[Openswan Users] netlink XFRM_MSG_NEWPOLICY response for flow
Marco Berizzi
pupilla at hotmail.com
Tue Nov 14 06:30:49 EST 2006
Paul Wouters wrote:
> Can you do another ipsec setup restart after your tunnel is up to
> see if it happens again? If so, it looks like your kernel does not
> get cleared upon stopping. So if it happens, can you do ipsec
> setup stop and then an ip xfrm state list and ip xfrm policy list
> to confirm that?
Here is a log taken from an openswan box (named
pleiadi) before/after reboot (needed for kernel
update from 2.6.18.1 to 2.6.18.2)
Nov 6 21:31:51 Pleiadi pluto[1068]: shutting down
Nov 6 21:31:51 Pleiadi pluto[1068]: forgetting secrets
Nov 6 21:31:51 Pleiadi pluto[1068]: "genova": deleting connection
Nov 6 21:31:51 Pleiadi pluto[1068]: "genova" #7911: deleting state
(STATE_QUICK_R2)
Nov 6 21:31:51 Pleiadi pluto[1068]: "genova" #8010: deleting state
(STATE_MAIN_I4)
..
Nov 6 21:31:51 Pleiadi pluto[1068]: "pass-generali": deleting
connection
Nov 6 21:31:51 Pleiadi pluto[1068]: "rw": deleting connection
Nov 6 21:31:51 Pleiadi pluto[1068]: "rw-generali": deleting connection
Nov 6 21:31:51 Pleiadi pluto[1068]: "rw-old": deleting connection
Nov 6 21:31:51 Pleiadi pluto[1068]: shutting down interface lo/lo
127.0.0.1:4500
Nov 6 21:31:51 Pleiadi pluto[1068]: shutting down interface lo/lo
127.0.0.1:500
Nov 6 21:31:51 Pleiadi pluto[1068]: shutting down interface eth0/eth0
pleiadi:4500
Nov 6 21:31:51 Pleiadi pluto[1068]: shutting down interface eth0/eth0
pleiadi:500
Nov 6 21:31:51 Pleiadi pluto[1068]: shutting down interface eth1/eth1
adslApleiadi:4500
Nov 6 21:31:51 Pleiadi pluto[1068]: shutting down interface eth1/eth1
adslApleiadi:500
Nov 6 21:31:51 Pleiadi pluto[1068]: shutting down interface eth1/eth1
adslBpleiadi:4500
Nov 6 21:31:51 Pleiadi pluto[1068]: shutting down interface eth1/eth1
adslBpleiadi:500
Nov 6 21:31:51 Pleiadi pluto[1068]: shutting down interface eth2/eth2
172.16.1.1:4500
Nov 6 21:31:51 Pleiadi pluto[1068]: shutting down interface eth2/eth2
172.16.1.1:500
SYSTEM REBOOT
Nov 6 21:33:44 Pleiadi ipsec__plutorun: Starting Pluto subsystem...
Nov 6 21:33:44 Pleiadi pluto[1070]: Starting Pluto (Openswan Version
2.4.6 X.509-1.5.4 PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR; Vendor ID
OEN|EMqk_Mlg)
Nov 6 21:33:44 Pleiadi pluto[1070]: Setting NAT-Traversal port-4500
floating to on
Nov 6 21:33:44 Pleiadi pluto[1070]: port floating activation
criteria nat_t=1/port_fload=1
Nov 6 21:33:44 Pleiadi pluto[1070]: including NAT-Traversal patch
(Version 0.6c)
Nov 6 21:33:44 Pleiadi pluto[1070]: WARNING: Open of /dev/hw_random
failed in init_rnd_pool(), trying alternate sources of random
Nov 6 21:33:44 Pleiadi pluto[1070]: WARNING: Using /dev/urandom as the
source of random
Nov 6 21:33:44 Pleiadi pluto[1070]: ike_alg_register_enc(): Activating
OAKLEY_TWOFISH_CBC_SSH: Ok (ret=0)
Nov 6 21:33:44 Pleiadi pluto[1070]: ike_alg_register_enc(): Activating
OAKLEY_TWOFISH_CBC: Ok (ret=0)
Nov 6 21:33:44 Pleiadi pluto[1070]: ike_alg_register_enc(): Activating
OAKLEY_SERPENT_CBC: Ok (ret=0)
Nov 6 21:33:44 Pleiadi pluto[1070]: ike_alg_register_enc(): Activating
OAKLEY_AES_CBC: Ok (ret=0)
Nov 6 21:33:44 Pleiadi pluto[1070]: ike_alg_register_enc(): Activating
OAKLEY_BLOWFISH_CBC: Ok (ret=0)
Nov 6 21:33:44 Pleiadi pluto[1070]: ike_alg_register_hash(): Activating
OAKLEY_SHA2_512: Ok (ret=0)
Nov 6 21:33:44 Pleiadi pluto[1070]: ike_alg_register_hash(): Activating
OAKLEY_SHA2_256: Ok (ret=0)
Nov 6 21:33:44 Pleiadi pluto[1070]: no helpers will be started, all
cryptographic operations will be done inline
Nov 6 21:33:44 Pleiadi pluto[1070]: Using Linux 2.6 IPsec interface
code on 2.6.18.2
Nov 6 21:33:44 Pleiadi pluto[1070]: Changing to directory
'/etc/ipsec.d/cacerts'
Nov 6 21:33:44 Pleiadi pluto[1070]: loaded CA cert file 'cacert.pem'
(1700 bytes)
Nov 6 21:33:44 Pleiadi pluto[1070]: Changing to directory
'/etc/ipsec.d/aacerts'
Nov 6 21:33:44 Pleiadi pluto[1070]: Changing to directory
'/etc/ipsec.d/ocspcerts'
Nov 6 21:33:44 Pleiadi pluto[1070]: Changing to directory
'/etc/ipsec.d/crls'
Nov 6 21:33:44 Pleiadi pluto[1070]: loaded crl file 'crl.pem' (743
bytes)
Nov 6 21:33:44 Pleiadi pluto[1070]: loaded host cert file
'/etc/ipsec.d/certs/fswcert.pem' (5282 bytes)
Nov 6 21:33:44 Pleiadi pluto[1070]: added connection description
"napoli-phone"
..
