518]: | length/value: 1
Jul 31 13:52:56 localhost pluto[19518]: | [1 is OAKLEY_LIFE_SECONDS]
Jul 31 13:52:56 localhost pluto[19518]: | ******parse ISAKMP Oakley
attribute:
Jul 31 13:52:56 localhost pluto[19518]: | af+type:
OAKLEY_LIFE_DURATION (variable length)
Jul 31 13:52:56 localhost pluto[19518]: | length/value: 4
Jul 31 13:52:56 localhost pluto[19518]: | long duration: 28800
Jul 31 13:52:56 localhost pluto[19518]: | Oakley Transform 1 accepted
Jul 31 13:52:56 localhost pluto[19518]: | complete state transition with
STF_OK
Jul 31 13:52:56 localhost pluto[19518]: "roadwarrior"[1] W.X.Y.Z #1:
transition from state STATE_MAIN_R0 to state STATE_MAIN_R1
Jul 31 13:52:56 localhost pluto[19518]: | sending reply packet to
W.X.Y.Z:13628 (from port=500)
Jul 31 13:52:56 localhost pluto[19518]: | sending 140 bytes for
STATE_MAIN_R0 through eth0:500 to W.X.Y.Z:13628:
Jul 31 13:52:56 localhost pluto[19518]: | inserting event
EVENT_RETRANSMIT, timeout in 10 seconds for #1
Jul 31 13:52:56 localhost pluto[19518]: "roadwarrior"[1] W.X.Y.Z #1:
STATE_MAIN_R1: sent MR1, expecting MI2
Jul 31 13:52:56 localhost pluto[19518]: | modecfg pull: noquirk
policy:push not-client
Jul 31 13:52:56 localhost pluto[19518]: | phase 1 is done, looking for
phase 1 to unpend
Jul 31 13:52:56 localhost pluto[19518]: | next event EVENT_RETRANSMIT in
10 seconds for #1
Jul 31 13:52:56 localhost pluto[19518]: |
Jul 31 13:52:56 localhost pluto[19518]: | *received 360 bytes from
W.X.Y.Z:13628 on eth0 (port=500)
Jul 31 13:52:56 localhost pluto[19518]: | **parse ISAKMP Message:
Jul 31 13:52:56 localhost pluto[19518]: | initiator cookie:
Jul 31 13:52:56 localhost pluto[19518]: | f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:56 localhost pluto[19518]: | responder cookie:
Jul 31 13:52:56 localhost pluto[19518]: | d5 74 0c ee 97 35 7d 62
Jul 31 13:52:56 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_KE
Jul 31 13:52:56 localhost pluto[19518]: | ISAKMP version: ISAKMP
Version 1.0
Jul 31 13:52:56 localhost pluto[19518]: | exchange type:
ISAKMP_XCHG_IDPROT
Jul 31 13:52:56 localhost pluto[19518]: | flags: none
Jul 31 13:52:56 localhost pluto[19518]: | message ID: 00 00 00 00
Jul 31 13:52:56 localhost pluto[19518]: | length: 360
Jul 31 13:52:56 localhost pluto[19518]: | processing packet with
exchange type=ISAKMP_XCHG_IDPROT (2)
Jul 31 13:52:56 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:56 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:52:56 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:52:56 localhost pluto[19518]: | state hash entry 30
Jul 31 13:52:56 localhost pluto[19518]: | peer and cookies match on #1,
provided msgid 00000000 vs 00000000
Jul 31 13:52:56 localhost pluto[19518]: | state object #1 found, in
STATE_MAIN_R1
Jul 31 13:52:56 localhost pluto[19518]: | processing connection
roadwarrior[1] W.X.Y.Z
Jul 31 13:52:56 localhost pluto[19518]: | ***parse ISAKMP Key Exchange
Payload:
Jul 31 13:52:56 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NONCE
Jul 31 13:52:56 localhost pluto[19518]: | length: 260
Jul 31 13:52:56 localhost pluto[19518]: | ***parse ISAKMP Nonce Payload:
Jul 31 13:52:56 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NAT-D
Jul 31 13:52:56 localhost pluto[19518]: | length: 24
Jul 31 13:52:56 localhost pluto[19518]: | ***parse ISAKMP NAT-D Payload:
Jul 31 13:52:56 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NAT-D
Jul 31 13:52:56 localhost pluto[19518]: | length: 24
Jul 31 13:52:56 localhost pluto[19518]: | ***parse ISAKMP NAT-D Payload:
Jul 31 13:52:56 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NONE
Jul 31 13:52:56 localhost pluto[19518]: | length: 24
Jul 31 13:52:56 localhost pluto[19518]: "roadwarrior"[1] W.X.Y.Z #1:
NAT-Traversal: Result using draft-ietf-ipsec-nat-t-ike-02/03: peer is NATed
Jul 31 13:52:56 localhost pluto[19518]: | inserting event
EVENT_NAT_T_KEEPALIVE, timeout in 20 seconds
Jul 31 13:52:56 localhost pluto[19518]: | 0: w->pcw_dead: 0 w->pcw_work:
0 cnt: 1
Jul 31 13:52:56 localhost pluto[19518]: | asking helper 0 to do
build_kenonce op on seq: 1
Jul 31 13:52:56 localhost pluto[19518]: | inserting event
EVENT_CRYPTO_FAILED, timeout in 300 seconds for #1
Jul 31 13:52:56 localhost pluto[19522]: ! helper -1 doing build_kenonce
op id: 1
Jul 31 13:52:56 localhost pluto[19518]: | complete state transition with
STF_SUSPEND
Jul 31 13:52:56 localhost pluto[19518]: | next event
EVENT_NAT_T_KEEPALIVE in 20 seconds
Jul 31 13:52:56 localhost pluto[19518]: | processing connection
roadwarrior[1] W.X.Y.Z
Jul 31 13:52:56 localhost pluto[19518]: | started looking for secret for
C=PL, ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=Openswan 2.4.6rc3, E=tgrzelak at wktpolska.com.pl->W.X.Y.Z of kind PPK_PSK
Jul 31 13:52:56 localhost pluto[19518]: | instantiating him to 0.0.0.0
Jul 31 13:52:56 localhost pluto[19518]: | actually looking for secret
for C=PL, ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=Openswan 2.4.6rc3, E=tgrzelak at wktpolska.com.pl->0.0.0.0 of kind PPK_PSK
Jul 31 13:52:56 localhost pluto[19518]: | concluding with best_match=0
best=(nil) (lineno=-1)
Jul 31 13:52:56 localhost pluto[19518]: | complete state transition with
STF_OK
Jul 31 13:52:56 localhost pluto[19518]: "roadwarrior"[1] W.X.Y.Z #1:
transition from state STATE_MAIN_R1 to state STATE_MAIN_R2
Jul 31 13:52:56 localhost pluto[19518]: | sending reply packet to
W.X.Y.Z:13628 (from port=500)
Jul 31 13:52:56 localhost pluto[19518]: | sending 524 bytes for
STATE_MAIN_R1 through eth0:500 to W.X.Y.Z:13628:
Jul 31 13:52:56 localhost pluto[19518]: | inserting event
EVENT_RETRANSMIT, timeout in 10 seconds for #1
Jul 31 13:52:56 localhost pluto[19518]: "roadwarrior"[1] W.X.Y.Z #1:
STATE_MAIN_R2: sent MR2, expecting MI3
Jul 31 13:52:56 localhost pluto[19518]: | modecfg pull: noquirk
policy:push not-client
Jul 31 13:52:56 localhost pluto[19518]: | phase 1 is done, looking for
phase 1 to unpend
Jul 31 13:52:56 localhost pluto[19518]: | next event EVENT_RETRANSMIT in
10 seconds for #1
Jul 31 13:52:56 localhost pluto[19518]: |
Jul 31 13:52:56 localhost pluto[19518]: | *received 1076 bytes from
W.X.Y.Z:13631 on eth0 (port=4500)
Jul 31 13:52:56 localhost pluto[19518]: | **parse ISAKMP Message:
Jul 31 13:52:56 localhost pluto[19518]: | initiator cookie:
Jul 31 13:52:56 localhost pluto[19518]: | f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:56 localhost pluto[19518]: | responder cookie:
Jul 31 13:52:56 localhost pluto[19518]: | d5 74 0c ee 97 35 7d 62
Jul 31 13:52:56 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_ID
Jul 31 13:52:56 localhost pluto[19518]: | ISAKMP version: ISAKMP
Version 1.0
Jul 31 13:52:56 localhost pluto[19518]: | exchange type:
ISAKMP_XCHG_IDPROT
Jul 31 13:52:56 localhost pluto[19518]: | flags: ISAKMP_FLAG_ENCRYPTION
Jul 31 13:52:56 localhost pluto[19518]: | message ID: 00 00 00 00
Jul 31 13:52:56 localhost pluto[19518]: | length: 1076
Jul 31 13:52:56 localhost pluto[19518]: | processing packet with
exchange type=ISAKMP_XCHG_IDPROT (2)
Jul 31 13:52:56 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:56 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:52:56 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:52:56 localhost pluto[19518]: | state hash entry 30
Jul 31 13:52:56 localhost pluto[19518]: | peer and cookies match on #1,
provided msgid 00000000 vs 00000000
Jul 31 13:52:56 localhost pluto[19518]: | state object #1 found, in
STATE_MAIN_R2
Jul 31 13:52:56 localhost pluto[19518]: | processing connection
roadwarrior[1] W.X.Y.Z
Jul 31 13:52:56 localhost pluto[19518]: | ***parse ISAKMP Identification
Payload:
Jul 31 13:52:56 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_CERT
Jul 31 13:52:56 localhost pluto[19518]: | length: 173
Jul 31 13:52:56 localhost pluto[19518]: | ID type: ID_DER_ASN1_DN
Jul 31 13:52:56 localhost pluto[19518]: | DOI specific A: 0
Jul 31 13:52:56 localhost pluto[19518]: | DOI specific B: 0
Jul 31 13:52:56 localhost pluto[19518]: | ***parse ISAKMP Certificate
Payload:
Jul 31 13:52:56 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_SIG
Jul 31 13:52:56 localhost pluto[19518]: | length: 637
Jul 31 13:52:56 localhost pluto[19518]: | cert encoding:
CERT_X509_SIGNATURE
Jul 31 13:52:56 localhost pluto[19518]: | ***parse ISAKMP Signature Payload:
Jul 31 13:52:56 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_CR
Jul 31 13:52:56 localhost pluto[19518]: | length: 68
Jul 31 13:52:56 localhost pluto[19518]: | ***parse ISAKMP Certificate
RequestPayload:
Jul 31 13:52:56 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NONE
Jul 31 13:52:56 localhost pluto[19518]: | length: 165
