[Openswan Users] Ipsec auto --up {tunnelname} hangs
Greg Scott
GregScott at InfraSupportEtc.com
Fri Jun 20 04:26:37 EDT 2008
> You should run with plutodebug= and see why it is hanging instead.
>
> Paul
I can now reproduce the problem at will. I can make ipsec auto --up
hang any time I want.
The left side has 2 tunnels - one with auto=up in the conn description,
the other with auto=ignore. I make the right side hang by doing ipsec
auto --up on the right side without bringing up the 2nd tunnel on the
left side. I can reproduce the problem any time I want - but I have to
do it in the middle of the night so it doesn't effect any production
users.
I turned on plutodebug=all and pasted in relevant output from
/var/log/secure below. Holy moley, does plutodebug=all log a bunch of
stuff! I also grabbed a copy of the relevant portion of /var/log/secure
and I am attaching to this email. The attachment is the same text as
pasted in below - I am pasting below in case the list strips out the
attachment.
- Greg
Jun 20 03:01:08 lme-fw pluto[11919]: | *time to handle event
Jun 20 03:01:08 lme-fw pluto[11919]: | handling event
EVENT_PENDING_PHASE2
Jun 20 03:01:08 lme-fw pluto[11919]: | event after this is
EVENT_SA_REPLACE in 2053 seconds
Jun 20 03:01:08 lme-fw pluto[11919]: | inserting event
EVENT_PENDING_PHASE2, timeout in 120 seconds
Jun 20 03:01:08 lme-fw pluto[11919]: | pending review: connection
"JanesvilleCheetah-Everywhere" checked
Jun 20 03:01:08 lme-fw pluto[11919]: | pending review: connection
"Rochester-Everywhere" checked
Jun 20 03:01:08 lme-fw pluto[11919]: | pending review: connection
"Columbia-Everywhere" checked
Jun 20 03:01:08 lme-fw pluto[11919]: | pending review: connection
"Wichita-Everywhere" checked
Jun 20 03:01:08 lme-fw pluto[11919]: | next event EVENT_PENDING_PHASE2
in 120 seconds
Jun 20 03:02:17 lme-fw pluto[11919]: |
Jun 20 03:02:17 lme-fw pluto[11919]: | *received whack message
Jun 20 03:02:17 lme-fw pluto[11919]: | next event EVENT_PENDING_PHASE2
in 51 seconds
Jun 20 03:02:17 lme-fw pluto[11919]: |
Jun 20 03:02:17 lme-fw pluto[11919]: | *received whack message
Jun 20 03:02:17 lme-fw pluto[11919]: | unreference key: 0x9b3efd0
@hq.local cnt 1--
Jun 20 03:02:17 lme-fw pluto[11919]: | next event EVENT_PENDING_PHASE2
in 51 seconds
Jun 20 03:02:17 lme-fw pluto[11919]: |
Jun 20 03:02:17 lme-fw pluto[11919]: | *received whack message
Jun 20 03:02:17 lme-fw pluto[11919]: | Added new connection
JanesvillePNT-Everywhere with policy RSASIG+ENCRYPT+TUNNEL+PFS
Jun 20 03:02:17 lme-fw pluto[11919]: | counting wild cards for
@janesvillepnt.local is 0
Jun 20 03:02:17 lme-fw pluto[11919]: | counting wild cards for @hq.local
is 0
Jun 20 03:02:17 lme-fw pluto[11919]: | find_host_pair: comparing to
12.24.248.50:500 209.125.151.194:500
Jun 20 03:02:17 lme-fw pluto[11919]: | find_host_pair: comparing to
12.24.248.50:500 67.77.61.191:500
Jun 20 03:02:17 lme-fw pluto[11919]: | find_host_pair: comparing to
12.24.248.50:500 71.39.202.145:500
Jun 20 03:02:17 lme-fw pluto[11919]: | find_host_pair: comparing to
12.24.248.50:500 99.135.79.74:500
Jun 20 03:02:17 lme-fw pluto[11919]: | connect_to_host_pair:
12.24.248.50:500 99.135.79.74:500 -> hp:JanesvilleCheetah-Everywhere
Jun 20 03:02:17 lme-fw pluto[11919]: added connection description
"JanesvillePNT-Everywhere"
Jun 20 03:02:17 lme-fw pluto[11919]: |
192.168.0.0/16===12.24.248.50[@hq.local]---12.24.248.49...99.135.79.78--
-99.135.79.74[@janesvillepnt.local]===172.20.2.0/24
Jun 20 03:02:17 lme-fw pluto[11919]: | ike_life: 3600s; ipsec_life:
28800s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 0; policy:
RSASIG+ENCRYPT+TUNNEL+PFS
Jun 20 03:02:17 lme-fw pluto[11919]: | next event EVENT_PENDING_PHASE2
in 51 seconds
Jun 20 03:02:17 lme-fw pluto[11919]: |
Jun 20 03:02:17 lme-fw pluto[11919]: | *received whack message
Jun 20 03:02:17 lme-fw pluto[11919]: | processing connection
JanesvillePNT-Everywhere
Jun 20 03:02:17 lme-fw pluto[11919]: | empty esp_info, returning empty
Jun 20 03:02:17 lme-fw pluto[11919]: | creating state object #9 at
0x9b4ce78
Jun 20 03:02:17 lme-fw pluto[11919]: | processing connection
JanesvillePNT-Everywhere
Jun 20 03:02:17 lme-fw pluto[11919]: | ICOOKIE: 84 44 2b e6 d3 fe 61
fe
Jun 20 03:02:17 lme-fw pluto[11919]: | RCOOKIE: 00 00 00 00 00 00 00
00
Jun 20 03:02:17 lme-fw pluto[11919]: | peer: 63 87 4f 4a
Jun 20 03:02:17 lme-fw pluto[11919]: | state hash entry 6
Jun 20 03:02:17 lme-fw pluto[11919]: | inserting event EVENT_SO_DISCARD,
timeout in 0 seconds for #9
Jun 20 03:02:17 lme-fw pluto[11919]: | Queuing pending Quick Mode with
99.135.79.74 "JanesvillePNT-Everywhere"
Jun 20 03:02:17 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9:
initiating Main Mode
Jun 20 03:02:17 lme-fw pluto[11919]: | **emit ISAKMP Message:
Jun 20 03:02:17 lme-fw pluto[11919]: | initiator cookie:
Jun 20 03:02:17 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe
Jun 20 03:02:17 lme-fw pluto[11919]: | responder cookie:
Jun 20 03:02:17 lme-fw pluto[11919]: | 00 00 00 00 00 00 00 00
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_SA
Jun 20 03:02:17 lme-fw pluto[11919]: | ISAKMP version: ISAKMP Version
1.0
Jun 20 03:02:17 lme-fw pluto[11919]: | exchange type:
ISAKMP_XCHG_IDPROT
Jun 20 03:02:17 lme-fw pluto[11919]: | flags: none
Jun 20 03:02:17 lme-fw pluto[11919]: | message ID: 00 00 00 00
Jun 20 03:02:17 lme-fw pluto[11919]: | no IKE algorithms for this
connection
Jun 20 03:02:17 lme-fw pluto[11919]: | ***emit ISAKMP Security
Association Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_VID
Jun 20 03:02:17 lme-fw pluto[11919]: | DOI: ISAKMP_DOI_IPSEC
Jun 20 03:02:17 lme-fw pluto[11919]: | ****emit IPsec DOI SIT:
Jun 20 03:02:17 lme-fw pluto[11919]: | IPsec DOI SIT:
SIT_IDENTITY_ONLY
Jun 20 03:02:17 lme-fw pluto[11919]: | out_sa pcn: 0 has 1 valid
proposals
Jun 20 03:02:17 lme-fw pluto[11919]: | out_sa pcn: 0 pn: 0<1
valid_count: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | ****emit ISAKMP Proposal Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | proposal number: 0
Jun 20 03:02:17 lme-fw pluto[11919]: | protocol ID: PROTO_ISAKMP
Jun 20 03:02:17 lme-fw pluto[11919]: | SPI size: 0
Jun 20 03:02:17 lme-fw pluto[11919]: | number of transforms: 4
Jun 20 03:02:17 lme-fw pluto[11919]: | *****emit ISAKMP Transform
Payload (ISAKMP):
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_T
Jun 20 03:02:17 lme-fw pluto[11919]: | transform number: 0
Jun 20 03:02:17 lme-fw pluto[11919]: | transform ID: KEY_IKE
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_LIFE_TYPE
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | [1 is OAKLEY_LIFE_SECONDS]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_LIFE_DURATION
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 3600
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_ENCRYPTION_ALGORITHM
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 5
Jun 20 03:02:17 lme-fw pluto[11919]: | [5 is OAKLEY_3DES_CBC]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_HASH_ALGORITHM
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | [1 is OAKLEY_MD5]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_AUTHENTICATION_METHOD
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 3
Jun 20 03:02:17 lme-fw pluto[11919]: | [3 is OAKLEY_RSA_SIG]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_GROUP_DESCRIPTION
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 5
Jun 20 03:02:17 lme-fw pluto[11919]: | [5 is OAKLEY_GROUP_MODP1536]
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP
Transform Payload (ISAKMP): 32
Jun 20 03:02:17 lme-fw pluto[11919]: | *****emit ISAKMP Transform
Payload (ISAKMP):
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_T