Nov 6 21:33:45 Pleiadi pluto[1070]: added connection description
"firenze"
Nov 6 21:33:45 Pleiadi pluto[1070]: loaded host cert file
'/etc/ipsec.d/certs/fswcert.pem' (5282 bytes)
Nov 6 21:33:45 Pleiadi pluto[1070]: added connection description
"bst-bologna"
Nov 6 21:33:45 Pleiadi pluto[1070]: loaded host cert file
'/etc/ipsec.d/certs/fswcert.pem' (5282 bytes)
Nov 6 21:33:45 Pleiadi pluto[1070]: added connection description
"genova"
Nov 6 21:33:45 Pleiadi pluto[1070]: loaded host cert file
'/etc/ipsec.d/certs/fswcert.pem' (5282 bytes)
Nov 6 21:33:45 Pleiadi pluto[1070]: added connection description "rw"
Nov 6 21:33:45 Pleiadi pluto[1070]: listening for IKE messages
Nov 6 21:33:45 Pleiadi pluto[1070]: adding interface eth2/eth2
172.16.1.1:500
Nov 6 21:33:45 Pleiadi pluto[1070]: adding interface eth2/eth2
172.16.1.1:4500
Nov 6 21:33:45 Pleiadi pluto[1070]: adding interface eth1/eth1
adslBpleiadi:500
Nov 6 21:33:45 Pleiadi pluto[1070]: adding interface eth1/eth1
adslBpleiadi:4500
Nov 6 21:33:45 Pleiadi pluto[1070]: adding interface eth1/eth1
adslApleiadi:500
Nov 6 21:33:45 Pleiadi pluto[1070]: adding interface eth1/eth1
adslApleiadi:4500
Nov 6 21:33:45 Pleiadi pluto[1070]: adding interface eth0/eth0
pleiadi:500
Nov 6 21:33:45 Pleiadi pluto[1070]: adding interface eth0/eth0
pleiadi:4500
Nov 6 21:33:45 Pleiadi pluto[1070]: adding interface lo/lo
127.0.0.1:500
Nov 6 21:33:45 Pleiadi pluto[1070]: adding interface lo/lo
127.0.0.1:4500
Nov 6 21:33:45 Pleiadi pluto[1070]: loading secrets from
"/etc/ipsec.secrets"
Nov 6 21:33:45 Pleiadi pluto[1070]: loaded private key file
'/etc/ipsec.d/private/fswreq.pem' (2853 bytes)
Nov 6 21:33:46 Pleiadi pluto[1070]: "napoli-phone" #1: initiating Main
Mode
Nov 6 21:33:46 Pleiadi pluto[1070]: "bst-bologna-mobile" #2: initiating
Main Mode
Nov 6 21:33:46 Pleiadi pluto[1070]: "modena" #3: initiating Main Mode
Nov 6 21:33:46 Pleiadi pluto[1070]: "roma" #4: initiating Main Mode
Nov 6 21:33:46 Pleiadi pluto[1070]: "bst-piacenza" #5: initiating Main
Mode
Nov 6 21:33:46 Pleiadi pluto[1070]: "enel" #6: initiating Main Mode
Nov 6 21:33:46 Pleiadi pluto[1070]: "sico" #7: initiating Main Mode
Nov 6 21:33:46 Pleiadi pluto[1070]: "firenze" #8: initiating Main Mode
Nov 6 21:33:46 Pleiadi pluto[1070]: "genova" #9: initiating Main Mode
Nov 6 21:33:49 Pleiadi pluto[1070]: "sico" #7: ERROR: asynchronous
network error report on eth0 (sport=500) for message to sico port 500,
complainant pleiadi: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Nov 6 21:33:49 Pleiadi pluto[1070]: "firenze" #8: ERROR: asynchronous
network error report on eth0 (sport=500) for message to firenze port
500, complainant pleiadi: No route to host [errno 113, origin ICMP type
3 code 1 (not authenticated)]
Nov 6 21:33:49 Pleiadi pluto[1070]: "genova" #9: ERROR: asynchronous
network error report on eth0 (sport=500) for message to genova port 500,
complainant pleiadi: No route to host [errno 113, origin ICMP type 3
code 1 (not authenticated)]
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from sico:500: ignoring
unknown Vendor ID payload [4f456e4d43757f784f704063]
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from sico:500: received
Vendor ID payload [Dead Peer Detection]
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #10: responding to Main Mode
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #10: transition from state
STATE_MAIN_R0 to state STATE_MAIN_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #10: STATE_MAIN_R1: sent
MR1, expecting MI2
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from piacenza:500: ignoring
unknown Vendor ID payload [4f456e4d43757f784f704063]
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from piacenza:500: received
Vendor ID payload [Dead Peer Detection]
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from piacenza:500: received
Vendor ID payload [RFC 3947] method set to=110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from piacenza:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03] meth=108, but already
using method 110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from piacenza:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02] meth=107, but already
using method 110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from piacenza:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but
already using method 110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from piacenza:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #11: responding to
Main Mode
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #11: transition from
state STATE_MAIN_R0 to state STATE_MAIN_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #11: STATE_MAIN_R1:
sent MR1, expecting MI2
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #10: transition from state
STATE_MAIN_R1 to state STATE_MAIN_R2
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #10: STATE_MAIN_R2: sent
MR2, expecting MI3
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #11: NAT-Traversal:
Result using 3: no NAT detected
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #11: transition from
state STATE_MAIN_R1 to state STATE_MAIN_R2
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #11: STATE_MAIN_R2:
sent MR2, expecting MI3
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #11: Main mode peer
ID is ID_USER_FQDN: 'ipsec-pc at yourdomain.123'
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #11: crl update for
"C=IT, ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #11: I am sending my
cert
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #11: transition from
state STATE_MAIN_R2 to state STATE_MAIN_R3
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #11: STATE_MAIN_R3:
sent MR3, ISAKMP SA established {auth=OAKLEY_RSA_SIG
cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from genova:500: received
Vendor ID payload [Openswan (this version) 2.4.6 X.509-1.5.4
PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from genova:500: received
Vendor ID payload [Dead Peer Detection]
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #12: responding to Main
Mode
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #12: transition from state
STATE_MAIN_R0 to state STATE_MAIN_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #12: STATE_MAIN_R1: sent
MR1, expecting MI2
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #10: Main mode peer ID is
ID_USER_FQDN: 'fsw-sico at yourdomain.123'
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #10: crl update for "C=IT,
ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #10: I am sending my cert
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #10: transition from state
STATE_MAIN_R2 to state STATE_MAIN_R3
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #10: STATE_MAIN_R3: sent
MR3, ISAKMP SA established {auth=OAKLEY_RSA_SIG
cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #12: transition from state
STATE_MAIN_R1 to state STATE_MAIN_R2
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #12: STATE_MAIN_R2: sent
MR2, expecting MI3
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from roma:500: received
Vendor ID payload [Openswan (this version) 2.4.6 X.509-1.5.4
PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from roma:500: received
Vendor ID payload [Dead Peer Detection]
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from roma:500: received
Vendor ID payload [RFC 3947] method set to=110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from roma:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03] meth=108, but already
using method 110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from roma:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02] meth=107, but already
using method 110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from roma:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but
already using method 110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from roma:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
Nov 6 21:33:51 Pleiadi pluto[1070]: "roma" #13: responding to Main Mode
Nov 6 21:33:51 Pleiadi pluto[1070]: "roma" #13: transition from state
STATE_MAIN_R0 to state STATE_MAIN_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "roma" #13: STATE_MAIN_R1: sent
MR1, expecting MI2
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #14: responding to
Quick Mode {msgid:5ed554c6}
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #14: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #14: STATE_QUICK_R1:
sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #15: responding to
Quick Mode {msgid:0a5b3d45}