Jul 31 13:52:56 localhost pluto[19518]: | cert type: CERT_X509_SIGNATURE
Jul 31 13:52:56 localhost pluto[19518]: | removing 5 bytes of padding
Jul 31 13:52:56 localhost pluto[19518]: | DER ASN1 DN: 30 81 a2 31 0b
30 09 06 03 55 04 06 13 02 50 4c
Jul 31 13:52:56 localhost pluto[19518]: | 31 13 30 11 06 03 55 04 08
13 0a 4d 61 6c 6f 70
Jul 31 13:52:56 localhost pluto[19518]: | 6f 6c 73 6b 61 31 0f 30 0d
06 03 55 04 07 13 06
Jul 31 13:52:56 localhost pluto[19518]: | 4b 72 61 6b 6f 77 31 1e 30
1c 06 03 55 04 0a 13
Jul 31 13:52:56 localhost pluto[19518]: | 15 57 4b 54 2d 50 6f 6c 73
6b 61 20 53 70 2e 20
Jul 31 13:52:56 localhost pluto[19518]: | 7a 20 6f 2e 6f 2e 31 11 30
0f 06 03 55 04 0b 13
Jul 31 13:52:56 localhost pluto[19518]: | 08 43 65 6e 74 72 61 6c 61
31 10 30 0e 06 03 55
Jul 31 13:52:56 localhost pluto[19518]: | 04 03 13 07 76 70 6e 74 65
73 74 31 28 30 26 06
Jul 31 13:52:56 localhost pluto[19518]: | 09 2a 86 48 86 f7 0d 01 09
01 16 19 74 67 72 7a
Jul 31 13:52:56 localhost pluto[19518]: | 65 6c 61 6b 40 77 6b 74 70
6f 6c 73 6b 61 2e 63
Jul 31 13:52:56 localhost pluto[19518]: | 6f 6d 2e 70 6c
Jul 31 13:52:56 localhost pluto[19518]: "roadwarrior"[1] W.X.Y.Z #1:
Main mode peer ID is ID_DER_ASN1_DN: 'C=PL, ST=Malopolska, L=Krakow,
O=WKT-Polska Sp. z o.o., OU=Centrala, CN=vpntest,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:52:56 localhost pluto[19518]: | L0 - certificate:
Jul 31 13:52:56 localhost pluto[19518]: | L1 - tbsCertificate:
Jul 31 13:52:56 localhost pluto[19518]: | L2 - DEFAULT v1:
Jul 31 13:52:56 localhost pluto[19518]: | v1
Jul 31 13:52:56 localhost pluto[19518]: | L2 - serialNumber:
Jul 31 13:52:56 localhost pluto[19518]: | L2 - signature:
Jul 31 13:52:56 localhost pluto[19518]: | L3 - algorithmIdentifier:
Jul 31 13:52:56 localhost pluto[19518]: | L4 - algorithm:
Jul 31 13:52:56 localhost pluto[19518]: | 'md5WithRSAEncryption'
Jul 31 13:52:56 localhost pluto[19518]: | L2 - issuer:
Jul 31 13:52:56 localhost pluto[19518]: | 'C=PL, ST=Malopolska,
L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:52:56 localhost pluto[19518]: | L2 - validity:
Jul 31 13:52:56 localhost pluto[19518]: | L3 - notBefore:
Jul 31 13:52:56 localhost pluto[19518]: | L4 - utcTime:
Jul 31 13:52:56 localhost pluto[19518]: | 'Jul 27 07:23:04 UTC 2006'
Jul 31 13:52:56 localhost pluto[19518]: | L3 - notAfter:
Jul 31 13:52:56 localhost pluto[19518]: | L4 - utcTime:
Jul 31 13:52:56 localhost pluto[19518]: | 'Jul 24 07:23:04 UTC 2016'
Jul 31 13:52:56 localhost pluto[19518]: | L2 - subject:
Jul 31 13:52:56 localhost pluto[19518]: | 'C=PL, ST=Malopolska,
L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=vpntest,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:52:56 localhost pluto[19518]: | L2 - subjectPublicKeyInfo:
Jul 31 13:52:57 localhost pluto[19518]: | L3 - algorithm:
Jul 31 13:52:57 localhost pluto[19518]: | L4 - algorithmIdentifier:
Jul 31 13:52:57 localhost pluto[19518]: | L5 - algorithm:
Jul 31 13:52:57 localhost pluto[19518]: | 'rsaEncryption'
Jul 31 13:52:57 localhost pluto[19518]: | L3 - subjectPublicKey:
Jul 31 13:52:57 localhost pluto[19518]: | L4 - RSAPublicKey:
Jul 31 13:52:57 localhost pluto[19518]: | L5 - modulus:
Jul 31 13:52:57 localhost pluto[19518]: | L5 - publicExponent:
Jul 31 13:52:57 localhost pluto[19518]: | L1 - signatureAlgorithm:
Jul 31 13:52:57 localhost pluto[19518]: | L2 - algorithmIdentifier:
Jul 31 13:52:57 localhost pluto[19518]: | L3 - algorithm:
Jul 31 13:52:57 localhost pluto[19518]: | 'md5WithRSAEncryption'
Jul 31 13:52:57 localhost pluto[19518]: | L1 - signatureValue:
Jul 31 13:52:57 localhost pluto[19518]: | signature algorithm:
'md5WithRSAEncryption'
Jul 31 13:52:57 localhost pluto[19518]: | digest: 06 cf 92 37 81 9a
4e 71 dd 5f ba 6d 62 c9 46 e3
Jul 31 13:52:57 localhost pluto[19518]: | decrypted signature:
Jul 31 13:52:57 localhost pluto[19518]: | 00 00 01 ff ff ff ff ff ff
ff ff ff ff ff ff ff
Jul 31 13:52:57 localhost pluto[19518]: | ff ff ff ff ff ff ff ff ff
ff ff ff ff ff ff ff
Jul 31 13:52:57 localhost last message repeated 3 times
Jul 31 13:52:57 localhost pluto[19518]: | ff ff ff ff ff ff ff ff ff
ff ff ff ff ff 00 30
Jul 31 13:52:57 localhost pluto[19518]: | 20 30 0c 06 08 2a 86 48 86
f7 0d 02 05 05 00 04
Jul 31 13:52:57 localhost pluto[19518]: | 10 06 cf 92 37 81 9a 4e 71
dd 5f ba 6d 62 c9 46
Jul 31 13:52:57 localhost pluto[19518]: | e3
Jul 31 13:52:57 localhost pluto[19518]: | signature algorithm:
'md5WithRSAEncryption'
Jul 31 13:52:57 localhost pluto[19518]: | digest: 23 d4 10 08 7c 98
e2 ec bb d1 b2 76 8d d9 19 f6
Jul 31 13:52:57 localhost pluto[19518]: | decrypted signature:
Jul 31 13:52:57 localhost pluto[19518]: | 00 00 01 ff ff ff ff ff ff
ff ff ff ff ff ff ff
Jul 31 13:52:57 localhost pluto[19518]: | ff ff ff ff ff ff ff ff ff
ff ff ff ff ff ff ff
Jul 31 13:52:57 localhost last message repeated 3 times
Jul 31 13:52:57 localhost pluto[19518]: | ff ff ff ff ff ff ff ff ff
ff ff ff ff ff 00 30
Jul 31 13:52:57 localhost pluto[19518]: | 20 30 0c 06 08 2a 86 48 86
f7 0d 02 05 05 00 04
Jul 31 13:52:57 localhost pluto[19518]: | 10 23 d4 10 08 7c 98 e2 ec
bb d1 b2 76 8d d9 19
Jul 31 13:52:57 localhost pluto[19518]: | f6
Jul 31 13:52:57 localhost pluto[19518]: | signature algorithm:
'md5WithRSAEncryption'
Jul 31 13:52:57 localhost pluto[19518]: | digest: 2c 34 b5 f7 de 5f
01 a1 a1 33 25 60 3e 6f 35 e2
Jul 31 13:52:57 localhost pluto[19518]: | decrypted signature:
Jul 31 13:52:57 localhost pluto[19518]: | 00 00 01 ff ff ff ff ff ff
ff ff ff ff ff ff ff
Jul 31 13:52:57 localhost pluto[19518]: | ff ff ff ff ff ff ff ff ff
ff ff ff ff ff ff ff
Jul 31 13:52:57 localhost last message repeated 3 times
Jul 31 13:52:57 localhost pluto[19518]: | ff ff ff ff ff ff ff ff ff
ff ff ff ff ff 00 30
Jul 31 13:52:57 localhost pluto[19518]: | 20 30 0c 06 08 2a 86 48 86
f7 0d 02 05 05 00 04
Jul 31 13:52:57 localhost pluto[19518]: | 10 2c 34 b5 f7 de 5f 01 a1
a1 33 25 60 3e 6f 35
Jul 31 13:52:57 localhost pluto[19518]: | e2
Jul 31 13:52:57 localhost pluto[19518]: | reached self-signed root ca
Jul 31 13:52:57 localhost pluto[19518]: | Public key validated
Jul 31 13:52:57 localhost pluto[19518]: | CR 30 81 9d 31 0b 30 09 06
03 55 04 06 13 02 50 4c
Jul 31 13:52:57 localhost pluto[19518]: | 31 13 30 11 06 03 55 04 08
13 0a 4d 61 6c 6f 70
Jul 31 13:52:57 localhost pluto[19518]: | 6f 6c 73 6b 61 31 0f 30 0d
06 03 55 04 07 13 06
Jul 31 13:52:57 localhost pluto[19518]: | 4b 72 61 6b 6f 77 31 1e 30
1c 06 03 55 04 0a 13
Jul 31 13:52:57 localhost pluto[19518]: | 15 57 4b 54 2d 50 6f 6c 73
6b 61 20 53 70 2e 20
Jul 31 13:52:57 localhost pluto[19518]: | 7a 20 6f 2e 6f 2e 31 11 30
0f 06 03 55 04 0b 13
Jul 31 13:52:57 localhost pluto[19518]: | 08 43 65 6e 74 72 61 6c 61
31 0b 30 09 06 03 55
Jul 31 13:52:57 localhost pluto[19518]: | 04 03 13 02 43 41 31 28 30
26 06 09 2a 86 48 86
Jul 31 13:52:57 localhost pluto[19518]: | f7 0d 01 09 01 16 19 74 67
72 7a 65 6c 61 6b 40
Jul 31 13:52:57 localhost pluto[19518]: | 77 6b 74 70 6f 6c 73 6b 61
2e 63 6f 6d 2e 70 6c
Jul 31 13:52:57 localhost pluto[19518]: | requested CA: 'C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:52:57 localhost pluto[19518]: | started looking for secret for
C=PL, ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=Openswan 2.4.6rc3, E=tgrzelak at wktpolska.com.pl->(none) of kind PPK_RSA
Jul 31 13:52:57 localhost pluto[19518]: | searching for certificate
PPK_RSA:AwEAAdWfZ vs PPK_RSA:AwEAAdWfZ
Jul 31 13:52:57 localhost pluto[19518]: | offered CA: 'C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:52:57 localhost pluto[19518]: "roadwarrior"[1] W.X.Y.Z #1:
switched from "roadwarrior" to "roadwarrior"
Jul 31 13:52:57 localhost pluto[19518]: | instantiated "roadwarrior" for
W.X.Y.Z
Jul 31 13:52:57 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:52:57 localhost pluto[19518]: | processing connection
roadwarrior[1] W.X.Y.Z
Jul 31 13:52:57 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #1:
deleting connection "roadwarrior" instance with peer W.X.Y.Z
{isakmp=#0/ipsec=#0}
Jul 31 13:52:57 localhost pluto[19518]: | required CA is 'C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:52:57 localhost pluto[19518]: | key issuer CA is 'C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
Jul 31 13:52:57 localhost pluto[19518]: | an RSA Sig check passed with
*AwEAAc09k [preloaded key]
Jul 31 13:52:57 localhost pluto[19518]: | thinking about whether to send
my certificate:
Jul 31 13:52:57 localhost pluto[19518]: | I have RSA key:
OAKLEY_RSA_SIG cert.type: CERT_X509_SIGNATURE
Jul 31 13:52:57 localhost pluto[19518]: | sendcert: CERT_ALWAYSSEND
and I did not get a certificate request
Jul 31 13:52:57 localhost pluto[19518]: | so send cert.