Jun 20 03:02:17 lme-fw pluto[11919]: | transform number: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | transform ID: KEY_IKE
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_LIFE_TYPE
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | [1 is OAKLEY_LIFE_SECONDS]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_LIFE_DURATION
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 3600
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_ENCRYPTION_ALGORITHM
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 5
Jun 20 03:02:17 lme-fw pluto[11919]: | [5 is OAKLEY_3DES_CBC]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_HASH_ALGORITHM
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 2
Jun 20 03:02:17 lme-fw pluto[11919]: | [2 is OAKLEY_SHA1]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_AUTHENTICATION_METHOD
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 3
Jun 20 03:02:17 lme-fw pluto[11919]: | [3 is OAKLEY_RSA_SIG]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_GROUP_DESCRIPTION
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 5
Jun 20 03:02:17 lme-fw pluto[11919]: | [5 is OAKLEY_GROUP_MODP1536]
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP
Transform Payload (ISAKMP): 32
Jun 20 03:02:17 lme-fw pluto[11919]: | *****emit ISAKMP Transform
Payload (ISAKMP):
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_T
Jun 20 03:02:17 lme-fw pluto[11919]: | transform number: 2
Jun 20 03:02:17 lme-fw pluto[11919]: | transform ID: KEY_IKE
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_LIFE_TYPE
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | [1 is OAKLEY_LIFE_SECONDS]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_LIFE_DURATION
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 3600
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_ENCRYPTION_ALGORITHM
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 5
Jun 20 03:02:17 lme-fw pluto[11919]: | [5 is OAKLEY_3DES_CBC]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_HASH_ALGORITHM
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 2
Jun 20 03:02:17 lme-fw pluto[11919]: | [2 is OAKLEY_SHA1]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_AUTHENTICATION_METHOD
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 3
Jun 20 03:02:17 lme-fw pluto[11919]: | [3 is OAKLEY_RSA_SIG]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_GROUP_DESCRIPTION
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 2
Jun 20 03:02:17 lme-fw pluto[11919]: | [2 is OAKLEY_GROUP_MODP1024]
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP
Transform Payload (ISAKMP): 32
Jun 20 03:02:17 lme-fw pluto[11919]: | *****emit ISAKMP Transform
Payload (ISAKMP):
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | transform number: 3
Jun 20 03:02:17 lme-fw pluto[11919]: | transform ID: KEY_IKE
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_LIFE_TYPE
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | [1 is OAKLEY_LIFE_SECONDS]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_LIFE_DURATION
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 3600
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_ENCRYPTION_ALGORITHM
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 5
Jun 20 03:02:17 lme-fw pluto[11919]: | [5 is OAKLEY_3DES_CBC]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_HASH_ALGORITHM
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | [1 is OAKLEY_MD5]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_AUTHENTICATION_METHOD
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 3
Jun 20 03:02:17 lme-fw pluto[11919]: | [3 is OAKLEY_RSA_SIG]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******emit ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_GROUP_DESCRIPTION
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 2
Jun 20 03:02:17 lme-fw pluto[11919]: | [2 is OAKLEY_GROUP_MODP1024]
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP
Transform Payload (ISAKMP): 32
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP
Proposal Payload: 136
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP
Security Association Payload: 148
Jun 20 03:02:17 lme-fw pluto[11919]: | ***emit ISAKMP Vendor ID Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting 12 raw bytes of Vendor
ID into ISAKMP Vendor ID Payload
Jun 20 03:02:17 lme-fw pluto[11919]: | Vendor ID 4f 45 6e 4d 43 75 7f
78 4f 70 40 63
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP Vendor
ID Payload: 16
Jun 20 03:02:17 lme-fw pluto[11919]: | ***emit ISAKMP Vendor ID Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting 16 raw bytes of V_ID
into ISAKMP Vendor ID Payload
Jun 20 03:02:17 lme-fw pluto[11919]: | V_ID af ca d7 13 68 a1 f1 c9
6b 86 96 fc 77 57 01 00
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP Vendor
ID Payload: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | nat traversal enabled: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | nat add vid. port: 1 nonike: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | out_vendorid(): sending [RFC
3947]
Jun 20 03:02:17 lme-fw pluto[11919]: | ***emit ISAKMP Vendor ID Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting 16 raw bytes of V_ID
into ISAKMP Vendor ID Payload
Jun 20 03:02:17 lme-fw pluto[11919]: | V_ID 4a 13 1c 81 07 03 58 45
5c 57 28 f2 0e 95 45 2f
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP Vendor
ID Payload: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | out_vendorid(): sending
[draft-ietf-ipsec-nat-t-ike-03]
Jun 20 03:02:17 lme-fw pluto[11919]: | ***emit ISAKMP Vendor ID Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting 16 raw bytes of V_ID
into ISAKMP Vendor ID Payload
Jun 20 03:02:17 lme-fw pluto[11919]: | V_ID 7d 94 19 a6 53 10 ca 6f
2c 17 9d 92 15 52 9d 56
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP Vendor
ID Payload: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | out_vendorid(): sending
[draft-ietf-ipsec-nat-t-ike-02]
Jun 20 03:02:17 lme-fw pluto[11919]: | ***emit ISAKMP Vendor ID Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting 16 raw bytes of V_ID
into ISAKMP Vendor ID Payload
Jun 20 03:02:17 lme-fw pluto[11919]: | V_ID cd 60 46 43 35 df 21 f8
7c fd b2 fc 68 b6 a4 48
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP Vendor
ID Payload: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | out_vendorid(): sending
[draft-ietf-ipsec-nat-t-ike-02_n]
Jun 20 03:02:17 lme-fw pluto[11919]: | ***emit ISAKMP Vendor ID Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting 16 raw bytes of V_ID
into ISAKMP Vendor ID Payload
Jun 20 03:02:17 lme-fw pluto[11919]: | V_ID 90 cb 80 91 3e bb 69 6e
08 63 81 b5 ec 42 7b 1f
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP Vendor
ID Payload: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | out_vendorid(): sending
[draft-ietf-ipsec-nat-t-ike-00]
Jun 20 03:02:17 lme-fw pluto[11919]: | ***emit ISAKMP Vendor ID Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting 16 raw bytes of V_ID
into ISAKMP Vendor ID Payload
Jun 20 03:02:17 lme-fw pluto[11919]: | V_ID 44 85 15 2d 18 b6 bb cd
0b e8 a8 46 95 79 dd cc
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP Vendor
ID Payload: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP
Message: 312
Jun 20 03:02:17 lme-fw pluto[11919]: | sending 312 bytes for main_outI1
through eth0:500 to 99.135.79.74:500:
Jun 20 03:02:17 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe 00 00
00 00 00 00 00 00
Jun 20 03:02:17 lme-fw pluto[11919]: | 01 10 02 00 00 00 00 00 00 00
01 38 0d 00 00 94
Jun 20 03:02:17 lme-fw pluto[11919]: | 00 00 00 01 00 00 00 01 00 00
00 88 00 01 00 04
Jun 20 03:02:17 lme-fw pluto[11919]: | 03 00 00 20 00 01 00 00 80 0b
00 01 80 0c 0e 10