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #15: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #15: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #15: STATE_QUICK_R1:
sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:51 Pleiadi pluto[1070]: "roma" #13: NAT-Traversal: Result
using 3: no NAT detected
Nov 6 21:33:51 Pleiadi pluto[1070]: "roma" #13: transition from state
STATE_MAIN_R1 to state STATE_MAIN_R2
Nov 6 21:33:51 Pleiadi pluto[1070]: "roma" #13: STATE_MAIN_R2: sent
MR2, expecting MI3
Nov 6 21:33:51 Pleiadi pluto[1070]: initiate on demand from
172.16.1.81:0 to 172.25.1.46:0 proto=0 state: fos_start because: acquire
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #16: initiating
Quick Mode RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#11}
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #17: responding to Quick
Mode {msgid:39b53eec}
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #17: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #17: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from milano:500: received
Vendor ID payload [Openswan (this version) 2.4.6 X.509-1.5.4
PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from milano:500: received
Vendor ID payload [Dead Peer Detection]
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from milano:500: received
Vendor ID payload [RFC 3947] method set to=110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from milano:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03] meth=108, but already
using method 110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from milano:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02] meth=107, but already
using method 110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from milano:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but
already using method 110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from milano:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
Nov 6 21:33:51 Pleiadi pluto[1070]: "enel" #18: responding to Main Mode
Nov 6 21:33:51 Pleiadi pluto[1070]: "enel" #18: transition from state
STATE_MAIN_R0 to state STATE_MAIN_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "enel" #18: STATE_MAIN_R1: sent
MR1, expecting MI2
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #19: responding to Quick
Mode {msgid:4913f29e}
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #19: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #19: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #19: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #14: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #14: STATE_QUICK_R2:
IPsec SA established {ESP=>0x00921f59 <0x8d1cbccf xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x000084b9 <0x0000cff4 NATD=none DPD=none}
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #15: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #15: STATE_QUICK_R2:
IPsec SA established {ESP=>0x00921f5a <0x18ea019e xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x000084ba <0x0000a28d NATD=none DPD=none}
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #12: Main mode peer ID is
ID_USER_FQDN: 'fsw-genova at yourdomain.123'
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #12: crl update for "C=IT,
ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #12: I am sending my cert
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #12: transition from state
STATE_MAIN_R2 to state STATE_MAIN_R3
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #12: STATE_MAIN_R3: sent
MR3, ISAKMP SA established {auth=OAKLEY_RSA_SIG
cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #16: transition from
state STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-piacenza" #16: STATE_QUICK_I2:
sent QI2, IPsec SA established {ESP=>0x00921f5b <0x7fe7b54f
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x000084bb <0x0000d2e7 NATD=none DPD=none}
Nov 6 21:33:51 Pleiadi pluto[1070]: "enel" #18: NAT-Traversal: Result
using 3: no NAT detected
Nov 6 21:33:51 Pleiadi pluto[1070]: "enel" #18: transition from state
STATE_MAIN_R1 to state STATE_MAIN_R2
Nov 6 21:33:51 Pleiadi pluto[1070]: "enel" #18: STATE_MAIN_R2: sent
MR2, expecting MI3
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #17: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #17: STATE_QUICK_R2: IPsec
SA established {ESP=>0xabfa676c <0xbf65cf63 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00007c0c <0x000092e7 NATD=none DPD=none}
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #20: responding to Quick
Mode {msgid:36e9d045}
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #20: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #20: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #19: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:51 Pleiadi pluto[1070]: "sico" #19: STATE_QUICK_R2: IPsec
SA established {ESP=>0x7c77a16a <0x83ddd30a xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000d2cb <0x00005f59 NATD=none DPD=none}
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #21: responding to Quick
Mode {msgid:75bf05a8}
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #21: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #21: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #21: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from bologna:500: ignoring
unknown Vendor ID payload [4f45674177594d534c5e734d]
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from bologna:500: received
Vendor ID payload [Dead Peer Detection]
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from bologna:500: received
Vendor ID payload [RFC 3947] method set to=110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from bologna:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03] meth=108, but already
using method 110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from bologna:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02] meth=107, but already
using method 110
Nov 6 21:33:51 Pleiadi pluto[1070]: packet from bologna:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-bologna-mobile" #22:
responding to Main Mode
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-bologna-mobile" #22:
transition from state STATE_MAIN_R0 to state STATE_MAIN_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-bologna-mobile" #22:
STATE_MAIN_R1: sent MR1, expecting MI2
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #23: responding to Quick
Mode {msgid:b6a467b0}
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #23: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #23: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:51 Pleiadi pluto[1070]: "genova" #23: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:51 Pleiadi pluto[1070]: "roma" #13: Main mode peer ID is
ID_USER_FQDN: 'fsw-rm at yourdomain.123'
Nov 6 21:33:51 Pleiadi pluto[1070]: "roma" #13: crl update for "C=IT,
ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:51 Pleiadi pluto[1070]: "roma" #13: I am sending my cert
Nov 6 21:33:51 Pleiadi pluto[1070]: "roma" #13: transition from state
STATE_MAIN_R2 to state STATE_MAIN_R3
Nov 6 21:33:51 Pleiadi pluto[1070]: "roma" #13: STATE_MAIN_R3: sent
MR3, ISAKMP SA established {auth=OAKLEY_RSA_SIG
cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-bologna-mobile" #22:
NAT-Traversal: Result using 3: no NAT detected
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-bologna-mobile" #22:
transition from state STATE_MAIN_R1 to state STATE_MAIN_R2
Nov 6 21:33:51 Pleiadi pluto[1070]: "bst-bologna-mobile" #22:
STATE_MAIN_R2: sent MR2, expecting MI3
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from modena:500: received
Vendor ID payload [Openswan (this version) 2.4.6 X.509-1.5.4
PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from modena:500: received
Vendor ID payload [Dead Peer Detection]
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #24: responding to Main
Mode
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #24: transition from state
STATE_MAIN_R0 to state STATE_MAIN_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #24: STATE_MAIN_R1: sent
MR1, expecting MI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "genova" #20: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "genova" #20: STATE_QUICK_R2: IPsec
SA established {ESP=>0x7a4e059d <0x854d5a41 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000dcbd <0x00008cce NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "enel" #18: Main mode peer ID is
ID_USER_FQDN: 'fsw-mi at yourdomain.123'
Nov 6 21:33:52 Pleiadi pluto[1070]: "enel" #18: crl update for "C=IT,
ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:52 Pleiadi pluto[1070]: "enel" #18: I am sending my cert
Nov 6 21:33:52 Pleiadi pluto[1070]: "enel" #18: transition from state