Jul 31 13:52:57 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #1: I
am sending my cert
Jul 31 13:52:57 localhost pluto[19518]: | started looking for secret for
C=PL, ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=Openswan 2.4.6rc3, E=tgrzelak at wktpolska.com.pl->C=PL, ST=Malopolska,
L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=vpntest,
E=tgrzelak at wktpolska.com.pl of kind PPK_RSA
Jul 31 13:52:57 localhost pluto[19518]: | searching for certificate
PPK_RSA:AwEAAdWfZ vs PPK_RSA:AwEAAdWfZ
Jul 31 13:52:57 localhost pluto[19518]: | signing hash with RSA Key
*AwEAAdWfZ
Jul 31 13:52:57 localhost pluto[19518]: | complete state transition with
STF_OK
Jul 31 13:52:57 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #1:
transition from state STATE_MAIN_R2 to state STATE_MAIN_R3
Jul 31 13:52:57 localhost pluto[19518]: | sending reply packet to
W.X.Y.Z:13628 (from port=500)
Jul 31 13:52:57 localhost pluto[19518]: | NAT-T: new mapping
W.X.Y.Z:13628/13631)
Jul 31 13:52:57 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:52:57 localhost pluto[19518]: | sending 932 bytes for
STATE_MAIN_R2 through eth0:4500 to W.X.Y.Z:13631:
Jul 31 13:52:57 localhost pluto[19518]: | inserting event
EVENT_SA_EXPIRE, timeout in 28800 seconds for #1
Jul 31 13:52:57 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #1:
STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=OAKLEY_RSA_SIG
cipher=oakley_3des_cbc_192 prf=oakley_sha group=modp2048}
Jul 31 13:52:57 localhost pluto[19518]: | modecfg pull: noquirk
policy:push not-client
Jul 31 13:52:57 localhost pluto[19518]: | phase 1 is done, looking for
phase 1 to unpend
Jul 31 13:52:57 localhost pluto[19518]: | next event
EVENT_NAT_T_KEEPALIVE in 19 seconds
Jul 31 13:52:57 localhost pluto[19518]: |
Jul 31 13:52:57 localhost pluto[19518]: | *received 324 bytes from
W.X.Y.Z:13631 on eth0 (port=4500)
Jul 31 13:52:57 localhost pluto[19518]: | **parse ISAKMP Message:
Jul 31 13:52:57 localhost pluto[19518]: | initiator cookie:
Jul 31 13:52:57 localhost pluto[19518]: | f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:57 localhost pluto[19518]: | responder cookie:
Jul 31 13:52:57 localhost pluto[19518]: | d5 74 0c ee 97 35 7d 62
Jul 31 13:52:57 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_HASH
Jul 31 13:52:57 localhost pluto[19518]: | ISAKMP version: ISAKMP
Version 1.0
Jul 31 13:52:57 localhost pluto[19518]: | exchange type:
ISAKMP_XCHG_QUICK
Jul 31 13:52:57 localhost pluto[19518]: | flags: ISAKMP_FLAG_ENCRYPTION
Jul 31 13:52:57 localhost pluto[19518]: | message ID: 9f a7 f3 31
Jul 31 13:52:57 localhost pluto[19518]: | length: 324
Jul 31 13:52:57 localhost pluto[19518]: | processing packet with
exchange type=ISAKMP_XCHG_QUICK (32)
Jul 31 13:52:57 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:57 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:52:57 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:52:57 localhost pluto[19518]: | state hash entry 30
Jul 31 13:52:57 localhost pluto[19518]: | peer and cookies match on #1,
provided msgid 9fa7f331 vs 00000000
Jul 31 13:52:57 localhost pluto[19518]: | state object not found
Jul 31 13:52:57 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:57 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:52:57 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:52:57 localhost pluto[19518]: | state hash entry 30
Jul 31 13:52:57 localhost pluto[19518]: | peer and cookies match on #1,
provided msgid 00000000 vs 00000000
Jul 31 13:52:57 localhost pluto[19518]: | state object #1 found, in
STATE_MAIN_R3
Jul 31 13:52:57 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:52:57 localhost pluto[19518]: | ***parse ISAKMP Hash Payload:
Jul 31 13:52:57 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_SA
Jul 31 13:52:57 localhost pluto[19518]: | length: 24
Jul 31 13:52:57 localhost pluto[19518]: | ***parse ISAKMP Security
Association Payload:
Jul 31 13:52:57 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NONCE
Jul 31 13:52:57 localhost pluto[19518]: | length: 184
Jul 31 13:52:57 localhost pluto[19518]: | DOI: ISAKMP_DOI_IPSEC
Jul 31 13:52:57 localhost pluto[19518]: | ***parse ISAKMP Nonce Payload:
Jul 31 13:52:57 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_ID
Jul 31 13:52:57 localhost pluto[19518]: | length: 24
Jul 31 13:52:57 localhost pluto[19518]: | ***parse ISAKMP Identification
Payload (IPsec DOI):
Jul 31 13:52:57 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_ID
Jul 31 13:52:57 localhost pluto[19518]: | length: 33
Jul 31 13:52:57 localhost pluto[19518]: | ID type: ID_FQDN
Jul 31 13:52:57 localhost pluto[19518]: | Protocol ID: 17
Jul 31 13:52:57 localhost pluto[19518]: | port: 1701
Jul 31 13:52:57 localhost pluto[19518]: | ***parse ISAKMP Identification
Payload (IPsec DOI):
Jul 31 13:52:57 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NAT-OA
Jul 31 13:52:57 localhost pluto[19518]: | length: 12
Jul 31 13:52:57 localhost pluto[19518]: | ID type: ID_IPV4_ADDR
Jul 31 13:52:57 localhost pluto[19518]: | Protocol ID: 17
Jul 31 13:52:57 localhost pluto[19518]: | port: 1701
Jul 31 13:52:57 localhost pluto[19518]: | ***parse ISAKMP NAT-OA Payload:
Jul 31 13:52:57 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NONE
Jul 31 13:52:57 localhost pluto[19518]: | length: 12
Jul 31 13:52:57 localhost pluto[19518]: | ID type: ID_IPV4_ADDR
Jul 31 13:52:57 localhost pluto[19518]: | removing 7 bytes of padding
Jul 31 13:52:57 localhost pluto[19518]: | our client is A.B.C.D
Jul 31 13:52:57 localhost pluto[19518]: | our client protocol/port is
17/1701
Jul 31 13:52:57 localhost pluto[19518]: | duplicating state object #1
Jul 31 13:52:57 localhost pluto[19518]: | creating state object #2 at
0x81073c8
Jul 31 13:52:57 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:52:57 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:57 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:52:57 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:52:57 localhost pluto[19518]: | state hash entry 30
Jul 31 13:52:57 localhost pluto[19518]: | inserting event
EVENT_SO_DISCARD, timeout in 0 seconds for #2
Jul 31 13:52:57 localhost pluto[19518]: | NAT-OA: 00 00 00 0c 01 00 00
00 0a 33 08 d0
Jul 31 13:52:57 localhost pluto[19518]: | ****parse IPsec DOI SIT:
Jul 31 13:52:57 localhost pluto[19518]: | IPsec DOI SIT:
SIT_IDENTITY_ONLY
Jul 31 13:52:57 localhost pluto[19518]: | ****parse ISAKMP Proposal Payload:
Jul 31 13:52:57 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NONE
Jul 31 13:52:57 localhost pluto[19518]: | length: 172
Jul 31 13:52:57 localhost pluto[19518]: | proposal number: 1
Jul 31 13:52:57 localhost pluto[19518]: | protocol ID: PROTO_IPSEC_ESP
Jul 31 13:52:57 localhost pluto[19518]: | SPI size: 4
Jul 31 13:52:57 localhost pluto[19518]: | number of transforms: 4
Jul 31 13:52:57 localhost pluto[19518]: | parsing 4 raw bytes of ISAKMP
Proposal Payload into SPI
Jul 31 13:52:57 localhost pluto[19518]: | SPI 92 10 35 82
Jul 31 13:52:57 localhost pluto[19518]: | *****parse ISAKMP Transform
Payload (ESP):
Jul 31 13:52:57 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_T
Jul 31 13:52:57 localhost pluto[19518]: | length: 40
Jul 31 13:52:57 localhost pluto[19518]: | transform number: 1
Jul 31 13:52:57 localhost pluto[19518]: | transform ID: ESP_3DES
Jul 31 13:52:57 localhost pluto[19518]: | ******parse ISAKMP IPsec DOI
attribute:
Jul 31 13:52:57 localhost pluto[19518]: | af+type: SA_LIFE_TYPE
Jul 31 13:52:57 localhost pluto[19518]: | length/value: 1
Jul 31 13:52:57 localhost pluto[19518]: | [1 is SA_LIFE_TYPE_SECONDS]
Jul 31 13:52:57 localhost pluto[19518]: | ******parse ISAKMP IPsec DOI
attribute:
Jul 31 13:52:57 localhost pluto[19518]: | af+type: SA_LIFE_DURATION
(variable length)
Jul 31 13:52:57 localhost pluto[19518]: | length/value: 4
Jul 31 13:52:57 localhost pluto[19518]: | long duration: 3600