Jun 20 03:02:17 lme-fw pluto[11919]: | 80 01 00 05 80 02 00 01 80 03
00 03 80 04 00 05
Jun 20 03:02:17 lme-fw pluto[11919]: | 03 00 00 20 01 01 00 00 80 0b
00 01 80 0c 0e 10
Jun 20 03:02:17 lme-fw pluto[11919]: | 80 01 00 05 80 02 00 02 80 03
00 03 80 04 00 05
Jun 20 03:02:17 lme-fw pluto[11919]: | 03 00 00 20 02 01 00 00 80 0b
00 01 80 0c 0e 10
Jun 20 03:02:17 lme-fw pluto[11919]: | 80 01 00 05 80 02 00 02 80 03
00 03 80 04 00 02
Jun 20 03:02:17 lme-fw pluto[11919]: | 00 00 00 20 03 01 00 00 80 0b
00 01 80 0c 0e 10
Jun 20 03:02:17 lme-fw pluto[11919]: | 80 01 00 05 80 02 00 01 80 03
00 03 80 04 00 02
Jun 20 03:02:17 lme-fw pluto[11919]: | 0d 00 00 10 4f 45 6e 4d 43 75
7f 78 4f 70 40 63
Jun 20 03:02:17 lme-fw pluto[11919]: | 0d 00 00 14 af ca d7 13 68 a1
f1 c9 6b 86 96 fc
Jun 20 03:02:17 lme-fw pluto[11919]: | 77 57 01 00 0d 00 00 14 4a 13
1c 81 07 03 58 45
Jun 20 03:02:17 lme-fw pluto[11919]: | 5c 57 28 f2 0e 95 45 2f 0d 00
00 14 7d 94 19 a6
Jun 20 03:02:17 lme-fw pluto[11919]: | 53 10 ca 6f 2c 17 9d 92 15 52
9d 56 0d 00 00 14
Jun 20 03:02:17 lme-fw pluto[11919]: | cd 60 46 43 35 df 21 f8 7c fd
b2 fc 68 b6 a4 48
Jun 20 03:02:17 lme-fw pluto[11919]: | 0d 00 00 14 90 cb 80 91 3e bb
69 6e 08 63 81 b5
Jun 20 03:02:17 lme-fw pluto[11919]: | ec 42 7b 1f 00 00 00 14 44 85
15 2d 18 b6 bb cd
Jun 20 03:02:17 lme-fw pluto[11919]: | 0b e8 a8 46 95 79 dd cc
Jun 20 03:02:17 lme-fw pluto[11919]: | inserting event EVENT_RETRANSMIT,
timeout in 10 seconds for #9
Jun 20 03:02:17 lme-fw pluto[11919]: | next event EVENT_RETRANSMIT in 10
seconds for #9
Jun 20 03:02:17 lme-fw pluto[11919]: |
Jun 20 03:02:17 lme-fw pluto[11919]: | *received 136 bytes from
99.135.79.74:500 on eth0 (port=500)
Jun 20 03:02:17 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe 4c 3c
46 99 75 14 1f 72
Jun 20 03:02:17 lme-fw pluto[11919]: | 01 10 02 00 00 00 00 00 00 00
00 88 0d 00 00 34
Jun 20 03:02:17 lme-fw pluto[11919]: | 00 00 00 01 00 00 00 01 00 00
00 28 00 01 00 01
Jun 20 03:02:17 lme-fw pluto[11919]: | 00 00 00 20 00 01 00 00 80 0b
00 01 80 0c 0e 10
Jun 20 03:02:17 lme-fw pluto[11919]: | 80 01 00 05 80 02 00 01 80 03
00 03 80 04 00 05
Jun 20 03:02:17 lme-fw pluto[11919]: | 0d 00 00 10 4f 45 5f 5d 7b 76
4b 67 43 6f 4f 49
Jun 20 03:02:17 lme-fw pluto[11919]: | 0d 00 00 14 af ca d7 13 68 a1
f1 c9 6b 86 96 fc
Jun 20 03:02:17 lme-fw pluto[11919]: | 77 57 01 00 00 00 00 14 4a 13
1c 81 07 03 58 45
Jun 20 03:02:17 lme-fw pluto[11919]: | 5c 57 28 f2 0e 95 45 2f
Jun 20 03:02:17 lme-fw pluto[11919]: | **parse ISAKMP Message:
Jun 20 03:02:17 lme-fw pluto[11919]: | initiator cookie:
Jun 20 03:02:17 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe
Jun 20 03:02:17 lme-fw pluto[11919]: | responder cookie:
Jun 20 03:02:17 lme-fw pluto[11919]: | 4c 3c 46 99 75 14 1f 72
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_SA
Jun 20 03:02:17 lme-fw pluto[11919]: | ISAKMP version: ISAKMP Version
1.0
Jun 20 03:02:17 lme-fw pluto[11919]: | exchange type:
ISAKMP_XCHG_IDPROT
Jun 20 03:02:17 lme-fw pluto[11919]: | flags: none
Jun 20 03:02:17 lme-fw pluto[11919]: | message ID: 00 00 00 00
Jun 20 03:02:17 lme-fw pluto[11919]: | length: 136
Jun 20 03:02:17 lme-fw pluto[11919]: | processing packet with exchange
type=ISAKMP_XCHG_IDPROT (2)
Jun 20 03:02:17 lme-fw pluto[11919]: | ICOOKIE: 84 44 2b e6 d3 fe 61
fe
Jun 20 03:02:17 lme-fw pluto[11919]: | RCOOKIE: 4c 3c 46 99 75 14 1f
72
Jun 20 03:02:17 lme-fw pluto[11919]: | peer: 63 87 4f 4a
Jun 20 03:02:17 lme-fw pluto[11919]: | state hash entry 11
Jun 20 03:02:17 lme-fw pluto[11919]: | state object not found
Jun 20 03:02:17 lme-fw pluto[11919]: | ICOOKIE: 84 44 2b e6 d3 fe 61
fe
Jun 20 03:02:17 lme-fw pluto[11919]: | RCOOKIE: 00 00 00 00 00 00 00
00
Jun 20 03:02:17 lme-fw pluto[11919]: | peer: 63 87 4f 4a
Jun 20 03:02:17 lme-fw pluto[11919]: | state hash entry 6
Jun 20 03:02:17 lme-fw pluto[11919]: | peer and cookies match on #9,
provided msgid 00000000 vs 00000000
Jun 20 03:02:17 lme-fw pluto[11919]: | state object #9 found, in
STATE_MAIN_I1
Jun 20 03:02:17 lme-fw pluto[11919]: | processing connection
JanesvillePNT-Everywhere
Jun 20 03:02:17 lme-fw pluto[11919]: | ***parse ISAKMP Security
Association Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_VID
Jun 20 03:02:17 lme-fw pluto[11919]: | length: 52
Jun 20 03:02:17 lme-fw pluto[11919]: | DOI: ISAKMP_DOI_IPSEC
Jun 20 03:02:17 lme-fw pluto[11919]: | ***parse ISAKMP Vendor ID
Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_VID
Jun 20 03:02:17 lme-fw pluto[11919]: | length: 16
Jun 20 03:02:17 lme-fw pluto[11919]: | ***parse ISAKMP Vendor ID
Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_VID
Jun 20 03:02:17 lme-fw pluto[11919]: | length: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | ***parse ISAKMP Vendor ID
Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | length: 20
Jun 20 03:02:17 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9:
ignoring unknown Vendor ID payload [4f455f5d7b764b67436f4f49]
Jun 20 03:02:17 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9:
received Vendor ID payload [Dead Peer Detection]
Jun 20 03:02:17 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9:
received Vendor ID payload [RFC 3947] method set to=110
Jun 20 03:02:17 lme-fw pluto[11919]: | ****parse IPsec DOI SIT:
Jun 20 03:02:17 lme-fw pluto[11919]: | IPsec DOI SIT:
SIT_IDENTITY_ONLY
Jun 20 03:02:17 lme-fw pluto[11919]: | ****parse ISAKMP Proposal
Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | length: 40
Jun 20 03:02:17 lme-fw pluto[11919]: | proposal number: 0
Jun 20 03:02:17 lme-fw pluto[11919]: | protocol ID: PROTO_ISAKMP
Jun 20 03:02:17 lme-fw pluto[11919]: | SPI size: 0
Jun 20 03:02:17 lme-fw pluto[11919]: | number of transforms: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | *****parse ISAKMP Transform
Payload (ISAKMP):
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | length: 32
Jun 20 03:02:17 lme-fw pluto[11919]: | transform number: 0
Jun 20 03:02:17 lme-fw pluto[11919]: | transform ID: KEY_IKE
Jun 20 03:02:17 lme-fw pluto[11919]: | ******parse ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_LIFE_TYPE
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | [1 is OAKLEY_LIFE_SECONDS]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******parse ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_LIFE_DURATION
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 3600
Jun 20 03:02:17 lme-fw pluto[11919]: | ******parse ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_ENCRYPTION_ALGORITHM
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 5
Jun 20 03:02:17 lme-fw pluto[11919]: | [5 is OAKLEY_3DES_CBC]
Jun 20 03:02:17 lme-fw pluto[11919]: | ike_alg_enc_ok(ealg=5,key_len=0):
blocksize=8, keyminlen=192, keydeflen=192, keymaxlen=192, ret=1
Jun 20 03:02:17 lme-fw pluto[11919]: | ******parse ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type: OAKLEY_HASH_ALGORITHM
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | [1 is OAKLEY_MD5]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******parse ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_AUTHENTICATION_METHOD
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 3
Jun 20 03:02:17 lme-fw pluto[11919]: | [3 is OAKLEY_RSA_SIG]
Jun 20 03:02:17 lme-fw pluto[11919]: | ******parse ISAKMP Oakley
attribute:
Jun 20 03:02:17 lme-fw pluto[11919]: | af+type:
OAKLEY_GROUP_DESCRIPTION
Jun 20 03:02:17 lme-fw pluto[11919]: | length/value: 5
Jun 20 03:02:17 lme-fw pluto[11919]: | [5 is OAKLEY_GROUP_MODP1536]
Jun 20 03:02:17 lme-fw pluto[11919]: | Oakley Transform 0 accepted
Jun 20 03:02:17 lme-fw pluto[11919]: | sender checking NAT-t: 1 and 110
Jun 20 03:02:17 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9:
enabling possible NAT-traversal with method 3