STATE_MAIN_R2 to state STATE_MAIN_R3
Nov 6 21:33:52 Pleiadi pluto[1070]: "enel" #18: STATE_MAIN_R3: sent
MR3, ISAKMP SA established {auth=OAKLEY_RSA_SIG
cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
Nov 6 21:33:52 Pleiadi pluto[1070]: "genova" #21: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "genova" #21: STATE_QUICK_R2: IPsec
SA established {ESP=>0xeb2f7b1b <0x65fe3a11 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000ca05 <0x0000855b NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #24: transition from state
STATE_MAIN_R1 to state STATE_MAIN_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #24: STATE_MAIN_R2: sent
MR2, expecting MI3
Nov 6 21:33:52 Pleiadi pluto[1070]: "genova" #23: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "genova" #23: STATE_QUICK_R2: IPsec
SA established {ESP=>0xfd320880 <0x2c8b0082 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00007851 <0x00009c19 NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma" #25: responding to Quick
Mode {msgid:b84b4d30}
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma" #25: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma" #25: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna-mobile" #22: Main mode
peer ID is ID_USER_FQDN: 'ipsec-bo at yourdomain.123'
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna-mobile" #22: crl
update for "C=IT, ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna-mobile" #22: I am
sending my cert
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna-mobile" #22:
transition from state STATE_MAIN_R2 to state STATE_MAIN_R3
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna-mobile" #22:
STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=OAKLEY_RSA_SIG
cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma-generali" #26: responding to
Quick Mode {msgid:f6606267}
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma-generali" #26: transition
from state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma-generali" #26:
STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma" #27: responding to Quick
Mode {msgid:47801e34}
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma" #27: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma" #27: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma" #27: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from napoli:500: received
Vendor ID payload [Openswan (this version) 2.4.6 X.509-1.5.4
PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from napoli:500: received
Vendor ID payload [Dead Peer Detection]
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from napoli:500: received
Vendor ID payload [RFC 3947] method set to=110
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from napoli:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03] meth=108, but already
using method 110
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from napoli:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02] meth=107, but already
using method 110
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from napoli:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but
already using method 110
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from napoli:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli-phone" #28: responding to
Main Mode
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli-phone" #28: transition from
state STATE_MAIN_R0 to state STATE_MAIN_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli-phone" #28: STATE_MAIN_R1:
sent MR1, expecting MI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #29: responding to Quick
Mode {msgid:72b0bfd5}
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #29: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #29: STATE_QUICK_R1:
sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #24: Main mode peer ID is
ID_USER_FQDN: 'ipsec-mo at yourdomain.123'
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #24: crl update for "C=IT,
ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #24: I am sending my cert
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #24: transition from state
STATE_MAIN_R2 to state STATE_MAIN_R3
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #24: STATE_MAIN_R3: sent
MR3, ISAKMP SA established {auth=OAKLEY_RSA_SIG
cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #30: responding to
Quick Mode {msgid:9f12c670}
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #30: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #30: STATE_QUICK_R1:
sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #31: responding to
Quick Mode {msgid:f822be30}
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #31: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #31: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #31: STATE_QUICK_R1:
sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #32: responding to Quick
Mode {msgid:2f04055c}
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #32: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #32: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #32: STATE_QUICK_R1:
sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna-mobile" #33:
responding to Quick Mode {msgid:582892e7}
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna-mobile" #33:
transition from state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna-mobile" #33:
STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli-phone" #28: NAT-Traversal:
Result using 3: no NAT detected
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli-phone" #28: transition from
state STATE_MAIN_R1 to state STATE_MAIN_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli-phone" #28: STATE_MAIN_R2:
sent MR2, expecting MI3
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #34: responding to Quick
Mode {msgid:c9566fa9}
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #34: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #34: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #34: STATE_QUICK_R1:
sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: initiate on demand from
172.16.1.18:0 to 172.25.5.249:0 proto=0 state: fos_start because:
acquire
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #35: initiating Quick
Mode RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#22}
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #36: responding to Quick
Mode {msgid:152c52b6}
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #36: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #36: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #36: STATE_QUICK_R1:
sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #30: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #30: STATE_QUICK_R2:
IPsec SA established {ESP=>0x15087ed7 <0x0974e21b xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00009d64 <0x0000b629 NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #31: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #31: STATE_QUICK_R2:
IPsec SA established {ESP=>0x15087ed8 <0xbe478d13 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00009d65 <0x00006116 NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #37: responding to Quick
Mode {msgid:4a63fade}
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #37: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #37: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #37: STATE_QUICK_R1:
sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna-mobile" #33:
transition from state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna-mobile" #33:
STATE_QUICK_R2: IPsec SA established {ESP=>0x15087ed9 <0xedf17c4e
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x00009d66 <0x0000cfb4 NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #38: responding to Quick
Mode {msgid:1f62b804}
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #38: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #38: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #39: responding to Quick
Mode {msgid:52ce023e}
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #39: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #39: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #39: STATE_QUICK_R1:
sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #35: transition from
state STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:33:52 Pleiadi pluto[1070]: "bst-bologna" #35: STATE_QUICK_I2:
sent QI2, IPsec SA established {ESP=>0x15087eda <0x95abf203
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x00009d67 <0x0000b73c NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma" #25: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma" #25: STATE_QUICK_R2: IPsec