Jul 31 13:52:57 localhost pluto[19518]: | ******parse ISAKMP IPsec DOI
attribute:
Jul 31 13:52:57 localhost pluto[19518]: | af+type: SA_LIFE_TYPE
Jul 31 13:52:57 localhost pluto[19518]: | length/value: 2
Jul 31 13:52:57 localhost pluto[19518]: | [2 is SA_LIFE_TYPE_KBYTES]
Jul 31 13:52:57 localhost pluto[19518]: | ******parse ISAKMP IPsec DOI
attribute:
Jul 31 13:52:57 localhost pluto[19518]: | af+type: SA_LIFE_DURATION
(variable length)
Jul 31 13:52:57 localhost pluto[19518]: | length/value: 4
Jul 31 13:52:57 localhost pluto[19518]: | long duration: 250000
Jul 31 13:52:57 localhost pluto[19518]: | ******parse ISAKMP IPsec DOI
attribute:
Jul 31 13:52:57 localhost pluto[19518]: | af+type: ENCAPSULATION_MODE
Jul 31 13:52:57 localhost pluto[19518]: | length/value: 61444
Jul 31 13:52:57 localhost pluto[19518]: | [61444 is
ENCAPSULATION_MODE_UDP_TRANSPORT]
Jul 31 13:52:57 localhost pluto[19518]: | ******parse ISAKMP IPsec DOI
attribute:
Jul 31 13:52:57 localhost pluto[19518]: | af+type: AUTH_ALGORITHM
Jul 31 13:52:57 localhost pluto[19518]: | length/value: 1
Jul 31 13:52:57 localhost pluto[19518]: | [1 is AUTH_ALGORITHM_HMAC_MD5]
Jul 31 13:52:57 localhost pluto[19518]: | 0: w->pcw_dead: 0 w->pcw_work:
0 cnt: 1
Jul 31 13:52:57 localhost pluto[19518]: | asking helper 0 to do
build_nonce op on seq: 2
Jul 31 13:52:57 localhost pluto[19518]: | inserting event
EVENT_CRYPTO_FAILED, timeout in 300 seconds for #2
Jul 31 13:52:57 localhost pluto[19522]: ! helper -1 doing build_nonce op
id: 2
Jul 31 13:52:57 localhost pluto[19518]: | complete state transition with
STF_SUSPEND
Jul 31 13:52:57 localhost pluto[19518]: | next event
EVENT_NAT_T_KEEPALIVE in 19 seconds
Jul 31 13:52:57 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:52:57 localhost pluto[19518]: | ****parse IPsec DOI SIT:
Jul 31 13:52:57 localhost pluto[19518]: | IPsec DOI SIT:
SIT_IDENTITY_ONLY
Jul 31 13:52:57 localhost pluto[19518]: | ****parse ISAKMP Proposal Payload:
Jul 31 13:52:57 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NONE
Jul 31 13:52:57 localhost pluto[19518]: | length: 172
Jul 31 13:52:57 localhost pluto[19518]: | proposal number: 1
Jul 31 13:52:57 localhost pluto[19518]: | protocol ID: PROTO_IPSEC_ESP
Jul 31 13:52:57 localhost pluto[19518]: | SPI size: 4
Jul 31 13:52:57 localhost pluto[19518]: | number of transforms: 4
Jul 31 13:52:57 localhost pluto[19518]: | parsing 4 raw bytes of ISAKMP
Proposal Payload into SPI
Jul 31 13:52:57 localhost pluto[19518]: | SPI 92 10 35 82
Jul 31 13:52:57 localhost pluto[19518]: | *****parse ISAKMP Transform
Payload (ESP):
Jul 31 13:52:57 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_T
Jul 31 13:52:57 localhost pluto[19518]: | length: 40
Jul 31 13:52:57 localhost pluto[19518]: | transform number: 1
Jul 31 13:52:57 localhost pluto[19518]: | transform ID: ESP_3DES
Jul 31 13:52:57 localhost pluto[19518]: | ******parse ISAKMP IPsec DOI
attribute:
Jul 31 13:52:57 localhost pluto[19518]: | af+type: SA_LIFE_TYPE
Jul 31 13:52:57 localhost pluto[19518]: | length/value: 1
Jul 31 13:52:57 localhost pluto[19518]: | [1 is SA_LIFE_TYPE_SECONDS]
Jul 31 13:52:57 localhost pluto[19518]: | ******parse ISAKMP IPsec DOI
attribute:
Jul 31 13:52:57 localhost pluto[19518]: | af+type: SA_LIFE_DURATION
(variable length)
Jul 31 13:52:57 localhost pluto[19518]: | length/value: 4
Jul 31 13:52:57 localhost pluto[19518]: | long duration: 3600
Jul 31 13:52:57 localhost pluto[19518]: | ******parse ISAKMP IPsec DOI
attribute:
Jul 31 13:52:57 localhost pluto[19518]: | af+type: SA_LIFE_TYPE
Jul 31 13:52:57 localhost pluto[19518]: | length/value: 2
Jul 31 13:52:57 localhost pluto[19518]: | [2 is SA_LIFE_TYPE_KBYTES]
Jul 31 13:52:57 localhost pluto[19518]: | ******parse ISAKMP IPsec DOI
attribute:
Jul 31 13:52:57 localhost pluto[19518]: | af+type: SA_LIFE_DURATION
(variable length)
Jul 31 13:52:57 localhost pluto[19518]: | length/value: 4
Jul 31 13:52:57 localhost pluto[19518]: | long duration: 250000
Jul 31 13:52:57 localhost pluto[19518]: | ******parse ISAKMP IPsec DOI
attribute:
Jul 31 13:52:57 localhost pluto[19518]: | af+type: ENCAPSULATION_MODE
Jul 31 13:52:57 localhost pluto[19518]: | length/value: 61444
Jul 31 13:52:57 localhost pluto[19518]: | [61444 is
ENCAPSULATION_MODE_UDP_TRANSPORT]
Jul 31 13:52:57 localhost pluto[19518]: | ******parse ISAKMP IPsec DOI
attribute:
Jul 31 13:52:57 localhost pluto[19518]: | af+type: AUTH_ALGORITHM
Jul 31 13:52:57 localhost pluto[19518]: | length/value: 1
Jul 31 13:52:57 localhost pluto[19518]: | [1 is AUTH_ALGORITHM_HMAC_MD5]
Jul 31 13:52:57 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #2:
responding to Quick Mode {msgid:31f3a79f}
Jul 31 13:52:57 localhost pluto[19518]: |
compute_proto_keymat:needed_len (after ESP enc)=24
Jul 31 13:52:57 localhost pluto[19518]: |
compute_proto_keymat:needed_len (after ESP auth)=40
Jul 31 13:52:57 localhost pluto[19518]: | install_inbound_ipsec_sa()
checking if we can route
Jul 31 13:52:57 localhost pluto[19518]: | route owner of
"roadwarrior"[2] W.X.Y.Z unrouted: NULL; eroute owner: NULL
Jul 31 13:52:57 localhost pluto[19518]: | could_route called for
roadwarrior (kind=CK_INSTANCE)
Jul 31 13:52:57 localhost pluto[19518]: | add inbound eroute
W.X.Y.Z/32:1701 --17-> A.B.C.D/32:1701 => tun.10000 at A.B.C.D (raw_eroute)
Jul 31 13:52:57 localhost pluto[19518]: | complete state transition with
STF_OK
Jul 31 13:52:57 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #2:
transition from state STATE_QUICK_R0 to state STATE_QUICK_R1
Jul 31 13:52:57 localhost pluto[19518]: | sending reply packet to
W.X.Y.Z:13631 (from port=4500)
Jul 31 13:52:57 localhost pluto[19518]: | sending 188 bytes for
STATE_QUICK_R0 through eth0:4500 to W.X.Y.Z:13631:
Jul 31 13:52:57 localhost pluto[19518]: | inserting event
EVENT_RETRANSMIT, timeout in 10 seconds for #2
Jul 31 13:52:58 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #2:
STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2
Jul 31 13:52:58 localhost pluto[19518]: | modecfg pull: noquirk
policy:push not-client
Jul 31 13:52:58 localhost pluto[19518]: | phase 1 is done, looking for
phase 1 to unpend
Jul 31 13:52:58 localhost pluto[19518]: | next event EVENT_RETRANSMIT in
10 seconds for #2
Jul 31 13:52:58 localhost pluto[19518]: |
Jul 31 13:52:58 localhost pluto[19518]: | *received 324 bytes from
W.X.Y.Z:13631 on eth0 (port=4500)
Jul 31 13:52:58 localhost pluto[19518]: | **parse ISAKMP Message:
Jul 31 13:52:58 localhost pluto[19518]: | initiator cookie:
Jul 31 13:52:58 localhost pluto[19518]: | f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:58 localhost pluto[19518]: | responder cookie:
Jul 31 13:52:58 localhost pluto[19518]: | d5 74 0c ee 97 35 7d 62
Jul 31 13:52:58 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_HASH
Jul 31 13:52:58 localhost pluto[19518]: | ISAKMP version: ISAKMP
Version 1.0
Jul 31 13:52:58 localhost pluto[19518]: | exchange type:
ISAKMP_XCHG_QUICK
Jul 31 13:52:58 localhost pluto[19518]: | flags: ISAKMP_FLAG_ENCRYPTION
Jul 31 13:52:58 localhost pluto[19518]: | message ID: 9f a7 f3 31
Jul 31 13:52:58 localhost pluto[19518]: | length: 324
Jul 31 13:52:58 localhost pluto[19518]: | processing packet with
exchange type=ISAKMP_XCHG_QUICK (32)
Jul 31 13:52:58 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:58 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:52:58 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:52:58 localhost pluto[19518]: | state hash entry 30
Jul 31 13:52:58 localhost pluto[19518]: | peer and cookies match on #2,
provided msgid 9fa7f331 vs 9fa7f331
Jul 31 13:52:58 localhost pluto[19518]: | state object #2 found, in
STATE_QUICK_R1
Jul 31 13:52:58 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:52:58 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #2:
next payload type of ISAKMP Hash Payload has an unknown value: 191