Jun 20 03:02:17 lme-fw pluto[11919]: | 0: w->pcw_dead: 0 w->pcw_work: 0
cnt: 1
Jun 20 03:02:17 lme-fw pluto[11919]: | asking helper 0 to do
build_kenonce op on seq: 9
Jun 20 03:02:17 lme-fw pluto[11919]: | inserting event
EVENT_CRYPTO_FAILED, timeout in 300 seconds for #9
Jun 20 03:02:17 lme-fw pluto[11934]: ! helper -1 doing build_kenonce op
id: 9
Jun 20 03:02:17 lme-fw pluto[11919]: | complete state transition with
STF_SUSPEND
Jun 20 03:02:17 lme-fw pluto[11919]: | next event EVENT_PENDING_PHASE2
in 51 seconds
Jun 20 03:02:17 lme-fw pluto[11934]: ! Local DH secret:
Jun 20 03:02:17 lme-fw pluto[11934]: ! 16 5e 89 f9 d9 af 9d 74 ea 89
46 1e 03 97 7c 5e
Jun 20 03:02:17 lme-fw pluto[11934]: ! e9 0f b8 23 82 ca 9f 63 18 be
ee 5e 17 02 f4 de
Jun 20 03:02:17 lme-fw pluto[11934]: ! Public DH value sent:
Jun 20 03:02:17 lme-fw pluto[11934]: ! 15 0d b7 9a 3f aa 3b d6 98 24
6a 8b 10 95 64 73
Jun 20 03:02:17 lme-fw pluto[11934]: ! 31 0e 28 0c be fc 99 93 8e 00
7a 2b 54 15 e0 a4
Jun 20 03:02:17 lme-fw pluto[11934]: ! 66 58 80 a6 2b 55 2b 3b da 72
5d 08 2b 71 7b 10
Jun 20 03:02:17 lme-fw pluto[11934]: ! da 58 74 77 ae e7 ae e9 5f 58
db 73 a2 e0 24 d4
Jun 20 03:02:17 lme-fw pluto[11934]: ! 2c c6 64 26 e2 90 37 e5 86 cc
fd 96 97 e3 93 16
Jun 20 03:02:17 lme-fw pluto[11934]: ! 59 47 46 d4 38 03 17 d4 8c e4
9a 68 82 89 3f 49
Jun 20 03:02:17 lme-fw pluto[11934]: ! 01 b9 5e a2 fa 7c 84 97 85 03
55 0d 0f 24 1b 86
Jun 20 03:02:17 lme-fw pluto[11934]: ! ef 2d 01 48 c1 cb ac 1c 29 65
79 f8 de 35 41 8d
Jun 20 03:02:17 lme-fw pluto[11934]: ! f7 4e d2 75 21 ba 16 d3 95 db
2e 59 dd 69 b7 6c
Jun 20 03:02:17 lme-fw pluto[11934]: ! 96 99 7f 46 6a ca e0 66 cd 91
10 52 fa 5f 1c cf
Jun 20 03:02:17 lme-fw pluto[11934]: ! 0a d4 06 c4 6e 9e 98 cd 9b 26
3f 39 f1 b0 49 60
Jun 20 03:02:17 lme-fw pluto[11934]: ! 45 5e 12 76 05 bf 4a 8d 1f ac
e6 e7 25 88 3a aa
Jun 20 03:02:17 lme-fw pluto[11934]: ! Generated nonce:
Jun 20 03:02:17 lme-fw pluto[11934]: ! fe ac 91 fe df 3d 17 ec 74 a0
1f 05 5d c6 1c d4
Jun 20 03:02:17 lme-fw pluto[11919]: | helper 0 has work (cnt now 0)
Jun 20 03:02:17 lme-fw pluto[11919]: | helper 0 replies to sequence 9
Jun 20 03:02:17 lme-fw pluto[11919]: | calling callback function
0x60e460
Jun 20 03:02:17 lme-fw pluto[11919]: | main inR1_outI2: calculated
ke+nonce, sending I2
Jun 20 03:02:17 lme-fw pluto[11919]: | processing connection
JanesvillePNT-Everywhere
Jun 20 03:02:17 lme-fw pluto[11919]: | **emit ISAKMP Message:
Jun 20 03:02:17 lme-fw pluto[11919]: | initiator cookie:
Jun 20 03:02:17 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe
Jun 20 03:02:17 lme-fw pluto[11919]: | responder cookie:
Jun 20 03:02:17 lme-fw pluto[11919]: | 4c 3c 46 99 75 14 1f 72
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_KE
Jun 20 03:02:17 lme-fw pluto[11919]: | ISAKMP version: ISAKMP Version
1.0
Jun 20 03:02:17 lme-fw pluto[11919]: | exchange type:
ISAKMP_XCHG_IDPROT
Jun 20 03:02:17 lme-fw pluto[11919]: | flags: none
Jun 20 03:02:17 lme-fw pluto[11919]: | message ID: 00 00 00 00
Jun 20 03:02:17 lme-fw pluto[11919]: | ***emit ISAKMP Key Exchange
Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONCE
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting 192 raw bytes of keyex
value into ISAKMP Key Exchange Payload
Jun 20 03:02:17 lme-fw pluto[11919]: | keyex value 15 0d b7 9a 3f aa
3b d6 98 24 6a 8b 10 95 64 73
Jun 20 03:02:17 lme-fw pluto[11919]: | 31 0e 28 0c be fc 99 93 8e 00
7a 2b 54 15 e0 a4
Jun 20 03:02:17 lme-fw pluto[11919]: | 66 58 80 a6 2b 55 2b 3b da 72
5d 08 2b 71 7b 10
Jun 20 03:02:17 lme-fw pluto[11919]: | da 58 74 77 ae e7 ae e9 5f 58
db 73 a2 e0 24 d4
Jun 20 03:02:17 lme-fw pluto[11919]: | 2c c6 64 26 e2 90 37 e5 86 cc
fd 96 97 e3 93 16
Jun 20 03:02:17 lme-fw pluto[11919]: | 59 47 46 d4 38 03 17 d4 8c e4
9a 68 82 89 3f 49
Jun 20 03:02:17 lme-fw pluto[11919]: | 01 b9 5e a2 fa 7c 84 97 85 03
55 0d 0f 24 1b 86
Jun 20 03:02:17 lme-fw pluto[11919]: | ef 2d 01 48 c1 cb ac 1c 29 65
79 f8 de 35 41 8d
Jun 20 03:02:17 lme-fw pluto[11919]: | f7 4e d2 75 21 ba 16 d3 95 db
2e 59 dd 69 b7 6c
Jun 20 03:02:17 lme-fw pluto[11919]: | 96 99 7f 46 6a ca e0 66 cd 91
10 52 fa 5f 1c cf
Jun 20 03:02:17 lme-fw pluto[11919]: | 0a d4 06 c4 6e 9e 98 cd 9b 26
3f 39 f1 b0 49 60
Jun 20 03:02:17 lme-fw pluto[11919]: | 45 5e 12 76 05 bf 4a 8d 1f ac
e6 e7 25 88 3a aa
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP Key
Exchange Payload: 196
Jun 20 03:02:17 lme-fw pluto[11919]: | ***emit ISAKMP Nonce Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting 16 raw bytes of Ni into
ISAKMP Nonce Payload
Jun 20 03:02:17 lme-fw pluto[11919]: | Ni fe ac 91 fe df 3d 17 ec 74
a0 1f 05 5d c6 1c d4
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP Nonce
Payload: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | sending NATD payloads
Jun 20 03:02:17 lme-fw pluto[11919]: | _natd_hash: hasher=0x69b140(16)
Jun 20 03:02:17 lme-fw pluto[11919]: | _natd_hash: icookie=
Jun 20 03:02:17 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe
Jun 20 03:02:17 lme-fw pluto[11919]: | _natd_hash: rcookie=
Jun 20 03:02:17 lme-fw pluto[11919]: | 4c 3c 46 99 75 14 1f 72
Jun 20 03:02:17 lme-fw pluto[11919]: | _natd_hash: ip= 63 87 4f 4a
Jun 20 03:02:17 lme-fw pluto[11919]: | _natd_hash: port=500
Jun 20 03:02:17 lme-fw pluto[11919]: | _natd_hash: hash= 13 f0 68 d4
d8 45 81 fd 87 d6 ab 41 4d a2 51 24
Jun 20 03:02:17 lme-fw pluto[11919]: | ***emit ISAKMP NAT-D Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NAT-D
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting 16 raw bytes of NAT-D
into ISAKMP NAT-D Payload
Jun 20 03:02:17 lme-fw pluto[11919]: | NAT-D 13 f0 68 d4 d8 45 81 fd
87 d6 ab 41 4d a2 51 24
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP NAT-D
Payload: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | _natd_hash: hasher=0x69b140(16)
Jun 20 03:02:17 lme-fw pluto[11919]: | _natd_hash: icookie=
Jun 20 03:02:17 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe
Jun 20 03:02:17 lme-fw pluto[11919]: | _natd_hash: rcookie=
Jun 20 03:02:17 lme-fw pluto[11919]: | 4c 3c 46 99 75 14 1f 72
Jun 20 03:02:17 lme-fw pluto[11919]: | _natd_hash: ip= 0c 18 f8 32
Jun 20 03:02:17 lme-fw pluto[11919]: | _natd_hash: port=500
Jun 20 03:02:17 lme-fw pluto[11919]: | _natd_hash: hash= 19 4e 0d ba
89 6f 9c 7d c9 1e 01 7b 71 4a ae e4
Jun 20 03:02:17 lme-fw pluto[11919]: | ***emit ISAKMP NAT-D Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting 16 raw bytes of NAT-D
into ISAKMP NAT-D Payload
Jun 20 03:02:17 lme-fw pluto[11919]: | NAT-D 19 4e 0d ba 89 6f 9c 7d
c9 1e 01 7b 71 4a ae e4
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP NAT-D
Payload: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | emitting length of ISAKMP
Message: 284
Jun 20 03:02:17 lme-fw pluto[11919]: | ICOOKIE: 84 44 2b e6 d3 fe 61
fe
Jun 20 03:02:17 lme-fw pluto[11919]: | RCOOKIE: 00 00 00 00 00 00 00
00
Jun 20 03:02:17 lme-fw pluto[11919]: | peer: 63 87 4f 4a
Jun 20 03:02:17 lme-fw pluto[11919]: | state hash entry 6
Jun 20 03:02:17 lme-fw pluto[11919]: | ICOOKIE: 84 44 2b e6 d3 fe 61
fe
Jun 20 03:02:17 lme-fw pluto[11919]: | RCOOKIE: 4c 3c 46 99 75 14 1f
72
Jun 20 03:02:17 lme-fw pluto[11919]: | peer: 63 87 4f 4a
Jun 20 03:02:17 lme-fw pluto[11919]: | state hash entry 11
Jun 20 03:02:17 lme-fw pluto[11919]: | complete state transition with
STF_OK
Jun 20 03:02:17 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9:
transition from state STATE_MAIN_I1 to state STATE_MAIN_I2
Jun 20 03:02:17 lme-fw pluto[11919]: | sending reply packet to
99.135.79.74:500 (from port=500)
Jun 20 03:02:17 lme-fw pluto[11919]: | sending 284 bytes for
STATE_MAIN_I1 through eth0:500 to 99.135.79.74:500:
Jun 20 03:02:17 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe 4c 3c
46 99 75 14 1f 72