SA established {ESP=>0xfb18633b <0xa97ec17c xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000a847 <0x000054eb NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #40: responding to Quick
Mode {msgid:e03e651a}
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #40: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #40: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #40: STATE_QUICK_R1:
sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli-phone" #28: Main mode peer
ID is ID_USER_FQDN: 'fsw-na at yourdomain.123'
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli-phone" #28: crl update for
"C=IT, ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli-phone" #28: I am sending my
cert
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli-phone" #28: transition from
state STATE_MAIN_R2 to state STATE_MAIN_R3
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli-phone" #28: STATE_MAIN_R3:
sent MR3, ISAKMP SA established {auth=OAKLEY_RSA_SIG
cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #38: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "modena" #38: STATE_QUICK_R2: IPsec
SA established {ESP=>0x80e8d05d <0xa5387d58 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000c25b <0x0000479a NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma-generali" #26: transition
from state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma-generali" #26:
STATE_QUICK_R2: IPsec SA established {ESP=>0x234e17af <0xc38423a8
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x0000cd2e <0x00000178 NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #29: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #29: STATE_QUICK_R2:
IPsec SA established {ESP=>0xc1f5b1b8 <0xc77369f2 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000567c <0x0000671a NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from firenze:500: received
Vendor ID payload [Openswan (this version) 2.4.6 X.509-1.5.4
PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from firenze:500: received
Vendor ID payload [Dead Peer Detection]
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from firenze:500: received
Vendor ID payload [RFC 3947] method set to=110
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from firenze:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03] meth=108, but already
using method 110
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from firenze:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02] meth=107, but already
using method 110
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from firenze:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n] meth=106, but
already using method 110
Nov 6 21:33:52 Pleiadi pluto[1070]: packet from firenze:500: received
Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
Nov 6 21:33:52 Pleiadi pluto[1070]: "firenze" #41: responding to Main
Mode
Nov 6 21:33:52 Pleiadi pluto[1070]: "firenze" #41: transition from
state STATE_MAIN_R0 to state STATE_MAIN_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "firenze" #41: STATE_MAIN_R1: sent
MR1, expecting MI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma" #27: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "roma" #27: STATE_QUICK_R2: IPsec
SA established {ESP=>0x706f015a <0x44ac5c7f xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000852b <0x0000e963 NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #32: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #32: STATE_QUICK_R2:
IPsec SA established {ESP=>0x7aada415 <0x77cab03a xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00004d9b <0x0000d4ca NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #42: responding to Quick
Mode {msgid:173fcac4}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #42: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #42: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "firenze" #41: NAT-Traversal:
Result using 3: no NAT detected
Nov 6 21:33:52 Pleiadi pluto[1070]: "firenze" #41: transition from
state STATE_MAIN_R1 to state STATE_MAIN_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "firenze" #41: STATE_MAIN_R2: sent
MR2, expecting MI3
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #43: responding to Quick
Mode {msgid:790b7b73}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #43: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #43: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #43: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #34: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #34: STATE_QUICK_R2:
IPsec SA established {ESP=>0x12146ebb <0xdfb9699b xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000c8e7 <0x000076eb NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #44: responding to Quick
Mode {msgid:ed2e70fe}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #44: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #44: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #44: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #36: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #36: STATE_QUICK_R2:
IPsec SA established {ESP=>0xaceb05da <0xd7ec8db5 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00000cab <0x0000a7aa NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #45: responding to Quick
Mode {msgid:fcfd0402}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #45: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #45: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #45: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #37: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #37: STATE_QUICK_R2:
IPsec SA established {ESP=>0x6787a627 <0xc0c17a47 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x000025a2 <0x000063b7 NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #46: responding to Quick
Mode {msgid:55e1b8d6}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #46: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #46: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #46: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #39: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #39: STATE_QUICK_R2:
IPsec SA established {ESP=>0x63083821 <0x20b28bd9 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00001ccc <0x000019a4 NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #47: responding to Quick
Mode {msgid:6ac4ca8b}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #47: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #47: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #47: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #40: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:52 Pleiadi pluto[1070]: "cernusco" #40: STATE_QUICK_R2:
IPsec SA established {ESP=>0x1677def9 <0xd227c2d4 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00008c74 <0x0000e794 NATD=none DPD=none}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #48: responding to Quick
Mode {msgid:56a1e6b8}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #48: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #48: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #48: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "firenze" #41: Main mode peer ID is
ID_USER_FQDN: 'fsw-fi at yourdomain.123'
Nov 6 21:33:52 Pleiadi pluto[1070]: "firenze" #41: crl update for
"C=IT, ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:52 Pleiadi pluto[1070]: "firenze" #41: I am sending my cert
Nov 6 21:33:52 Pleiadi pluto[1070]: "firenze" #41: transition from
state STATE_MAIN_R2 to state STATE_MAIN_R3
Nov 6 21:33:52 Pleiadi pluto[1070]: "firenze" #41: STATE_MAIN_R3: sent
MR3, ISAKMP SA established {auth=OAKLEY_RSA_SIG
cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #49: responding to Quick
Mode {msgid:9db529c1}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #49: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #49: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #49: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #50: responding to Quick
Mode {msgid:b3a3b84c}
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #50: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #50: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:52 Pleiadi pluto[1070]: "napoli" #50: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #51: responding to Quick
Mode {msgid:5c865030}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #51: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #51: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #51: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #52: responding to Quick
Mode {msgid:e0cab069}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #52: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #52: transition from state
STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #52: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #53: responding to Quick
Mode {msgid:71e0fbad}
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #53: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #53: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli-phone" #54: responding to
Quick Mode {msgid:76d8add5}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli-phone" #54: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli-phone" #54: STATE_QUICK_R1:
sent QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #55: responding to Quick
Mode {msgid:b5a09729}
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #55: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #55: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #55: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #56: responding to Quick
Mode {msgid:4b64588d}
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #56: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #56: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #56: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #57: responding to Quick
Mode {msgid:a2ed8230}
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #57: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #57: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #57: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #58: responding to Quick
Mode {msgid:e6724573}
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #58: ERROR: netlink
XFRM_MSG_NEWPOLICY response for flow tun.10000 at pleiadi included errno
17: File exists
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #58: transition from
state STATE_QUICK_R0 to state STATE_QUICK_R1
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #58: STATE_QUICK_R1: sent
QR1, inbound IPsec SA installed, expecting QI2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #42: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #42: STATE_QUICK_R2: IPsec
SA established {ESP=>0x00953325 <0x0ec60cd4 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00000198 <0x0000300a NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #43: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #43: STATE_QUICK_R2: IPsec
SA established {ESP=>0x6a642de2 <0x5681c83b xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00009847 <0x00008f3d NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #44: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #44: STATE_QUICK_R2: IPsec
SA established {ESP=>0x0033b7a7 <0xbbb84f52 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000492e <0x00009718 NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #53: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #53: STATE_QUICK_R2:
IPsec SA established {ESP=>0x4ec1fe74 <0xa13795f3 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000e1fe <0x00002a52 NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #45: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #45: STATE_QUICK_R2: IPsec
SA established {ESP=>0x66e83920 <0xcaea5cc5 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x000086ce <0x00002188 NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #55: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #55: STATE_QUICK_R2:
IPsec SA established {ESP=>0xc462ba04 <0x30c0b82d xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00002e21 <0x0000eeda NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #46: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #46: STATE_QUICK_R2: IPsec
SA established {ESP=>0xa9da4ce5 <0x518c75ec xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x000098c6 <0x0000a1b5 NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #56: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #56: STATE_QUICK_R2:
IPsec SA established {ESP=>0x864bbff6 <0xc9d68b41 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x000027e6 <0x0000adbf NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #47: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #47: STATE_QUICK_R2: IPsec
SA established {ESP=>0x40ebeee8 <0x24917156 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00002a3a <0x0000df99 NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #57: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #57: STATE_QUICK_R2:
IPsec SA established {ESP=>0xdf036aff <0x5c025daf xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000a0af <0x0000d635 NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #48: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #48: STATE_QUICK_R2: IPsec
SA established {ESP=>0x6c512414 <0x858a3b4e xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000cef6 <0x0000014f NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #58: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "firenze" #58: STATE_QUICK_R2:
IPsec SA established {ESP=>0xfd8467b3 <0xe60ddb18 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000def2 <0x0000756b NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #49: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #49: STATE_QUICK_R2: IPsec
SA established {ESP=>0x13a62c11 <0x534dd2b3 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000ab90 <0x000040d2 NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #50: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #50: STATE_QUICK_R2: IPsec
SA established {ESP=>0xae8303c8 <0x9fc8a966 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x000011ff <0x000065e0 NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #51: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #51: STATE_QUICK_R2: IPsec
SA established {ESP=>0x1c685f1b <0x24df159b xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000b0b0 <0x00004e27 NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #52: transition from state
STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli" #52: STATE_QUICK_R2: IPsec
SA established {ESP=>0xf716f27e <0x4a80bfb5 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x0000573a <0x0000c112 NATD=none DPD=none}
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli-phone" #54: transition from
state STATE_QUICK_R1 to state STATE_QUICK_R2
Nov 6 21:33:53 Pleiadi pluto[1070]: "napoli-phone" #54: STATE_QUICK_R2:
IPsec SA established {ESP=>0x2aa132d8 <0xa8257f64 xfrm=AES_0-HMAC_SHA1
IPCOMP=>0x00008771 <0x0000ec58 NATD=none DPD=none}
Nov 6 21:33:56 Pleiadi pluto[1070]: "genova" #9: received Vendor ID
payload [Openswan (this version) 2.4.6 X.509-1.5.4 PLUTO_SENDS_VENDORID
PLUTO_USES_KEYRR]
Nov 6 21:33:56 Pleiadi pluto[1070]: "genova" #9: received Vendor ID
payload [Dead Peer Detection]
Nov 6 21:33:56 Pleiadi pluto[1070]: "genova" #9: transition from state
STATE_MAIN_I1 to state STATE_MAIN_I2
Nov 6 21:33:56 Pleiadi pluto[1070]: "genova" #9: STATE_MAIN_I2: sent
MI2, expecting MR2
Nov 6 21:33:56 Pleiadi pluto[1070]: "firenze" #8: received Vendor ID
payload [Openswan (this version) 2.4.6 X.509-1.5.4 PLUTO_SENDS_VENDORID
PLUTO_USES_KEYRR]
Nov 6 21:33:56 Pleiadi pluto[1070]: "firenze" #8: received Vendor ID
payload [Dead Peer Detection]
Nov 6 21:33:56 Pleiadi pluto[1070]: "firenze" #8: received Vendor ID
payload [RFC 3947] method set to=110
Nov 6 21:33:56 Pleiadi pluto[1070]: "firenze" #8: enabling possible
NAT-traversal with method 3
Nov 6 21:33:56 Pleiadi pluto[1070]: "firenze" #8: transition from state
STATE_MAIN_I1 to state STATE_MAIN_I2
Nov 6 21:33:56 Pleiadi pluto[1070]: "firenze" #8: STATE_MAIN_I2: sent
MI2, expecting MR2
Nov 6 21:33:56 Pleiadi pluto[1070]: "enel" #6: received Vendor ID
payload [Openswan (this version) 2.4.6 X.509-1.5.4 PLUTO_SENDS_VENDORID
PLUTO_USES_KEYRR]
Nov 6 21:33:56 Pleiadi pluto[1070]: "enel" #6: received Vendor ID
payload [Dead Peer Detection]
Nov 6 21:33:56 Pleiadi pluto[1070]: "enel" #6: received Vendor ID
payload [RFC 3947] method set to=110
Nov 6 21:33:56 Pleiadi pluto[1070]: "enel" #6: enabling possible
NAT-traversal with method 3
Nov 6 21:33:56 Pleiadi pluto[1070]: "enel" #6: transition from state
STATE_MAIN_I1 to state STATE_MAIN_I2
Nov 6 21:33:56 Pleiadi pluto[1070]: "enel" #6: STATE_MAIN_I2: sent MI2,
expecting MR2
Nov 6 21:33:56 Pleiadi pluto[1070]: "roma" #4: received Vendor ID
payload [Openswan (this version) 2.4.6 X.509-1.5.4 PLUTO_SENDS_VENDORID
PLUTO_USES_KEYRR]
Nov 6 21:33:56 Pleiadi pluto[1070]: "roma" #4: received Vendor ID
payload [Dead Peer Detection]
Nov 6 21:33:56 Pleiadi pluto[1070]: "roma" #4: received Vendor ID
payload [RFC 3947] method set to=110
Nov 6 21:33:56 Pleiadi pluto[1070]: "roma" #4: enabling possible
NAT-traversal with method 3
Nov 6 21:33:56 Pleiadi pluto[1070]: "roma" #4: transition from state
STATE_MAIN_I1 to state STATE_MAIN_I2
Nov 6 21:33:56 Pleiadi pluto[1070]: "roma" #4: STATE_MAIN_I2: sent MI2,
expecting MR2
Nov 6 21:33:56 Pleiadi pluto[1070]: "bst-piacenza" #5: ignoring unknown