Jul 31 13:52:58 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #2:
malformed payload in packet
Jul 31 13:52:58 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #2:
sending notification PAYLOAD_MALFORMED to W.X.Y.Z:13631
Jul 31 13:52:58 localhost pluto[19518]: | sending 40 bytes for
notification packet through eth0:4500 to W.X.Y.Z:13631:
Jul 31 13:52:58 localhost pluto[19518]: | next event EVENT_RETRANSMIT in
9 seconds for #2
Jul 31 13:52:58 localhost pluto[19518]: |
Jul 31 13:52:58 localhost pluto[19518]: | *received 52 bytes from
W.X.Y.Z:13631 on eth0 (port=4500)
Jul 31 13:52:58 localhost pluto[19518]: | **parse ISAKMP Message:
Jul 31 13:52:58 localhost pluto[19518]: | initiator cookie:
Jul 31 13:52:58 localhost pluto[19518]: | f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:58 localhost pluto[19518]: | responder cookie:
Jul 31 13:52:58 localhost pluto[19518]: | d5 74 0c ee 97 35 7d 62
Jul 31 13:52:58 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_HASH
Jul 31 13:52:58 localhost pluto[19518]: | ISAKMP version: ISAKMP
Version 1.0
Jul 31 13:52:58 localhost pluto[19518]: | exchange type:
ISAKMP_XCHG_QUICK
Jul 31 13:52:58 localhost pluto[19518]: | flags: ISAKMP_FLAG_ENCRYPTION
Jul 31 13:52:58 localhost pluto[19518]: | message ID: 9f a7 f3 31
Jul 31 13:52:58 localhost pluto[19518]: | length: 52
Jul 31 13:52:58 localhost pluto[19518]: | processing packet with
exchange type=ISAKMP_XCHG_QUICK (32)
Jul 31 13:52:58 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:52:58 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:52:58 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:52:58 localhost pluto[19518]: | state hash entry 30
Jul 31 13:52:58 localhost pluto[19518]: | peer and cookies match on #2,
provided msgid 9fa7f331 vs 9fa7f331
Jul 31 13:52:58 localhost pluto[19518]: | state object #2 found, in
STATE_QUICK_R1
Jul 31 13:52:58 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:52:58 localhost pluto[19518]: | ***parse ISAKMP Hash Payload:
Jul 31 13:52:58 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NONE
Jul 31 13:52:58 localhost pluto[19518]: | length: 24
Jul 31 13:52:58 localhost pluto[19518]: | install_ipsec_sa() for #2:
outbound only
Jul 31 13:52:58 localhost pluto[19518]: | route owner of
"roadwarrior"[2] W.X.Y.Z unrouted: NULL; eroute owner: NULL
Jul 31 13:52:58 localhost pluto[19518]: | could_route called for
roadwarrior (kind=CK_INSTANCE)
Jul 31 13:52:58 localhost pluto[19518]: | sr for #2: unrouted
Jul 31 13:52:58 localhost pluto[19518]: | route owner of
"roadwarrior"[2] W.X.Y.Z unrouted: NULL; eroute owner: NULL
Jul 31 13:52:58 localhost pluto[19518]: | eroute_connection add eroute
A.B.C.D/32:1701 --17-> W.X.Y.Z/32:1701 => esp.92103582 at W.X.Y.Z (raw_eroute)
Jul 31 13:52:58 localhost pluto[19518]: | command executing up-host
Jul 31 13:52:58 localhost pluto[19518]: | executing up-host: 2>&1
PLUTO_VERSION='1.1' PLUTO_VERB='up-host' PLUTO_CONNECTION='roadwarrior'
PLUTO_NEXT_HOP='W.X.Y.Z' PLUTO_INTERFACE='eth0' PLUTO_ME='A.B.C.D'
PLUTO_MY_ID='C=PL, ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o.,
OU=Centrala, CN=Openswan 2.4.6rc3, E=tgrzelak at wktpolska.com.pl'
PLUTO_MY_CLIENT='A.B.C.D/32' PLUTO_MY_CLIENT_NET='A.B.C.D'
PLUTO_MY_CLIENT_MASK='255.255.255.255' PLUTO_MY_PORT='1701'
PLUTO_MY_PROTOCOL='17' PLUTO_PEER='W.X.Y.Z' PLUTO_PEER_ID='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=vpntest, E=tgrzelak at wktpolska.com.pl' PLUTO_PEER_CLIENT='W.X.Y.Z/32'
PLUTO_PEER_CLIENT_NET='W.X.Y.Z' PLUTO_PEER_CLIENT_MASK='255.255.255.255'
PLUTO_PEER_PORT='1701' PLUTO_PEER_PROTOCOL='17' PLUTO_PEER_CA='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
PLUTO_CONN_POLICY='RSASIG+ENCRYPT+COMPRESS+TUNNEL+DONTREKEY' ipsec _updown
Jul 31 13:52:58 localhost pluto[19518]: | route_and_eroute:
firewall_notified: true
Jul 31 13:52:58 localhost pluto[19518]: | command executing prepare-host
Jul 31 13:52:58 localhost pluto[19518]: | executing prepare-host: 2>&1
PLUTO_VERSION='1.1' PLUTO_VERB='prepare-host'
PLUTO_CONNECTION='roadwarrior' PLUTO_NEXT_HOP='W.X.Y.Z'
PLUTO_INTERFACE='eth0' PLUTO_ME='A.B.C.D' PLUTO_MY_ID='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=Openswan 2.4.6rc3, E=tgrzelak at wktpolska.com.pl'
PLUTO_MY_CLIENT='A.B.C.D/32' PLUTO_MY_CLIENT_NET='A.B.C.D'
PLUTO_MY_CLIENT_MASK='255.255.255.255' PLUTO_MY_PORT='1701'
PLUTO_MY_PROTOCOL='17' PLUTO_PEER='W.X.Y.Z' PLUTO_PEER_ID='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=vpntest, E=tgrzelak at wktpolska.com.pl' PLUTO_PEER_CLIENT='W.X.Y.Z/32'
PLUTO_PEER_CLIENT_NET='W.X.Y.Z' PLUTO_PEER_CLIENT_MASK='255.255.255.255'
PLUTO_PEER_PORT='1701' PLUTO_PEER_PROTOCOL='17' PLUTO_PEER_CA='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
PLUTO_CONN_POLICY='RSASIG+ENCRYPT+COMPRESS+TUNNEL+DONTREKEY' ipsec _updown
Jul 31 13:52:58 localhost pluto[19518]: | command executing route-host
Jul 31 13:52:58 localhost pluto[19518]: | executing route-host: 2>&1
PLUTO_VERSION='1.1' PLUTO_VERB='route-host'
PLUTO_CONNECTION='roadwarrior' PLUTO_NEXT_HOP='W.X.Y.Z'
PLUTO_INTERFACE='eth0' PLUTO_ME='A.B.C.D' PLUTO_MY_ID='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=Openswan 2.4.6rc3, E=tgrzelak at wktpolska.com.pl'
PLUTO_MY_CLIENT='A.B.C.D/32' PLUTO_MY_CLIENT_NET='A.B.C.D'
PLUTO_MY_CLIENT_MASK='255.255.255.255' PLUTO_MY_PORT='1701'
PLUTO_MY_PROTOCOL='17' PLUTO_PEER='W.X.Y.Z' PLUTO_PEER_ID='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=vpntest, E=tgrzelak at wktpolska.com.pl' PLUTO_PEER_CLIENT='W.X.Y.Z/32'
PLUTO_PEER_CLIENT_NET='W.X.Y.Z' PLUTO_PEER_CLIENT_MASK='255.255.255.255'
PLUTO_PEER_PORT='1701' PLUTO_PEER_PROTOCOL='17' PLUTO_PEER_CA='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
PLUTO_CONN_POLICY='RSASIG+ENCRYPT+COMPRESS+TUNNEL+DONTREKEY' ipsec _updown
Jul 31 13:52:58 localhost pluto[19518]: | route_and_eroute: instance
"roadwarrior"[2] W.X.Y.Z, setting eroute_owner
{spd=0x8107e1c,sr=0x8107e1c} to #2 (was #0) (newest_ipsec_sa=#0)
Jul 31 13:52:58 localhost pluto[19518]: | complete state transition with
STF_OK
Jul 31 13:52:58 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #2:
transition from state STATE_QUICK_R1 to state STATE_QUICK_R2
Jul 31 13:52:58 localhost pluto[19518]: | inserting event
EVENT_SA_EXPIRE, timeout in 3600 seconds for #2
Jul 31 13:52:58 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #2:
STATE_QUICK_R2: IPsec SA established {ESP=>0x92103582 <0xb8fbb2f0
xfrm=3DES_0-HMAC_MD5 NATD=W.X.Y.Z:13631 DPD=none}
Jul 31 13:52:58 localhost pluto[19518]: | modecfg pull: noquirk
policy:push not-client
Jul 31 13:52:58 localhost pluto[19518]: | phase 1 is done, looking for
phase 1 to unpend
Jul 31 13:52:58 localhost pluto[19518]: | next event
EVENT_NAT_T_KEEPALIVE in 18 seconds
Jul 31 13:53:03 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:03 localhost pluto[19518]: | 92 10 35 82 00 00 00 04 8d
51 f2 c8 a9 92 10 65
Jul 31 13:53:03 localhost pluto[19518]: | 8d c9 b7 72 50 2e ec 70 8f
08 78 63 74 b5 10 7a
Jul 31 13:53:03 localhost pluto[19518]: | a7 cd dd 69 80 79 2a 66 79
98 20 b1 7b 94 d0 4c
Jul 31 13:53:03 localhost pluto[19518]: | a3 ee 02 09 4c 40 58 68 49
8e 61 23 98 2a 37 03
Jul 31 13:53:03 localhost pluto[19518]: | 0e 0f e1 73 5c ff 1a 45 2e
28 68 9e 90 21 95 d2
Jul 31 13:53:03 localhost pluto[19518]: | 0d e4 c5 c7 9a 4d 8e 47 35
bc f0 6e 1a ba 12 d3
Jul 31 13:53:03 localhost pluto[19518]: | 4f 0f 0f a8 9e 7f 8a fa 46
56 b7 f4 57 27 4f 06
Jul 31 13:53:03 localhost pluto[19518]: | 88 49 fb 69 9b e9 e1 41 4a
76 21 af 22 e8 55 df
Jul 31 13:53:03 localhost pluto[19518]: | 86 18 0c c3 e0 a2 54 c9 64
d9 86 8b be 54 b4 5e
Jul 31 13:53:03 localhost pluto[19518]: | 90 f2 30 24
Jul 31 13:53:03 localhost pluto[19518]: | control:
Jul 31 13:53:03 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | name:
Jul 31 13:53:03 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:03 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:03 localhost pluto[19518]: | 92 10 35 82 00 00 00 05 86