Jun 20 03:02:17 lme-fw pluto[11919]: | 04 10 02 00 00 00 00 00 00 00
01 1c 0a 00 00 c4
Jun 20 03:02:17 lme-fw pluto[11919]: | 15 0d b7 9a 3f aa 3b d6 98 24
6a 8b 10 95 64 73
Jun 20 03:02:17 lme-fw pluto[11919]: | 31 0e 28 0c be fc 99 93 8e 00
7a 2b 54 15 e0 a4
Jun 20 03:02:17 lme-fw pluto[11919]: | 66 58 80 a6 2b 55 2b 3b da 72
5d 08 2b 71 7b 10
Jun 20 03:02:17 lme-fw pluto[11919]: | da 58 74 77 ae e7 ae e9 5f 58
db 73 a2 e0 24 d4
Jun 20 03:02:17 lme-fw pluto[11919]: | 2c c6 64 26 e2 90 37 e5 86 cc
fd 96 97 e3 93 16
Jun 20 03:02:17 lme-fw pluto[11919]: | 59 47 46 d4 38 03 17 d4 8c e4
9a 68 82 89 3f 49
Jun 20 03:02:17 lme-fw pluto[11919]: | 01 b9 5e a2 fa 7c 84 97 85 03
55 0d 0f 24 1b 86
Jun 20 03:02:17 lme-fw pluto[11919]: | ef 2d 01 48 c1 cb ac 1c 29 65
79 f8 de 35 41 8d
Jun 20 03:02:17 lme-fw pluto[11919]: | f7 4e d2 75 21 ba 16 d3 95 db
2e 59 dd 69 b7 6c
Jun 20 03:02:17 lme-fw pluto[11919]: | 96 99 7f 46 6a ca e0 66 cd 91
10 52 fa 5f 1c cf
Jun 20 03:02:17 lme-fw pluto[11919]: | 0a d4 06 c4 6e 9e 98 cd 9b 26
3f 39 f1 b0 49 60
Jun 20 03:02:17 lme-fw pluto[11919]: | 45 5e 12 76 05 bf 4a 8d 1f ac
e6 e7 25 88 3a aa
Jun 20 03:02:17 lme-fw pluto[11919]: | 14 00 00 14 fe ac 91 fe df 3d
17 ec 74 a0 1f 05
Jun 20 03:02:17 lme-fw pluto[11919]: | 5d c6 1c d4 14 00 00 14 13 f0
68 d4 d8 45 81 fd
Jun 20 03:02:17 lme-fw pluto[11919]: | 87 d6 ab 41 4d a2 51 24 00 00
00 14 19 4e 0d ba
Jun 20 03:02:17 lme-fw pluto[11919]: | 89 6f 9c 7d c9 1e 01 7b 71 4a
ae e4
Jun 20 03:02:17 lme-fw pluto[11919]: | inserting event EVENT_RETRANSMIT,
timeout in 10 seconds for #9
Jun 20 03:02:17 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9:
STATE_MAIN_I2: sent MI2, expecting MR2
Jun 20 03:02:17 lme-fw pluto[11919]: | modecfg pull: noquirk policy:push
not-client
Jun 20 03:02:17 lme-fw pluto[11919]: | phase 1 is done, looking for
phase 1 to unpend
Jun 20 03:02:17 lme-fw pluto[11919]: | next event EVENT_RETRANSMIT in 10
seconds for #9
Jun 20 03:02:17 lme-fw pluto[11919]: |
Jun 20 03:02:17 lme-fw pluto[11919]: | *received 284 bytes from
99.135.79.74:500 on eth0 (port=500)
Jun 20 03:02:17 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe 4c 3c
46 99 75 14 1f 72
Jun 20 03:02:17 lme-fw pluto[11919]: | 04 10 02 00 00 00 00 00 00 00
01 1c 0a 00 00 c4
Jun 20 03:02:17 lme-fw pluto[11919]: | 3b e0 40 17 0a 36 c1 5b 52 b2
f0 3b c9 9f bb 64
Jun 20 03:02:17 lme-fw pluto[11919]: | 85 68 46 c1 ec e0 68 35 9f 0c
0a 12 d5 86 51 47
Jun 20 03:02:17 lme-fw pluto[11919]: | d8 15 f9 57 32 28 89 bd 5f 1b
49 75 b7 6b 7c 06
Jun 20 03:02:17 lme-fw pluto[11919]: | a1 ce 0f b9 7a 15 3c 3f a0 ef
65 12 f3 14 59 a7
Jun 20 03:02:17 lme-fw pluto[11919]: | eb 60 37 73 84 fc 7e 86 9a 17
7c f2 93 d6 ca f5
Jun 20 03:02:17 lme-fw pluto[11919]: | 08 6c 8a 2a f2 76 eb 4d a4 b9
a1 f9 a8 15 88 46
Jun 20 03:02:17 lme-fw pluto[11919]: | 35 e1 d1 fd 65 98 10 d5 bf 06
a4 e9 55 ee d7 fa
Jun 20 03:02:17 lme-fw pluto[11919]: | 17 c1 e2 55 af 70 6d 44 83 e8
9a e8 68 ed 84 9b
Jun 20 03:02:17 lme-fw pluto[11919]: | fe 9e 6a 6f 27 39 48 0e e0 cd
8b 15 30 0b eb d1
Jun 20 03:02:17 lme-fw pluto[11919]: | b7 fd d4 5d 66 62 b0 5e 71 09
50 e7 ec a1 65 6d
Jun 20 03:02:17 lme-fw pluto[11919]: | ed ef 24 a7 ca e1 71 a9 02 77
92 a0 e1 36 bc 31
Jun 20 03:02:17 lme-fw pluto[11919]: | b4 ae 33 e6 87 db 89 d7 ec 95
e3 d5 74 cc af 22
Jun 20 03:02:17 lme-fw pluto[11919]: | 14 00 00 14 1e c9 26 a3 27 01
c4 41 fa 79 a8 dd
Jun 20 03:02:17 lme-fw pluto[11919]: | 6c 7f 12 8d 14 00 00 14 19 4e
0d ba 89 6f 9c 7d
Jun 20 03:02:17 lme-fw pluto[11919]: | c9 1e 01 7b 71 4a ae e4 00 00
00 14 13 f0 68 d4
Jun 20 03:02:17 lme-fw pluto[11919]: | d8 45 81 fd 87 d6 ab 41 4d a2
51 24
Jun 20 03:02:17 lme-fw pluto[11919]: | **parse ISAKMP Message:
Jun 20 03:02:17 lme-fw pluto[11919]: | initiator cookie:
Jun 20 03:02:17 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe
Jun 20 03:02:17 lme-fw pluto[11919]: | responder cookie:
Jun 20 03:02:17 lme-fw pluto[11919]: | 4c 3c 46 99 75 14 1f 72
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_KE
Jun 20 03:02:17 lme-fw pluto[11919]: | ISAKMP version: ISAKMP Version
1.0
Jun 20 03:02:17 lme-fw pluto[11919]: | exchange type:
ISAKMP_XCHG_IDPROT
Jun 20 03:02:17 lme-fw pluto[11919]: | flags: none
Jun 20 03:02:17 lme-fw pluto[11919]: | message ID: 00 00 00 00
Jun 20 03:02:17 lme-fw pluto[11919]: | length: 284
Jun 20 03:02:17 lme-fw pluto[11919]: | processing packet with exchange
type=ISAKMP_XCHG_IDPROT (2)
Jun 20 03:02:17 lme-fw pluto[11919]: | ICOOKIE: 84 44 2b e6 d3 fe 61
fe
Jun 20 03:02:17 lme-fw pluto[11919]: | RCOOKIE: 4c 3c 46 99 75 14 1f
72
Jun 20 03:02:17 lme-fw pluto[11919]: | peer: 63 87 4f 4a
Jun 20 03:02:17 lme-fw pluto[11919]: | state hash entry 11
Jun 20 03:02:17 lme-fw pluto[11919]: | peer and cookies match on #9,
provided msgid 00000000 vs 00000000
Jun 20 03:02:17 lme-fw pluto[11919]: | state object #9 found, in
STATE_MAIN_I2
Jun 20 03:02:17 lme-fw pluto[11919]: | processing connection
JanesvillePNT-Everywhere
Jun 20 03:02:17 lme-fw pluto[11919]: | ***parse ISAKMP Key Exchange
Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONCE
Jun 20 03:02:17 lme-fw pluto[11919]: | length: 196
Jun 20 03:02:17 lme-fw pluto[11919]: | ***parse ISAKMP Nonce Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NAT-D
Jun 20 03:02:17 lme-fw pluto[11919]: | length: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | ***parse ISAKMP NAT-D Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NAT-D
Jun 20 03:02:17 lme-fw pluto[11919]: | length: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | ***parse ISAKMP NAT-D Payload:
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | length: 20
Jun 20 03:02:17 lme-fw pluto[11919]: | **emit ISAKMP Message:
Jun 20 03:02:17 lme-fw pluto[11919]: | initiator cookie:
Jun 20 03:02:17 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe
Jun 20 03:02:17 lme-fw pluto[11919]: | responder cookie:
Jun 20 03:02:17 lme-fw pluto[11919]: | 4c 3c 46 99 75 14 1f 72
Jun 20 03:02:17 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_ID
Jun 20 03:02:17 lme-fw pluto[11919]: | ISAKMP version: ISAKMP Version
1.0
Jun 20 03:02:17 lme-fw pluto[11919]: | exchange type:
ISAKMP_XCHG_IDPROT
Jun 20 03:02:17 lme-fw pluto[11919]: | flags: ISAKMP_FLAG_ENCRYPTION
Jun 20 03:02:17 lme-fw pluto[11919]: | message ID: 00 00 00 00
Jun 20 03:02:17 lme-fw pluto[11919]: | DH public value received:
Jun 20 03:02:17 lme-fw pluto[11919]: | 3b e0 40 17 0a 36 c1 5b 52 b2
f0 3b c9 9f bb 64
Jun 20 03:02:17 lme-fw pluto[11919]: | 85 68 46 c1 ec e0 68 35 9f 0c
0a 12 d5 86 51 47
Jun 20 03:02:17 lme-fw pluto[11919]: | d8 15 f9 57 32 28 89 bd 5f 1b
49 75 b7 6b 7c 06
Jun 20 03:02:17 lme-fw pluto[11919]: | a1 ce 0f b9 7a 15 3c 3f a0 ef
65 12 f3 14 59 a7
Jun 20 03:02:17 lme-fw pluto[11919]: | eb 60 37 73 84 fc 7e 86 9a 17
7c f2 93 d6 ca f5
Jun 20 03:02:17 lme-fw pluto[11919]: | 08 6c 8a 2a f2 76 eb 4d a4 b9
a1 f9 a8 15 88 46
Jun 20 03:02:17 lme-fw pluto[11919]: | 35 e1 d1 fd 65 98 10 d5 bf 06
a4 e9 55 ee d7 fa
Jun 20 03:02:17 lme-fw pluto[11919]: | 17 c1 e2 55 af 70 6d 44 83 e8
9a e8 68 ed 84 9b
Jun 20 03:02:17 lme-fw pluto[11919]: | fe 9e 6a 6f 27 39 48 0e e0 cd
8b 15 30 0b eb d1
Jun 20 03:02:17 lme-fw pluto[11919]: | b7 fd d4 5d 66 62 b0 5e 71 09
50 e7 ec a1 65 6d
Jun 20 03:02:17 lme-fw pluto[11919]: | ed ef 24 a7 ca e1 71 a9 02 77
92 a0 e1 36 bc 31
Jun 20 03:02:17 lme-fw pluto[11919]: | b4 ae 33 e6 87 db 89 d7 ec 95
e3 d5 74 cc af 22
Jun 20 03:02:17 lme-fw pluto[11919]: | thinking about whether to send my
certificate:
Jun 20 03:02:17 lme-fw pluto[11919]: | I have RSA key: OAKLEY_RSA_SIG
cert.type: CERT_NONE
Jun 20 03:02:17 lme-fw pluto[11919]: | sendcert: CERT_ALWAYSSEND and I
did not get a certificate request
Jun 20 03:02:17 lme-fw pluto[11919]: | so do not send cert.