Vendor ID payload [4f456e4d43757f784f704063]
Nov 6 21:33:56 Pleiadi pluto[1070]: "bst-piacenza" #5: received Vendor
ID payload [Dead Peer Detection]
Nov 6 21:33:56 Pleiadi pluto[1070]: "bst-piacenza" #5: received Vendor
ID payload [RFC 3947] method set to=110
Nov 6 21:33:56 Pleiadi pluto[1070]: "bst-piacenza" #5: enabling
possible NAT-traversal with method 3
Nov 6 21:33:56 Pleiadi pluto[1070]: "bst-piacenza" #5: transition from
state STATE_MAIN_I1 to state STATE_MAIN_I2
Nov 6 21:33:56 Pleiadi pluto[1070]: "bst-piacenza" #5: STATE_MAIN_I2:
sent MI2, expecting MR2
Nov 6 21:33:56 Pleiadi pluto[1070]: "sico" #7: ignoring unknown Vendor
ID payload [4f456e4d43757f784f704063]
Nov 6 21:33:56 Pleiadi pluto[1070]: "sico" #7: received Vendor ID
payload [Dead Peer Detection]
Nov 6 21:33:56 Pleiadi pluto[1070]: "sico" #7: transition from state
STATE_MAIN_I1 to state STATE_MAIN_I2
Nov 6 21:33:56 Pleiadi pluto[1070]: "sico" #7: STATE_MAIN_I2: sent MI2,
expecting MR2
Nov 6 21:33:56 Pleiadi pluto[1070]: "genova" #9: I am sending my cert
Nov 6 21:33:56 Pleiadi pluto[1070]: "genova" #9: I am sending a
certificate request
Nov 6 21:33:56 Pleiadi pluto[1070]: "genova" #9: transition from state
STATE_MAIN_I2 to state STATE_MAIN_I3
Nov 6 21:33:56 Pleiadi pluto[1070]: "genova" #9: STATE_MAIN_I3: sent
MI3, expecting MR3
Nov 6 21:33:56 Pleiadi pluto[1070]: "bst-piacenza" #5: NAT-Traversal:
Result using 3: no NAT detected
Nov 6 21:33:56 Pleiadi pluto[1070]: "bst-piacenza" #5: I am sending my
cert
Nov 6 21:33:56 Pleiadi pluto[1070]: "bst-piacenza" #5: I am sending a
certificate request
Nov 6 21:33:56 Pleiadi pluto[1070]: "bst-piacenza" #5: transition from
state STATE_MAIN_I2 to state STATE_MAIN_I3
Nov 6 21:33:56 Pleiadi pluto[1070]: "bst-piacenza" #5: STATE_MAIN_I3:
sent MI3, expecting MR3
Nov 6 21:33:56 Pleiadi pluto[1070]: "firenze" #8: NAT-Traversal: Result
using 3: no NAT detected
Nov 6 21:33:56 Pleiadi pluto[1070]: "firenze" #8: I am sending my cert
Nov 6 21:33:56 Pleiadi pluto[1070]: "firenze" #8: I am sending a
certificate request
Nov 6 21:33:56 Pleiadi pluto[1070]: "firenze" #8: transition from state
STATE_MAIN_I2 to state STATE_MAIN_I3
Nov 6 21:33:56 Pleiadi pluto[1070]: "firenze" #8: STATE_MAIN_I3: sent
MI3, expecting MR3
Nov 6 21:33:56 Pleiadi pluto[1070]: "enel" #6: NAT-Traversal: Result
using 3: no NAT detected
Nov 6 21:33:56 Pleiadi pluto[1070]: "enel" #6: I am sending my cert
Nov 6 21:33:56 Pleiadi pluto[1070]: "enel" #6: I am sending a
certificate request
Nov 6 21:33:56 Pleiadi pluto[1070]: "enel" #6: transition from state
STATE_MAIN_I2 to state STATE_MAIN_I3
Nov 6 21:33:56 Pleiadi pluto[1070]: "enel" #6: STATE_MAIN_I3: sent MI3,
expecting MR3
Nov 6 21:33:56 Pleiadi pluto[1070]: "sico" #7: I am sending my cert
Nov 6 21:33:56 Pleiadi pluto[1070]: "sico" #7: I am sending a
certificate request
Nov 6 21:33:57 Pleiadi pluto[1070]: "sico" #7: transition from state
STATE_MAIN_I2 to state STATE_MAIN_I3
Nov 6 21:33:57 Pleiadi pluto[1070]: "sico" #7: STATE_MAIN_I3: sent MI3,
expecting MR3
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma" #4: NAT-Traversal: Result
using 3: no NAT detected
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma" #4: I am sending my cert
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma" #4: I am sending a
certificate request
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma" #4: transition from state
STATE_MAIN_I2 to state STATE_MAIN_I3
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma" #4: STATE_MAIN_I3: sent MI3,
expecting MR3
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2: ignoring
unknown Vendor ID payload [4f45674177594d534c5e734d]
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2: received
Vendor ID payload [Dead Peer Detection]
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2: received
Vendor ID payload [RFC 3947] method set to=110
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2: enabling
possible NAT-traversal with method 3
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2: transition
from state STATE_MAIN_I1 to state STATE_MAIN_I2
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2:
STATE_MAIN_I2: sent MI2, expecting MR2
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-piacenza" #5: Main mode peer
ID is ID_USER_FQDN: 'ipsec-pc at yourdomain.123'
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-piacenza" #5: crl update for
"C=IT, ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-piacenza" #5: transition from
state STATE_MAIN_I3 to state STATE_MAIN_I4
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-piacenza" #5: STATE_MAIN_I4:
ISAKMP SA established {auth=OAKLEY_RSA_SIG cipher=oakley_3des_cbc_192
prf=oakley_md5 group=modp1536}
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-piacenza" #59: initiating
Quick Mode RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#5}
Nov 6 21:33:57 Pleiadi pluto[1070]: "genova" #9: Main mode peer ID is
ID_USER_FQDN: 'fsw-genova at yourdomain.123'
Nov 6 21:33:57 Pleiadi pluto[1070]: "genova" #9: crl update for "C=IT,
ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:57 Pleiadi pluto[1070]: "genova" #9: transition from state
STATE_MAIN_I3 to state STATE_MAIN_I4
Nov 6 21:33:57 Pleiadi pluto[1070]: "genova" #9: STATE_MAIN_I4: ISAKMP
SA established {auth=OAKLEY_RSA_SIG cipher=oakley_3des_cbc_192
prf=oakley_md5 group=modp1536}
Nov 6 21:33:57 Pleiadi pluto[1070]: "genova" #60: initiating Quick Mode
RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#9}
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-piacenza" #59: transition from
state STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-piacenza" #59: STATE_QUICK_I2:
sent QI2, IPsec SA established {ESP=>0x00921f5c <0xdc92dc15
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x000084bc <0x0000c327 NATD=none DPD=none}
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2:
NAT-Traversal: Result using 3: no NAT detected
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2: I am
sending my cert
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2: I am
sending a certificate request
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2: transition
from state STATE_MAIN_I2 to state STATE_MAIN_I3
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2:
STATE_MAIN_I3: sent MI3, expecting MR3
Nov 6 21:33:57 Pleiadi pluto[1070]: "firenze" #8: Main mode peer ID is
ID_USER_FQDN: 'fsw-fi at yourdomain.123'
Nov 6 21:33:57 Pleiadi pluto[1070]: "firenze" #8: crl update for "C=IT,
ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:57 Pleiadi pluto[1070]: "firenze" #8: transition from state
STATE_MAIN_I3 to state STATE_MAIN_I4
Nov 6 21:33:57 Pleiadi pluto[1070]: "firenze" #8: STATE_MAIN_I4: ISAKMP
SA established {auth=OAKLEY_RSA_SIG cipher=oakley_3des_cbc_192
prf=oakley_md5 group=modp1536}
Nov 6 21:33:57 Pleiadi pluto[1070]: "firenze" #61: initiating Quick
Mode RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#8}
Nov 6 21:33:57 Pleiadi pluto[1070]: "genova" #60: transition from state
STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:33:57 Pleiadi pluto[1070]: "genova" #60: STATE_QUICK_I2: sent
QI2, IPsec SA established {ESP=>0x9be56276 <0xd59bd83b
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x0000eb3b <0x00001ce6 NATD=none DPD=none}
Nov 6 21:33:57 Pleiadi pluto[1070]: "sico" #7: Main mode peer ID is
ID_USER_FQDN: 'fsw-sico at yourdomain.123'
Nov 6 21:33:57 Pleiadi pluto[1070]: "sico" #7: crl update for "C=IT,
ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:57 Pleiadi pluto[1070]: "sico" #7: transition from state
STATE_MAIN_I3 to state STATE_MAIN_I4
Nov 6 21:33:57 Pleiadi pluto[1070]: "sico" #7: STATE_MAIN_I4: ISAKMP SA
established {auth=OAKLEY_RSA_SIG cipher=oakley_3des_cbc_192
prf=oakley_md5 group=modp1536}
Nov 6 21:33:57 Pleiadi pluto[1070]: "sico" #62: initiating Quick Mode
RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#7}
Nov 6 21:33:57 Pleiadi pluto[1070]: "enel" #6: Main mode peer ID is
ID_USER_FQDN: 'fsw-mi at yourdomain.123'
Nov 6 21:33:57 Pleiadi pluto[1070]: "enel" #6: crl update for "C=IT,
ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:57 Pleiadi pluto[1070]: "enel" #6: transition from state
STATE_MAIN_I3 to state STATE_MAIN_I4
Nov 6 21:33:57 Pleiadi pluto[1070]: "enel" #6: STATE_MAIN_I4: ISAKMP SA
established {auth=OAKLEY_RSA_SIG cipher=oakley_3des_cbc_192
prf=oakley_md5 group=modp1536}
Nov 6 21:33:57 Pleiadi pluto[1070]: "cernusco" #63: initiating Quick
Mode RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#6}
Nov 6 21:33:57 Pleiadi pluto[1070]: "enel" #64: initiating Quick Mode
RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#6}
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma" #4: Main mode peer ID is