18 0c c3 e0 a2 54 c9
Jul 31 13:53:03 localhost pluto[19518]: | 53 85 af 14 06 b9 87 d9 22
1d e1 69 5a e3 f9 70
Jul 31 13:53:03 localhost pluto[19518]: | 0f e3 40 1c 27 75 dc 27 d1
4f 48 11 38 90 db c6
Jul 31 13:53:03 localhost pluto[19518]: | 1b ad 51 4f a2 e8 3c 54 d6
aa e9 d0 00 01 dd 28
Jul 31 13:53:03 localhost pluto[19518]: | b4 90 8d a1 93 96 49 ea e0
1c 2f 67 7b 2a 88 82
Jul 31 13:53:03 localhost pluto[19518]: | 52 30 81 57 28 b6 95 61 58
62 ef 22 ee 17 b9 05
Jul 31 13:53:03 localhost pluto[19518]: | c8 ec a9 c8 4e 96 49 60 6e
a4 ce 28 80 d4 3f d6
Jul 31 13:53:03 localhost pluto[19518]: | df 50 62 d8 a8 3a d4 55 6a
7f 08 c5 45 75 01 fc
Jul 31 13:53:03 localhost pluto[19518]: | 53 54 e3 14 0f 47 57 fa 83
e6 37 d6 fd 4c 23 df
Jul 31 13:53:03 localhost pluto[19518]: | 3a c0 35 c8
Jul 31 13:53:03 localhost pluto[19518]: | control:
Jul 31 13:53:03 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | name:
Jul 31 13:53:03 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:03 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:03 localhost pluto[19518]: | 92 10 35 82 00 00 00 06 53
54 e3 14 0f 47 57 fa
Jul 31 13:53:03 localhost pluto[19518]: | 3a 3f 21 fb 93 65 d8 4c 18
a1 68 25 f2 dc e8 83
Jul 31 13:53:03 localhost pluto[19518]: | 9e c3 74 68 2e b5 39 3c 78
dd 59 8d 72 b3 14 ee
Jul 31 13:53:03 localhost pluto[19518]: | ae 64 f3 b0 03 87 06 d8 cb
e3 9d 37 da 9a c9 6f
Jul 31 13:53:03 localhost pluto[19518]: | 16 71 82 7a f8 f6 20 a1 aa
8a 9b de 85 8b ce 25
Jul 31 13:53:03 localhost pluto[19518]: | f4 be a7 03 6e ef a6 e8 fa
e3 0f 92 6a 92 da 1b
Jul 31 13:53:03 localhost pluto[19518]: | 51 d2 cd 0e d1 a8 0a 42 32
0a 63 02 93 16 00 97
Jul 31 13:53:03 localhost pluto[19518]: | 1d 91 bf f2 01 99 f1 cb 4e
13 0d e6 e9 5b 34 95
Jul 31 13:53:03 localhost pluto[19518]: | 5f 0f 89 0f 86 e1 29 22 39
59 44 cb 86 5c a8 c1
Jul 31 13:53:03 localhost pluto[19518]: | ab 82 5f 3b
Jul 31 13:53:03 localhost pluto[19518]: | control:
Jul 31 13:53:03 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: | name:
Jul 31 13:53:03 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:03 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:03 localhost pluto[19518]: | next event
EVENT_NAT_T_KEEPALIVE in 13 seconds
Jul 31 13:53:07 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:07 localhost pluto[19518]: | 92 10 35 82 00 00 00 08 3c
d8 bc 7b 58 57 85 a3
Jul 31 13:53:07 localhost pluto[19518]: | a4 0a 2f 5e c2 88 2d 99 5f
9f ae c8 53 ef 18 6b
Jul 31 13:53:07 localhost pluto[19518]: | ad 13 6b 9c 9e 85 1f f1 2b
fe f8 12 00 fa ba ca
Jul 31 13:53:07 localhost pluto[19518]: | 83 0f 46 76
Jul 31 13:53:07 localhost pluto[19518]: | control:
Jul 31 13:53:07 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | name:
Jul 31 13:53:07 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:07 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:07 localhost pluto[19518]: | 92 10 35 82 00 00 00 09 ad
13 6b 9c 9e 85 1f f1
Jul 31 13:53:07 localhost pluto[19518]: | a8 5c 7f 19 4c 10 45 cd e9
51 62 b1 fb 86 2e 14
Jul 31 13:53:07 localhost pluto[19518]: | fd 8c 69 05 6c 4d 0a d5 af
9d f2 64 84 ed fe b3
Jul 31 13:53:07 localhost pluto[19518]: | 62 fb a9 07 20 e8 57 0b 4a
0b 77 ea cd 83 fb f5
Jul 31 13:53:07 localhost pluto[19518]: | 32 f7 06 98 35 54 12 94 28
3e 2a 4e 87 67 74 df
Jul 31 13:53:07 localhost pluto[19518]: | 48 61 93 bf
Jul 31 13:53:07 localhost pluto[19518]: | control:
Jul 31 13:53:07 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | name:
Jul 31 13:53:07 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:07 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:07 localhost pluto[19518]: | 92 10 35 82 00 00 00 0a 32
f7 06 98 35 54 12 94
Jul 31 13:53:07 localhost pluto[19518]: | 47 51 30 a3 e7 3e 76 01 d7
00 5f 07 f1 b3 04 37
Jul 31 13:53:07 localhost pluto[19518]: | 4e 15 16 ac ff e7 9f 65 90
1b 88 69 df fe 10 c0
Jul 31 13:53:07 localhost pluto[19518]: | c4 77 1e ee 10 38 7d e3 08
50 39 e6 28 e9 fe d1
Jul 31 13:53:07 localhost pluto[19518]: | 09 6b fa 1e c2 d2 d6 05 81
71 41 d9 be 43 f7 6d
Jul 31 13:53:07 localhost pluto[19518]: | 41 a8 53 3c
Jul 31 13:53:07 localhost pluto[19518]: | control:
Jul 31 13:53:07 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: | name:
Jul 31 13:53:07 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:07 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:07 localhost pluto[19518]: | next event
EVENT_NAT_T_KEEPALIVE in 9 seconds
Jul 31 13:53:10 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:10 localhost pluto[19518]: | 92 10 35 82 00 00 00 0b 09
6b fa 1e c2 d2 d6 05
Jul 31 13:53:10 localhost pluto[19518]: | d9 e4 aa 7f 6d 5f 7e 4a 3f
15 17 2e d5 95 c3 86
Jul 31 13:53:10 localhost pluto[19518]: | 38 c5 6a fc 30 1c 01 0b 96
b2 94 9c 90 18 4b fb
Jul 31 13:53:10 localhost pluto[19518]: | a3 d7 98 4d fc 7b 0d da 90
72 75 4c 50 52 25 b6
Jul 31 13:53:10 localhost pluto[19518]: | f7 58 69 34 40 44 1f 52 6c
2d aa 52 82 01 4d 28
Jul 31 13:53:10 localhost pluto[19518]: | 75 b0 76 9b
Jul 31 13:53:10 localhost pluto[19518]: | control:
Jul 31 13:53:10 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | name:
Jul 31 13:53:10 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:10 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:10 localhost pluto[19518]: | 92 10 35 82 00 00 00 0c f7
58 69 34 40 44 1f 52
Jul 31 13:53:10 localhost pluto[19518]: | 1e 0f 50 ec 8f 4a e4 5a 8f
b5 0d 75 ee f9 6e e2
Jul 31 13:53:10 localhost pluto[19518]: | 9d f3 bf 06 e1 16 35 41 36
d8 48 83 5b 5c 7e 17
Jul 31 13:53:10 localhost pluto[19518]: | 97 bd b3 7a e5 cd b3 6e c7
c4 94 c1 5a 98 61 57
Jul 31 13:53:10 localhost pluto[19518]: | 7f b5 1f 87 7c 50 41 e9 99
17 85 ce d7 43 64 c6
Jul 31 13:53:10 localhost pluto[19518]: | a9 38 a1 24
Jul 31 13:53:10 localhost pluto[19518]: | control:
Jul 31 13:53:10 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | name:
Jul 31 13:53:10 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:10 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:10 localhost pluto[19518]: | 92 10 35 82 00 00 00 0d 7f
b5 1f 87 7c 50 41 e9
Jul 31 13:53:10 localhost pluto[19518]: | 46 68 c2 68 01 70 3c f8 1c
63 bf c4 c6 53 69 66
Jul 31 13:53:10 localhost pluto[19518]: | 93 45 68 13 35 ed 35 ac 4a
e3 42 c4 7c ff 42 46
Jul 31 13:53:10 localhost pluto[19518]: | 58 f4 1b 7b 04 c3 ed 81 7f
02 f5 6c 8a f5 49 4f
Jul 31 13:53:10 localhost pluto[19518]: | c3 fe ff d7 a2 cf df 1d 05
51 4e 25 cd 01 f8 45
Jul 31 13:53:10 localhost pluto[19518]: | 9c f5 b4 40
Jul 31 13:53:10 localhost pluto[19518]: | control:
Jul 31 13:53:10 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: | name:
Jul 31 13:53:10 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:10 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:10 localhost pluto[19518]: | next event
EVENT_NAT_T_KEEPALIVE in 6 seconds
Jul 31 13:53:16 localhost pluto[19518]: |
Jul 31 13:53:16 localhost pluto[19518]: | *time to handle event
Jul 31 13:53:16 localhost pluto[19518]: | handling event
EVENT_NAT_T_KEEPALIVE
Jul 31 13:53:16 localhost pluto[19518]: | event after this is
EVENT_PENDING_PHASE2 in 29 seconds
Jul 31 13:53:16 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:53:16 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:53:16 localhost pluto[19518]: | next event
EVENT_PENDING_PHASE2 in 29 seconds
Jul 31 13:53:17 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:17 localhost pluto[19518]: | 92 10 35 82 00 00 00 0f e1
d2 2c 46 fa a9 6a d1
Jul 31 13:53:18 localhost pluto[19518]: | bb ab 06 f7 56 d6 16 ef 27
37 e1 3a 19 86 85 27
Jul 31 13:53:18 localhost pluto[19518]: | 58 a5 3d 3c 66 15 55 bc 7f
9a 8b 30 85 3d 03 b4
Jul 31 13:53:18 localhost pluto[19518]: | 96 c9 55 41 53 b1 8c 8b a6
43 81 15 aa d7 71 fe
Jul 31 13:53:18 localhost pluto[19518]: | 8a a3 ea 57 f4 cd 74 37 6b
36 92 89 71 50 9c ed