Jun 20 03:02:17 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9: I
did not send a certificate because I do not have one.
Jun 20 03:02:17 lme-fw pluto[11919]: | I am not sending a certificate
request
Jun 20 03:02:17 lme-fw pluto[11919]: | started looking for secret for
@hq.local->@janesvillepnt.local of kind PPK_PSK
Jun 20 03:02:17 lme-fw pluto[11919]: | actually looking for secret for
@hq.local->@janesvillepnt.local of kind PPK_PSK
Jun 20 03:02:17 lme-fw pluto[11919]: | concluding with best_match=0
best=(nil) (lineno=-1)
Jun 20 03:02:17 lme-fw pluto[11919]: | calc_dh_shared(): time elapsed
(OAKLEY_GROUP_MODP1536): 14302 usec
Jun 20 03:02:17 lme-fw pluto[11919]: | DH shared secret:
Jun 20 03:02:17 lme-fw pluto[11919]: | 4e 1f 92 14 27 af 29 a9 26 84
eb 3b 54 57 0f ad
Jun 20 03:02:17 lme-fw pluto[11919]: | 04 aa ab a5 1d 6d 0d e4 2a 4b
c3 99 96 b2 29 f7
Jun 20 03:02:17 lme-fw pluto[11919]: | 00 d3 08 8b 0f ab af c6 b4 3c
b4 0e f5 31 82 7c
Jun 20 03:02:17 lme-fw pluto[11919]: | d6 b7 ba dc ac 8a 46 06 ed a3
d2 46 af 2c 21 63
Jun 20 03:02:17 lme-fw pluto[11919]: | 24 ff 40 34 57 ac 23 53 4a d3
29 d2 92 99 3f d2
Jun 20 03:02:17 lme-fw pluto[11919]: | f0 48 e8 f7 57 a8 36 fa a5 06
06 99 f5 ed 23 e7
Jun 20 03:02:17 lme-fw pluto[11919]: | 30 45 a5 c2 05 a6 ad aa cb 24
1c d8 be 72 87 ab
Jun 20 03:02:17 lme-fw pluto[11919]: | 25 32 12 18 8a 34 c9 8f d9 b9
25 22 77 02 02 d6
Jun 20 03:02:17 lme-fw pluto[11919]: | 04 ee 1f 1b be b6 a1 38 24 17
64 50 7e 23 d8 0f
Jun 20 03:02:17 lme-fw pluto[11919]: | e4 af e8 5a b4 fa 75 ac 19 27
1a 99 b7 50 d5 9a
Jun 20 03:02:17 lme-fw pluto[11919]: | 04 8b a3 4c 01 fa cb e7 06 31
83 2c 26 b1 bf 42
Jun 20 03:02:17 lme-fw pluto[11919]: | 40 0d ff 8c 8b de 08 bd bf bb
bf 89 82 c2 13 88
Jun 20 03:02:17 lme-fw pluto[11919]: | skeyid inputs (digi+NI+NR+shared)
hasher: oakley_md5
Jun 20 03:02:17 lme-fw pluto[11919]: | shared: 4e 1f 92 14 27 af 29
a9 26 84 eb 3b 54 57 0f ad
Jun 20 03:02:17 lme-fw pluto[11919]: | 04 aa ab a5 1d 6d 0d e4 2a 4b
c3 99 96 b2 29 f7
Jun 20 03:02:17 lme-fw pluto[11919]: | 00 d3 08 8b 0f ab af c6 b4 3c
b4 0e f5 31 82 7c
Jun 20 03:02:17 lme-fw pluto[11919]: | d6 b7 ba dc ac 8a 46 06 ed a3
d2 46 af 2c 21 63
Jun 20 03:02:17 lme-fw pluto[11919]: | 24 ff 40 34 57 ac 23 53 4a d3
29 d2 92 99 3f d2
Jun 20 03:02:17 lme-fw pluto[11919]: | f0 48 e8 f7 57 a8 36 fa a5 06
06 99 f5 ed 23 e7
Jun 20 03:02:17 lme-fw pluto[11919]: | 30 45 a5 c2 05 a6 ad aa cb 24
1c d8 be 72 87 ab
Jun 20 03:02:17 lme-fw pluto[11919]: | 25 32 12 18 8a 34 c9 8f d9 b9
25 22 77 02 02 d6
Jun 20 03:02:17 lme-fw pluto[11919]: | 04 ee 1f 1b be b6 a1 38 24 17
64 50 7e 23 d8 0f
Jun 20 03:02:17 lme-fw pluto[11919]: | e4 af e8 5a b4 fa 75 ac 19 27
1a 99 b7 50 d5 9a
Jun 20 03:02:17 lme-fw pluto[11919]: | 04 8b a3 4c 01 fa cb e7 06 31
83 2c 26 b1 bf 42
Jun 20 03:02:17 lme-fw pluto[11919]: | 40 0d ff 8c 8b de 08 bd bf bb
bf 89 82 c2 13 88
Jun 20 03:02:17 lme-fw pluto[11919]: | ni: fe ac 91 fe df 3d 17 ec
74 a0 1f 05 5d c6 1c d4
Jun 20 03:02:17 lme-fw pluto[11919]: | nr: 1e c9 26 a3 27 01 c4 41
fa 79 a8 dd 6c 7f 12 8d
Jun 20 03:02:17 lme-fw pluto[11919]: | keyid: 0d 23 26 62 b1 31 13 b0
84 f7 cf 0e a1 5c af d7
Jun 20 03:02:17 lme-fw pluto[11919]: | DH_i: 15 0d b7 9a 3f aa 3b d6
98 24 6a 8b 10 95 64 73
Jun 20 03:02:17 lme-fw pluto[11919]: | 31 0e 28 0c be fc 99 93 8e 00
7a 2b 54 15 e0 a4
Jun 20 03:02:17 lme-fw pluto[11919]: | 66 58 80 a6 2b 55 2b 3b da 72
5d 08 2b 71 7b 10
Jun 20 03:02:17 lme-fw pluto[11919]: | da 58 74 77 ae e7 ae e9 5f 58
db 73 a2 e0 24 d4
Jun 20 03:02:17 lme-fw pluto[11919]: | 2c c6 64 26 e2 90 37 e5 86 cc
fd 96 97 e3 93 16
Jun 20 03:02:17 lme-fw pluto[11919]: | 59 47 46 d4 38 03 17 d4 8c e4
9a 68 82 89 3f 49
Jun 20 03:02:17 lme-fw pluto[11919]: | 01 b9 5e a2 fa 7c 84 97 85 03
55 0d 0f 24 1b 86
Jun 20 03:02:17 lme-fw pluto[11919]: | ef 2d 01 48 c1 cb ac 1c 29 65
79 f8 de 35 41 8d
Jun 20 03:02:17 lme-fw pluto[11919]: | f7 4e d2 75 21 ba 16 d3 95 db
2e 59 dd 69 b7 6c
Jun 20 03:02:17 lme-fw pluto[11919]: | 96 99 7f 46 6a ca e0 66 cd 91
10 52 fa 5f 1c cf
Jun 20 03:02:17 lme-fw pluto[11919]: | 0a d4 06 c4 6e 9e 98 cd 9b 26
3f 39 f1 b0 49 60
Jun 20 03:02:17 lme-fw pluto[11919]: | 45 5e 12 76 05 bf 4a 8d 1f ac
e6 e7 25 88 3a aa
Jun 20 03:02:17 lme-fw pluto[11919]: | DH_r: 3b e0 40 17 0a 36 c1 5b
52 b2 f0 3b c9 9f bb 64
Jun 20 03:02:17 lme-fw pluto[11919]: | 85 68 46 c1 ec e0 68 35 9f 0c
0a 12 d5 86 51 47
Jun 20 03:02:17 lme-fw pluto[11919]: | d8 15 f9 57 32 28 89 bd 5f 1b
49 75 b7 6b 7c 06
Jun 20 03:02:17 lme-fw pluto[11919]: | a1 ce 0f b9 7a 15 3c 3f a0 ef
65 12 f3 14 59 a7
Jun 20 03:02:17 lme-fw pluto[11919]: | eb 60 37 73 84 fc 7e 86 9a 17
7c f2 93 d6 ca f5
Jun 20 03:02:17 lme-fw pluto[11919]: | 08 6c 8a 2a f2 76 eb 4d a4 b9
a1 f9 a8 15 88 46
Jun 20 03:02:17 lme-fw pluto[11919]: | 35 e1 d1 fd 65 98 10 d5 bf 06
a4 e9 55 ee d7 fa
Jun 20 03:02:17 lme-fw pluto[11919]: | 17 c1 e2 55 af 70 6d 44 83 e8
9a e8 68 ed 84 9b
Jun 20 03:02:17 lme-fw pluto[11919]: | fe 9e 6a 6f 27 39 48 0e e0 cd
8b 15 30 0b eb d1
Jun 20 03:02:17 lme-fw pluto[11919]: | b7 fd d4 5d 66 62 b0 5e 71 09
50 e7 ec a1 65 6d
Jun 20 03:02:17 lme-fw pluto[11919]: | ed ef 24 a7 ca e1 71 a9 02 77