ID_USER_FQDN: 'fsw-rm at yourdomain.123'
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma" #4: crl update for "C=IT,
ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma" #4: transition from state
STATE_MAIN_I3 to state STATE_MAIN_I4
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma" #4: STATE_MAIN_I4: ISAKMP SA
established {auth=OAKLEY_RSA_SIG cipher=oakley_3des_cbc_192
prf=oakley_md5 group=modp1536}
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma-generali" #65: initiating
Quick Mode RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#4}
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma" #66: initiating Quick Mode
RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#4}
Nov 6 21:33:57 Pleiadi pluto[1070]: "firenze" #61: transition from
state STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:33:57 Pleiadi pluto[1070]: "firenze" #61: STATE_QUICK_I2: sent
QI2, IPsec SA established {ESP=>0x38947145 <0x0a4ff96c
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x0000daa8 <0x000069a8 NATD=none DPD=none}
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2: Main mode
peer ID is ID_USER_FQDN: 'ipsec-bo at yourdomain.123'
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2: crl update
for "C=IT, ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2: transition
from state STATE_MAIN_I3 to state STATE_MAIN_I4
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #2:
STATE_MAIN_I4: ISAKMP SA established {auth=OAKLEY_RSA_SIG
cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna" #67: initiating Quick
Mode RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#2}
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #68:
initiating Quick Mode RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using
isakmp#2}
Nov 6 21:33:57 Pleiadi pluto[1070]: "sico" #62: transition from state
STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:33:57 Pleiadi pluto[1070]: "sico" #62: STATE_QUICK_I2: sent
QI2, IPsec SA established {ESP=>0xe4688664 <0xa2a58254
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x00008d7e <0x00008f56 NATD=none DPD=none}
Nov 6 21:33:57 Pleiadi pluto[1070]: "cernusco" #63: transition from
state STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:33:57 Pleiadi pluto[1070]: "cernusco" #63: STATE_QUICK_I2:
sent QI2, IPsec SA established {ESP=>0xf15ac77a <0xf4423450
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x0000b8ef <0x00000fc2 NATD=none DPD=none}
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna" #67: transition from
state STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna" #67: STATE_QUICK_I2:
sent QI2, IPsec SA established {ESP=>0x15087edb <0xecb69e5c
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x00009d68 <0x0000acf7 NATD=none DPD=none}
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma-generali" #65: transition
from state STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma-generali" #65:
STATE_QUICK_I2: sent QI2, IPsec SA established {ESP=>0xce0d5756
<0x540b6b87 xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x00000e12 <0x00000dbb
NATD=none DPD=none}
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #68:
transition from state STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:33:57 Pleiadi pluto[1070]: "bst-bologna-mobile" #68:
STATE_QUICK_I2: sent QI2, IPsec SA established {ESP=>0x15087edc
<0xc264b92a xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x00009d69 <0x00002da5
NATD=none DPD=none}
Nov 6 21:33:57 Pleiadi pluto[1070]: "enel" #64: transition from state
STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:33:57 Pleiadi pluto[1070]: "enel" #64: STATE_QUICK_I2: sent
QI2, IPsec SA established {ESP=>0xae2f7feb <0x810a167e
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x000011e4 <0x0000a4a6 NATD=none DPD=none}
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma" #66: transition from state
STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:33:57 Pleiadi pluto[1070]: "roma" #66: STATE_QUICK_I2: sent
QI2, IPsec SA established {ESP=>0x483a94cb <0x86ef3f92
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x0000afee <0x000022c9 NATD=none DPD=none}
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: received Vendor
ID payload [Openswan (this version) 2.4.6 X.509-1.5.4
PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: received Vendor
ID payload [Dead Peer Detection]
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: received Vendor
ID payload [RFC 3947] method set to=110
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: enabling
possible NAT-traversal with method 3
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: transition from
state STATE_MAIN_I1 to state STATE_MAIN_I2
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: STATE_MAIN_I2:
sent MI2, expecting MR2
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #3: received Vendor ID
payload [Openswan (this version) 2.4.6 X.509-1.5.4 PLUTO_SENDS_VENDORID
PLUTO_USES_KEYRR]
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #3: received Vendor ID
payload [Dead Peer Detection]
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #3: transition from state
STATE_MAIN_I1 to state STATE_MAIN_I2
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #3: STATE_MAIN_I2: sent
MI2, expecting MR2
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #3: I am sending my cert
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #3: I am sending a
certificate request
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #3: transition from state
STATE_MAIN_I2 to state STATE_MAIN_I3
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #3: STATE_MAIN_I3: sent
MI3, expecting MR3
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: NAT-Traversal:
Result using 3: no NAT detected
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: I am sending my
cert
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: I am sending a
certificate request
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: transition from
state STATE_MAIN_I2 to state STATE_MAIN_I3
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: STATE_MAIN_I3:
sent MI3, expecting MR3
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #3: Main mode peer ID is
ID_USER_FQDN: 'ipsec-mo at yourdomain.123'
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #3: crl update for "C=IT,
ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #3: transition from state
STATE_MAIN_I3 to state STATE_MAIN_I4
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #3: STATE_MAIN_I4: ISAKMP
SA established {auth=OAKLEY_RSA_SIG cipher=oakley_3des_cbc_192
prf=oakley_md5 group=modp1536}
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #69: initiating Quick Mode
RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#3}
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: Main mode peer
ID is ID_USER_FQDN: 'fsw-na at yourdomain.123'
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: crl update for
"C=IT, ST=VE, L=mr, O=my company, OU=I&O, CN=company,
E=postmaster at yourdomain.123" is overdue since Mar 10 14:17:05 UTC 2005
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: transition from
state STATE_MAIN_I3 to state STATE_MAIN_I4
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #1: STATE_MAIN_I4:
ISAKMP SA established {auth=OAKLEY_RSA_SIG cipher=oakley_3des_cbc_192
prf=oakley_md5 group=modp1536}
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli" #70: initiating Quick Mode
RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#1}
Nov 6 21:34:16 Pleiadi pluto[1070]: "napoli-phone" #71: initiating
Quick Mode RSASIG+ENCRYPT+COMPRESS+TUNNEL+PFS+UP {using isakmp#1}
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #69: transition from state
STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:34:16 Pleiadi pluto[1070]: "modena" #69: STATE_QUICK_I2: sent
QI2, IPsec SA established {ESP=>0x2d1f1eef <0x71b4a515
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x00002cc0 <0x00005758 NATD=none DPD=none}
Nov 6 21:34:17 Pleiadi pluto[1070]: "napoli" #70: transition from state
STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:34:17 Pleiadi pluto[1070]: "napoli" #70: STATE_QUICK_I2: sent
QI2, IPsec SA established {ESP=>0xd8402512 <0x03f57fb8
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x000061f3 <0x00003b67 NATD=none DPD=none}
Nov 6 21:34:17 Pleiadi pluto[1070]: "napoli-phone" #71: transition from
state STATE_QUICK_I1 to state STATE_QUICK_I2
Nov 6 21:34:17 Pleiadi pluto[1070]: "napoli-phone" #71: STATE_QUICK_I2:
sent QI2, IPsec SA established {ESP=>0xef8a2fab <0x1c5ab64d
xfrm=AES_0-HMAC_SHA1 IPCOMP=>0x0000a8d1 <0x0000d6b6 NATD=none DPD=none}
More information about the Users
mailing list