Jul 31 13:53:18 localhost pluto[19518]: | df f3 f0 81 5c a0 69 e0 cc
6a a7 b5 c1 a7 ab b5
Jul 31 13:53:18 localhost pluto[19518]: | 1f 5b 1c 9d b3 a3 11 18 4a
34 5f 63 74 6e 96 22
Jul 31 13:53:18 localhost pluto[19518]: | 61 8a 0f c8 e9 3d ea ab 63
ae d8 9c df b2 6b 0c
Jul 31 13:53:18 localhost pluto[19518]: | 81 e1 41 c3 f1 bd 8e 6a 40
38 bc 23 c3 bb 25 7b
Jul 31 13:53:18 localhost pluto[19518]: | 83 29 dc 21
Jul 31 13:53:18 localhost pluto[19518]: | control:
Jul 31 13:53:18 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | name:
Jul 31 13:53:18 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:18 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:18 localhost pluto[19518]: | 92 10 35 82 00 00 00 10 81
e1 41 c3 f1 bd 8e 6a
Jul 31 13:53:18 localhost pluto[19518]: | af 84 24 fd f6 c7 24 3e ad
2d 73 f4 18 b7 68 f0
Jul 31 13:53:18 localhost pluto[19518]: | fc 75 a0 37 06 89 23 78 1c
58 1c 47 84 bf 5a aa
Jul 31 13:53:18 localhost pluto[19518]: | 1b 1c 05 81 b7 ae 52 cc 91
eb 66 92 72 e9 ed 42
Jul 31 13:53:18 localhost pluto[19518]: | 71 89 8f 49 ef 87 27 97 5c
71 a3 78 c6 62 11 9e
Jul 31 13:53:18 localhost pluto[19518]: | b5 11 c0 86 35 70 42 22 31
ce 2f 8b 17 f2 42 a9
Jul 31 13:53:18 localhost pluto[19518]: | 6a b0 ca 4d c8 fe 2b d5 2a
e6 53 70 b5 c1 0c 1b
Jul 31 13:53:18 localhost pluto[19518]: | 48 b6 99 f8 5b 89 aa a2 ad
3e b2 a8 a7 33 79 d9
Jul 31 13:53:18 localhost pluto[19518]: | e1 ca bc 12 41 95 8d 76 42
ff dd 01 62 08 4c 54
Jul 31 13:53:18 localhost pluto[19518]: | 8a 4e a2 fa
Jul 31 13:53:18 localhost pluto[19518]: | control:
Jul 31 13:53:18 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | name:
Jul 31 13:53:18 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:18 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:18 localhost pluto[19518]: | 92 10 35 82 00 00 00 11 e1
ca bc 12 41 95 8d 76
Jul 31 13:53:18 localhost pluto[19518]: | 6e 7f 51 ca 4e 81 25 0c 36
f6 66 9b 26 79 8c 2c
Jul 31 13:53:18 localhost pluto[19518]: | 03 8d fa 22 48 1a c9 aa 86
61 4a d1 dc f5 5d 3b
Jul 31 13:53:18 localhost pluto[19518]: | 5e 78 be dd 63 9f 8c 0e ea
8d 5f 98 6b f8 4d c1
Jul 31 13:53:18 localhost pluto[19518]: | df c0 49 1e 22 61 ba be 41
1e ae ca 05 9b 08 09
Jul 31 13:53:18 localhost pluto[19518]: | 7b a7 67 3f c5 64 4d 9d 89
39 e5 50 ef 7b 46 a5
Jul 31 13:53:18 localhost pluto[19518]: | a6 98 45 aa 1d 34 ff 78 10
de fc fe 58 d9 9d be
Jul 31 13:53:18 localhost pluto[19518]: | 46 96 dc db 06 a2 a3 c2 3a
47 fa a6 dd 92 cd 48
Jul 31 13:53:18 localhost pluto[19518]: | ab 68 5b 05 5d 13 f2 0f 6f
df ae 94 c2 0a 30 89
Jul 31 13:53:18 localhost pluto[19518]: | 2c 88 a0 d3
Jul 31 13:53:18 localhost pluto[19518]: | control:
Jul 31 13:53:18 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: | name:
Jul 31 13:53:18 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:18 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:18 localhost pluto[19518]: | next event
EVENT_PENDING_PHASE2 in 27 seconds
Jul 31 13:53:18 localhost pluto[19518]: |
Jul 31 13:53:18 localhost pluto[19518]: | *received 68 bytes from
W.X.Y.Z:13631 on eth0 (port=4500)
Jul 31 13:53:18 localhost pluto[19518]: | **parse ISAKMP Message:
Jul 31 13:53:18 localhost pluto[19518]: | initiator cookie:
Jul 31 13:53:18 localhost pluto[19518]: | f4 f3 ca 1e 71 71 55 84
Jul 31 13:53:18 localhost pluto[19518]: | responder cookie:
Jul 31 13:53:18 localhost pluto[19518]: | d5 74 0c ee 97 35 7d 62
Jul 31 13:53:18 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_HASH
Jul 31 13:53:18 localhost pluto[19518]: | ISAKMP version: ISAKMP
Version 1.0
Jul 31 13:53:18 localhost pluto[19518]: | exchange type: ISAKMP_XCHG_INFO
Jul 31 13:53:18 localhost pluto[19518]: | flags: ISAKMP_FLAG_ENCRYPTION
Jul 31 13:53:18 localhost pluto[19518]: | message ID: ad 7f cc a9
Jul 31 13:53:18 localhost pluto[19518]: | length: 68
Jul 31 13:53:18 localhost pluto[19518]: | processing packet with
exchange type=ISAKMP_XCHG_INFO (5)
Jul 31 13:53:18 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:53:18 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:53:18 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:53:18 localhost pluto[19518]: | state hash entry 30
Jul 31 13:53:18 localhost pluto[19518]: | peer and cookies match on #2,
provided msgid 00000000 vs 9fa7f331/00000000
Jul 31 13:53:18 localhost pluto[19518]: | peer and cookies match on #1,
provided msgid 00000000 vs 00000000/00000000
Jul 31 13:53:18 localhost pluto[19518]: | p15 state object #1 found, in
STATE_MAIN_R3
Jul 31 13:53:18 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:53:18 localhost pluto[19518]: | ***parse ISAKMP Hash Payload:
Jul 31 13:53:18 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_D
Jul 31 13:53:18 localhost pluto[19518]: | length: 24
Jul 31 13:53:18 localhost pluto[19518]: | ***parse ISAKMP Delete Payload:
Jul 31 13:53:18 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NONE
Jul 31 13:53:18 localhost pluto[19518]: | length: 16
Jul 31 13:53:18 localhost pluto[19518]: | DOI: ISAKMP_DOI_IPSEC
Jul 31 13:53:18 localhost pluto[19518]: | protocol ID: 3
Jul 31 13:53:18 localhost pluto[19518]: | SPI size: 4
Jul 31 13:53:18 localhost pluto[19518]: | number of SPIs: 1
Jul 31 13:53:18 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:53:18 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #1:
received Delete SA(0x92103582) payload: deleting IPSEC State #2
Jul 31 13:53:18 localhost pluto[19518]: | deleting state #2
Jul 31 13:53:18 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:53:18 localhost pluto[19518]: | sending 68 bytes for delete
notify through eth0:4500 to W.X.Y.Z:13631:
Jul 31 13:53:18 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:53:18 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:53:18 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:53:18 localhost pluto[19518]: | state hash entry 30
Jul 31 13:53:18 localhost pluto[19518]: | command executing down-host
Jul 31 13:53:18 localhost pluto[19518]: | executing down-host: 2>&1
PLUTO_VERSION='1.1' PLUTO_VERB='down-host'
PLUTO_CONNECTION='roadwarrior' PLUTO_NEXT_HOP='W.X.Y.Z'
PLUTO_INTERFACE='eth0' PLUTO_ME='A.B.C.D' PLUTO_MY_ID='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=Openswan 2.4.6rc3, E=tgrzelak at wktpolska.com.pl'
PLUTO_MY_CLIENT='A.B.C.D/32' PLUTO_MY_CLIENT_NET='A.B.C.D'
PLUTO_MY_CLIENT_MASK='255.255.255.255' PLUTO_MY_PORT='1701'
PLUTO_MY_PROTOCOL='17' PLUTO_PEER='W.X.Y.Z' PLUTO_PEER_ID='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=vpntest, E=tgrzelak at wktpolska.com.pl' PLUTO_PEER_CLIENT='W.X.Y.Z/32'
PLUTO_PEER_CLIENT_NET='W.X.Y.Z' PLUTO_PEER_CLIENT_MASK='255.255.255.255'
PLUTO_PEER_PORT='1701' PLUTO_PEER_PROTOCOL='17' PLUTO_PEER_CA='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
PLUTO_CONN_POLICY='RSASIG+ENCRYPT+COMPRESS+TUNNEL+DONTREKEY' ipsec _updown
Jul 31 13:53:18 localhost pluto[19518]: | delete eroute W.X.Y.Z/32:1701
--0-> A.B.C.D/32:1701 => int.0 at A.B.C.D (raw_eroute)
Jul 31 13:53:18 localhost pluto[19518]: | eroute_connection delete
eroute A.B.C.D/32:1701 --17-> W.X.Y.Z/32:1701 => int.0 at 0.0.0.0 (raw_eroute)
Jul 31 13:53:18 localhost pluto[19518]: | route owner of
"roadwarrior"[2] W.X.Y.Z unrouted: NULL
Jul 31 13:53:18 localhost pluto[19518]: | command executing unroute-host
Jul 31 13:53:18 localhost pluto[19518]: | executing unroute-host: 2>&1
PLUTO_VERSION='1.1' PLUTO_VERB='unroute-host'
PLUTO_CONNECTION='roadwarrior' PLUTO_NEXT_HOP='W.X.Y.Z'
PLUTO_INTERFACE='eth0' PLUTO_ME='A.B.C.D' PLUTO_MY_ID='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=Openswan 2.4.6rc3, E=tgrzelak at wktpolska.com.pl'
PLUTO_MY_CLIENT='A.B.C.D/32' PLUTO_MY_CLIENT_NET='A.B.C.D'
PLUTO_MY_CLIENT_MASK='255.255.255.255' PLUTO_MY_PORT='1701'
PLUTO_MY_PROTOCOL='17' PLUTO_PEER='W.X.Y.Z' PLUTO_PEER_ID='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala,