92 a0 e1 36 bc 31
Jun 20 03:02:17 lme-fw pluto[11919]: | b4 ae 33 e6 87 db 89 d7 ec 95
e3 d5 74 cc af 22
Jun 20 03:02:17 lme-fw pluto[11919]: | Skeyid: 0d 23 26 62 b1 31 13
b0 84 f7 cf 0e a1 5c af d7
Jun 20 03:02:17 lme-fw pluto[11919]: | Skeyid_d: 20 8e be bf e1 e6 88
6c 93 d8 a4 7b 2e 60 59 f6
Jun 20 03:02:18 lme-fw pluto[11919]: | Skeyid_a: a3 8a b3 66 6a 36 8d
9c a9 79 f9 9e fd 1d 8f b7
Jun 20 03:02:18 lme-fw pluto[11919]: | Skeyid_e: b0 c5 3f 03 e8 3d e8
da f9 fb bd 83 e9 59 8c 18
Jun 20 03:02:18 lme-fw pluto[11919]: | enc key: 95 fa b7 ab ba fc af
ea e4 2f ec d5 8d 34 2f 46
Jun 20 03:02:18 lme-fw pluto[11919]: | 4d e1 64 5f 24 f9 51 58
Jun 20 03:02:18 lme-fw pluto[11919]: | IV: bb 44 46 a8 02 a6 d0 5f cd
88 60 cf ac ba a0 22
Jun 20 03:02:18 lme-fw pluto[11919]: | _natd_hash: hasher=0x69b140(16)
Jun 20 03:02:18 lme-fw pluto[11919]: | _natd_hash: icookie=
Jun 20 03:02:18 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe
Jun 20 03:02:18 lme-fw pluto[11919]: | _natd_hash: rcookie=
Jun 20 03:02:18 lme-fw pluto[11919]: | 4c 3c 46 99 75 14 1f 72
Jun 20 03:02:18 lme-fw pluto[11919]: | _natd_hash: ip= 0c 18 f8 32
Jun 20 03:02:18 lme-fw pluto[11919]: | _natd_hash: port=500
Jun 20 03:02:18 lme-fw pluto[11919]: | _natd_hash: hash= 19 4e 0d ba
89 6f 9c 7d c9 1e 01 7b 71 4a ae e4
Jun 20 03:02:18 lme-fw pluto[11919]: | _natd_hash: hasher=0x69b140(16)
Jun 20 03:02:18 lme-fw pluto[11919]: | _natd_hash: icookie=
Jun 20 03:02:18 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe
Jun 20 03:02:18 lme-fw pluto[11919]: | _natd_hash: rcookie=
Jun 20 03:02:18 lme-fw pluto[11919]: | 4c 3c 46 99 75 14 1f 72
Jun 20 03:02:18 lme-fw pluto[11919]: | _natd_hash: ip= 63 87 4f 4a
Jun 20 03:02:18 lme-fw pluto[11919]: | _natd_hash: port=500
Jun 20 03:02:18 lme-fw pluto[11919]: | _natd_hash: hash= 13 f0 68 d4
d8 45 81 fd 87 d6 ab 41 4d a2 51 24
Jun 20 03:02:18 lme-fw pluto[11919]: | NAT_TRAVERSAL hash=0 (me:0)
(him:0)
Jun 20 03:02:18 lme-fw pluto[11919]: | expected NAT-D(me): 19 4e 0d ba
89 6f 9c 7d c9 1e 01 7b 71 4a ae e4
Jun 20 03:02:18 lme-fw pluto[11919]: | expected NAT-D(him):
Jun 20 03:02:18 lme-fw pluto[11919]: | 13 f0 68 d4 d8 45 81 fd 87 d6
ab 41 4d a2 51 24
Jun 20 03:02:18 lme-fw pluto[11919]: | received NAT-D: 19 4e 0d ba 89
6f 9c 7d c9 1e 01 7b 71 4a ae e4
Jun 20 03:02:18 lme-fw pluto[11919]: | NAT_TRAVERSAL hash=1 (me:1)
(him:0)
Jun 20 03:02:18 lme-fw pluto[11919]: | expected NAT-D(me): 19 4e 0d ba
89 6f 9c 7d c9 1e 01 7b 71 4a ae e4
Jun 20 03:02:18 lme-fw pluto[11919]: | expected NAT-D(him):
Jun 20 03:02:18 lme-fw pluto[11919]: | 13 f0 68 d4 d8 45 81 fd 87 d6
ab 41 4d a2 51 24
Jun 20 03:02:18 lme-fw pluto[11919]: | received NAT-D: 13 f0 68 d4 d8
45 81 fd 87 d6 ab 41 4d a2 51 24
Jun 20 03:02:18 lme-fw pluto[11919]: | NAT_TRAVERSAL hash=2 (me:1)
(him:1)
Jun 20 03:02:18 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9:
NAT-Traversal: Result using 3: no NAT detected
Jun 20 03:02:18 lme-fw pluto[11919]: | inserting event
EVENT_NAT_T_KEEPALIVE, timeout in 20 seconds
Jun 20 03:02:18 lme-fw pluto[11919]: | ***emit ISAKMP Identification
Payload (IPsec DOI):
Jun 20 03:02:18 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_SIG
Jun 20 03:02:18 lme-fw pluto[11919]: | ID type: ID_FQDN
Jun 20 03:02:18 lme-fw pluto[11919]: | Protocol ID: 0
Jun 20 03:02:18 lme-fw pluto[11919]: | port: 0
Jun 20 03:02:18 lme-fw pluto[11919]: | emitting 8 raw bytes of my
identity into ISAKMP Identification Payload (IPsec DOI)
Jun 20 03:02:18 lme-fw pluto[11919]: | my identity 68 71 2e 6c 6f 63
61 6c
Jun 20 03:02:18 lme-fw pluto[11919]: | emitting length of ISAKMP
Identification Payload (IPsec DOI): 16
Jun 20 03:02:18 lme-fw pluto[11919]: | hashing 144 bytes of SA
Jun 20 03:02:18 lme-fw pluto[11919]: | started looking for secret for
@hq.local->@janesvillepnt.local of kind PPK_RSA
Jun 20 03:02:18 lme-fw pluto[11919]: | actually looking for secret for
@hq.local->@janesvillepnt.local of kind PPK_RSA
Jun 20 03:02:18 lme-fw pluto[11919]: | best_match 0>1 best=0x9b40fe0
(line=1)
Jun 20 03:02:18 lme-fw pluto[11919]: | concluding with best_match=1
best=0x9b40fe0 (lineno=1)
Jun 20 03:02:18 lme-fw pluto[11919]: | signing hash with RSA Key
*AQNb9diwR
Jun 20 03:02:18 lme-fw pluto[11919]: | ***emit ISAKMP Signature Payload:
Jun 20 03:02:18 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:18 lme-fw pluto[11919]: | emitting 274 raw bytes of SIG_I
into ISAKMP Signature Payload
Jun 20 03:02:18 lme-fw pluto[11919]: | SIG_I 4e 9c 8b ac 74 0a 50 4b
89 7e 2b 92 be 29 29 29
Jun 20 03:02:18 lme-fw pluto[11919]: | 29 73 fc 54 71 15 c0 4c c3 a4
af f3 b6 63 55 82
Jun 20 03:02:18 lme-fw pluto[11919]: | 7f f3 ee 72 05 8f d0 92 27 7b
eb b0 38 a2 7e c5
Jun 20 03:02:18 lme-fw pluto[11919]: | 40 55 c3 8f 9a 3f de 5c 31 45
6c c7 03 36 69 cc
Jun 20 03:02:18 lme-fw pluto[11919]: | 24 45 e4 44 1d 4a 3c 07 3f e0
e7 c5 f1 bf 0b b9
Jun 20 03:02:18 lme-fw pluto[11919]: | 1d fb 1b 88 03 c5 38 bb 71 97
2f 0e fc 1c ab 41
Jun 20 03:02:18 lme-fw pluto[11919]: | 52 64 2f 4d b2 60 26 ce fb 0b
72 a9 92 75 09 a4
Jun 20 03:02:18 lme-fw pluto[11919]: | 07 8a 91 db 94 a7 d0 17 03 f4
63 3f aa c2 d1 1c