CN=vpntest, E=tgrzelak at wktpolska.com.pl' PLUTO_PEER_CLIENT='W.X.Y.Z/32'
PLUTO_PEER_CLIENT_NET='W.X.Y.Z' PLUTO_PEER_CLIENT_MASK='255.255.255.255'
PLUTO_PEER_PORT='1701' PLUTO_PEER_PROTOCOL='17' PLUTO_PEER_CA='C=PL,
ST=Malopolska, L=Krakow, O=WKT-Polska Sp. z o.o., OU=Centrala, CN=CA,
E=tgrzelak at wktpolska.com.pl'
PLUTO_CONN_POLICY='RSASIG+ENCRYPT+COMPRESS+TUNNEL+DONTREKEY' ipsec _updown
Jul 31 13:53:18 localhost pluto[19518]: | delete inbound eroute
W.X.Y.Z/32:1701 --17-> A.B.C.D/32:1701 => unk255.10000 at A.B.C.D (raw_eroute)
Jul 31 13:53:18 localhost pluto[19518]: | del: 92 10 35 82
Jul 31 13:53:18 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #1:
received and ignored informational message
Jul 31 13:53:18 localhost pluto[19518]: | complete state transition with
STF_IGNORE
Jul 31 13:53:18 localhost pluto[19518]: | next event
EVENT_PENDING_PHASE2 in 27 seconds
Jul 31 13:53:18 localhost pluto[19518]: |
Jul 31 13:53:18 localhost pluto[19518]: | *received 84 bytes from
W.X.Y.Z:13631 on eth0 (port=4500)
Jul 31 13:53:18 localhost pluto[19518]: | **parse ISAKMP Message:
Jul 31 13:53:18 localhost pluto[19518]: | initiator cookie:
Jul 31 13:53:18 localhost pluto[19518]: | f4 f3 ca 1e 71 71 55 84
Jul 31 13:53:18 localhost pluto[19518]: | responder cookie:
Jul 31 13:53:18 localhost pluto[19518]: | d5 74 0c ee 97 35 7d 62
Jul 31 13:53:18 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_HASH
Jul 31 13:53:18 localhost pluto[19518]: | ISAKMP version: ISAKMP
Version 1.0
Jul 31 13:53:18 localhost pluto[19518]: | exchange type: ISAKMP_XCHG_INFO
Jul 31 13:53:18 localhost pluto[19518]: | flags: ISAKMP_FLAG_ENCRYPTION
Jul 31 13:53:18 localhost pluto[19518]: | message ID: de 31 f2 58
Jul 31 13:53:18 localhost pluto[19518]: | length: 84
Jul 31 13:53:18 localhost pluto[19518]: | processing packet with
exchange type=ISAKMP_XCHG_INFO (5)
Jul 31 13:53:18 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:53:18 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:53:18 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:53:18 localhost pluto[19518]: | state hash entry 30
Jul 31 13:53:18 localhost pluto[19518]: | peer and cookies match on #1,
provided msgid 00000000 vs 00000000/00000000
Jul 31 13:53:18 localhost pluto[19518]: | p15 state object #1 found, in
STATE_MAIN_R3
Jul 31 13:53:18 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:53:18 localhost pluto[19518]: | ***parse ISAKMP Hash Payload:
Jul 31 13:53:18 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_D
Jul 31 13:53:18 localhost pluto[19518]: | length: 24
Jul 31 13:53:18 localhost pluto[19518]: | ***parse ISAKMP Delete Payload:
Jul 31 13:53:18 localhost pluto[19518]: | next payload type:
ISAKMP_NEXT_NONE
Jul 31 13:53:18 localhost pluto[19518]: | length: 28
Jul 31 13:53:18 localhost pluto[19518]: | DOI: ISAKMP_DOI_IPSEC
Jul 31 13:53:18 localhost pluto[19518]: | protocol ID: 1
Jul 31 13:53:18 localhost pluto[19518]: | SPI size: 16
Jul 31 13:53:18 localhost pluto[19518]: | number of SPIs: 1
Jul 31 13:53:18 localhost pluto[19518]: | removing 4 bytes of padding
Jul 31 13:53:18 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:53:18 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:53:18 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:53:18 localhost pluto[19518]: | state hash entry 30
Jul 31 13:53:18 localhost pluto[19518]: | peer and cookies match on #1,
provided msgid 00000000 vs 00000000
Jul 31 13:53:18 localhost pluto[19518]: | state object #1 found, in
STATE_MAIN_R3
Jul 31 13:53:18 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:53:18 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z #1:
received Delete SA payload: deleting ISAKMP State #1
Jul 31 13:53:18 localhost pluto[19518]: | deleting state #1
Jul 31 13:53:18 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:53:18 localhost pluto[19518]: | sending 84 bytes for delete
notify through eth0:4500 to W.X.Y.Z:13631:
Jul 31 13:53:18 localhost pluto[19518]: | ICOOKIE: f4 f3 ca 1e 71 71 55 84
Jul 31 13:53:19 localhost pluto[19518]: | RCOOKIE: d5 74 0c ee 97 35 7d 62
Jul 31 13:53:19 localhost pluto[19518]: | peer: 50 35 fd d2
Jul 31 13:53:19 localhost pluto[19518]: | state hash entry 30
Jul 31 13:53:19 localhost pluto[19518]: | processing connection
roadwarrior[2] W.X.Y.Z
Jul 31 13:53:19 localhost pluto[19518]: "roadwarrior"[2] W.X.Y.Z:
deleting connection "roadwarrior" instance with peer W.X.Y.Z
{isakmp=#0/ipsec=#0}
Jul 31 13:53:19 localhost pluto[19518]: | del: f4 f3 ca 1e 71 71 55 84
d5 74 0c ee 97 35 7d 62
Jul 31 13:53:19 localhost pluto[19518]: packet from W.X.Y.Z:13631:
received and ignored informational message
Jul 31 13:53:19 localhost pluto[19518]: | complete state transition with
STF_IGNORE
Jul 31 13:53:19 localhost pluto[19518]: | next event
EVENT_PENDING_PHASE2 in 27 seconds
Jul 31 13:53:21 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:21 localhost pluto[19518]: | 00 00 00 00 f4 f3 ca 1e 71
71 55 84 d5 74 0c ee
Jul 31 13:53:21 localhost pluto[19518]: | 97 35 7d 62 08 10 05 01 3e
12 eb c1 00 00 00 44
Jul 31 13:53:21 localhost pluto[19518]: | 95 31 8a 62 b8 18 df d0 45
cc 51 c4 df 80 95 df
Jul 31 13:53:21 localhost pluto[19518]: | 8a 6e 83 ff 47 ef 82 e3 03
68 d6 b9 10 54 30 44
Jul 31 13:53:21 localhost pluto[19518]: | 38 89 5e 39 5f ba 44 84
Jul 31 13:53:21 localhost pluto[19518]: | control:
Jul 31 13:53:21 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:21 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:21 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:21 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:21 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:21 localhost pluto[19518]: | name:
Jul 31 13:53:21 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:21 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:21 localhost pluto[19518]: | rejected packet:
Jul 31 13:53:21 localhost pluto[19518]: | 00 00 00 00 f4 f3 ca 1e 71
71 55 84 d5 74 0c ee
Jul 31 13:53:21 localhost pluto[19518]: | 97 35 7d 62 08 10 05 01 d3
10 f7 67 00 00 00 54
Jul 31 13:53:21 localhost pluto[19518]: | 2f 44 16 8a 54 5f b5 b9 08
14 b6 b3 fc ed 39 6a
Jul 31 13:53:21 localhost pluto[19518]: | 6c 01 79 87 3f 9b 0a c0 92
42 cc 28 dc 25 34 26
Jul 31 13:53:21 localhost pluto[19518]: | 40 35 d3 80 70 f9 9b f6 6c
9f 7f f8 1a 26 b1 5f
Jul 31 13:53:21 localhost pluto[19518]: | 51 fe 4a ab ae c1 7e ca
Jul 31 13:53:21 localhost pluto[19518]: | control:
Jul 31 13:53:21 localhost pluto[19518]: | 18 00 00 00 00 00 00 00 08
00 00 00 01 00 00 00
Jul 31 13:53:21 localhost pluto[19518]: | 55 80 33 8c 55 80 33 8c 2c
00 00 00 00 00 00 00
Jul 31 13:53:21 localhost pluto[19518]: | 0b 00 00 00 71 00 00 00 02
03 01 00 00 00 00 00
Jul 31 13:53:21 localhost pluto[19518]: | 00 00 00 00 02 00 00 00 55
80 33 8c 00 00 00 00
Jul 31 13:53:21 localhost pluto[19518]: | 00 00 00 00
Jul 31 13:53:21 localhost pluto[19518]: | name:
Jul 31 13:53:21 localhost pluto[19518]: | 02 00 35 3f 50 35 fd d2 00
00 00 00 00 00 00 00
Jul 31 13:53:21 localhost pluto[19518]: ERROR: asynchronous network
error report on eth0 (sport=4500) for message to W.X.Y.Z port 13631,
complainant A.B.C.D: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Jul 31 13:53:21 localhost pluto[19518]: | next event
EVENT_PENDING_PHASE2 in 24 seconds
Jul 31 13:53:45 localhost pluto[19518]: |
Jul 31 13:53:45 localhost pluto[19518]: | *time to handle event
Jul 31 13:53:45 localhost pluto[19518]: | handling event
EVENT_PENDING_PHASE2
Jul 31 13:53:45 localhost pluto[19518]: | event after this is
EVENT_REINIT_SECRET in 3480 seconds
Jul 31 13:53:45 localhost pluto[19518]: | inserting event
EVENT_PENDING_PHASE2, timeout in 120 seconds
Jul 31 13:53:45 localhost pluto[19518]: | pending review: connection
"roadwarrior" was not up, skipped
Jul 31 13:53:45 localhost pluto[19518]: | next event
EVENT_PENDING_PHASE2 in 120 seconds
More information about the Users
mailing list