Jun 20 03:02:18 lme-fw pluto[11919]: | e0 01 e4 48 ea 0d c7 26 5b 1c
d4 89 62 fa db 5f
Jun 20 03:02:18 lme-fw pluto[11919]: | 82 00 2e 12 95 cf b9 c8 70 1a
d5 1e 58 a5 d3 5f
Jun 20 03:02:18 lme-fw pluto[11919]: | 65 f7 ac 66 d9 c5 a8 22 d3 26
58 6f 5c bf 80 53
Jun 20 03:02:18 lme-fw pluto[11919]: | d0 ca d1 fd 29 be f8 26 8f ac
05 76 81 b7 be 3f
Jun 20 03:02:18 lme-fw pluto[11919]: | b9 92 70 0d 4c 0c 73 24 8d af
50 8b 45 c1 61 18
Jun 20 03:02:18 lme-fw pluto[11919]: | 13 69 dd 79 5d 58 2e d9 83 81
01 79 6b ae 80 49
Jun 20 03:02:18 lme-fw pluto[11919]: | b5 1f cb 83 37 80 7e c6 b8 7f
e9 54 39 b2 9e da
Jun 20 03:02:18 lme-fw pluto[11919]: | 70 ce 76 57 bf 2b cc 15 3f fd
f9 cf 1f 65 63 68
Jun 20 03:02:18 lme-fw pluto[11919]: | fe 43 e6 2d 0a 4a 35 62 b3 22
1c ce 1f ac d6 95
Jun 20 03:02:18 lme-fw pluto[11919]: | 91 12
Jun 20 03:02:18 lme-fw pluto[11919]: | emitting length of ISAKMP
Signature Payload: 278
Jun 20 03:02:18 lme-fw pluto[11919]: | encrypting:
Jun 20 03:02:18 lme-fw pluto[11919]: | 09 00 00 10 02 00 00 00 68 71
2e 6c 6f 63 61 6c
Jun 20 03:02:18 lme-fw pluto[11919]: | 00 00 01 16 4e 9c 8b ac 74 0a
50 4b 89 7e 2b 92
Jun 20 03:02:18 lme-fw pluto[11919]: | be 29 29 29 29 73 fc 54 71 15
c0 4c c3 a4 af f3
Jun 20 03:02:18 lme-fw pluto[11919]: | b6 63 55 82 7f f3 ee 72 05 8f
d0 92 27 7b eb b0
Jun 20 03:02:18 lme-fw pluto[11919]: | 38 a2 7e c5 40 55 c3 8f 9a 3f
de 5c 31 45 6c c7
Jun 20 03:02:18 lme-fw pluto[11919]: | 03 36 69 cc 24 45 e4 44 1d 4a
3c 07 3f e0 e7 c5
Jun 20 03:02:18 lme-fw pluto[11919]: | f1 bf 0b b9 1d fb 1b 88 03 c5
38 bb 71 97 2f 0e
Jun 20 03:02:18 lme-fw pluto[11919]: | fc 1c ab 41 52 64 2f 4d b2 60
26 ce fb 0b 72 a9
Jun 20 03:02:18 lme-fw pluto[11919]: | 92 75 09 a4 07 8a 91 db 94 a7
d0 17 03 f4 63 3f
Jun 20 03:02:18 lme-fw pluto[11919]: | aa c2 d1 1c e0 01 e4 48 ea 0d
c7 26 5b 1c d4 89
Jun 20 03:02:18 lme-fw pluto[11919]: | 62 fa db 5f 82 00 2e 12 95 cf
b9 c8 70 1a d5 1e
Jun 20 03:02:18 lme-fw pluto[11919]: | 58 a5 d3 5f 65 f7 ac 66 d9 c5
a8 22 d3 26 58 6f
Jun 20 03:02:18 lme-fw pluto[11919]: | 5c bf 80 53 d0 ca d1 fd 29 be
f8 26 8f ac 05 76
Jun 20 03:02:18 lme-fw pluto[11919]: | 81 b7 be 3f b9 92 70 0d 4c 0c
73 24 8d af 50 8b
Jun 20 03:02:18 lme-fw pluto[11919]: | 45 c1 61 18 13 69 dd 79 5d 58
2e d9 83 81 01 79
Jun 20 03:02:18 lme-fw pluto[11919]: | 6b ae 80 49 b5 1f cb 83 37 80
7e c6 b8 7f e9 54
Jun 20 03:02:18 lme-fw pluto[11919]: | 39 b2 9e da 70 ce 76 57 bf 2b
cc 15 3f fd f9 cf
Jun 20 03:02:18 lme-fw pluto[11919]: | 1f 65 63 68 fe 43 e6 2d 0a 4a
35 62 b3 22 1c ce
Jun 20 03:02:18 lme-fw pluto[11919]: | 1f ac d6 95 91 12
Jun 20 03:02:18 lme-fw pluto[11919]: | IV:
Jun 20 03:02:18 lme-fw pluto[11919]: | bb 44 46 a8 02 a6 d0 5f cd 88
60 cf ac ba a0 22
Jun 20 03:02:18 lme-fw pluto[11919]: | emitting 2 zero bytes of
encryption padding into ISAKMP Message
Jun 20 03:02:18 lme-fw pluto[11919]: | encrypting using OAKLEY_3DES_CBC
Jun 20 03:02:18 lme-fw pluto[11919]: | next IV: 15 d6 e0 f0 e0 13 04
b5
Jun 20 03:02:18 lme-fw pluto[11919]: | emitting length of ISAKMP
Message: 324
Jun 20 03:02:18 lme-fw pluto[11919]: | complete state transition with
STF_OK
Jun 20 03:02:18 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9:
transition from state STATE_MAIN_I2 to state STATE_MAIN_I3
Jun 20 03:02:18 lme-fw pluto[11919]: | sending reply packet to
99.135.79.74:500 (from port=500)
Jun 20 03:02:18 lme-fw pluto[11919]: | sending 324 bytes for
STATE_MAIN_I2 through eth0:500 to 99.135.79.74:500:
Jun 20 03:02:18 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe 4c 3c
46 99 75 14 1f 72
Jun 20 03:02:18 lme-fw pluto[11919]: | 05 10 02 01 00 00 00 00 00 00
01 44 1f e3 6c 3b
Jun 20 03:02:18 lme-fw pluto[11919]: | 25 77 8a d1 4d 98 c6 57 67 7c
3a 7d c4 fe dc 11
Jun 20 03:02:18 lme-fw pluto[11919]: | 0c 25 51 da 63 31 f9 29 6b ab
78 40 84 bc f0 e4
Jun 20 03:02:18 lme-fw pluto[11919]: | ea 67 61 c1 98 55 40 25 2e 0a
b2 17 dc 9b 3b ba
Jun 20 03:02:18 lme-fw pluto[11919]: | 20 aa 2d e2 0c 92 8c 97 6c 7b
d5 db d2 0f b4 45
Jun 20 03:02:18 lme-fw pluto[11919]: | 6a a6 b5 60 6e e5 91 83 8d f0
0a ca 37 da 23 e9
Jun 20 03:02:18 lme-fw pluto[11919]: | 17 39 ca 7f b2 a5 35 db 6e d7
d3 41 d3 7d 73 b6
Jun 20 03:02:18 lme-fw pluto[11919]: | 2e 10 35 92 f3 aa 8e 1a 96 37
9c 83 25 88 98 e6
Jun 20 03:02:18 lme-fw pluto[11919]: | 4b 62 41 ed f2 c6 c8 ba 68 cd
f9 c5 5a 19 4c 7e
Jun 20 03:02:18 lme-fw pluto[11919]: | 80 f4 9a 73 86 21 ac bf e0 11
77 4d 7e 62 a6 14
Jun 20 03:02:18 lme-fw pluto[11919]: | c4 0c 4f e6 7d 0b b5 a3 73 50
56 74 48 4a 55 58
Jun 20 03:02:18 lme-fw pluto[11919]: | 9d 7e 48 ac 9e 33 4c 00 f1 2d
c1 84 f2 3d 6d 63
Jun 20 03:02:18 lme-fw pluto[11919]: | 12 46 b7 d9 14 d0 b4 e8 27 5a
4c a6 32 bf 93 b5
Jun 20 03:02:18 lme-fw pluto[11919]: | 94 77 d4 7a c0 6b 44 27 f2 b2
01 27 52 ec 78 5a
Jun 20 03:02:18 lme-fw pluto[11919]: | 1e 33 d5 67 d1 b4 49 0f 5a 5e
ad 71 a0 13 1e d5
Jun 20 03:02:18 lme-fw pluto[11919]: | cd 20 ca e4 3c ce f2 4e 92 72
da b9 a9 29 1a 1b
Jun 20 03:02:18 lme-fw pluto[11919]: | 6c aa f1 64 7e c3 eb 6f 45 4d
f6 f5 b5 53 02 b8
Jun 20 03:02:18 lme-fw pluto[11919]: | dd a5 91 04 7d 22 d6 33 ff 19
d6 04 8b 4e 28 cd
Jun 20 03:02:18 lme-fw pluto[11919]: | de b5 b9 22 78 d7 c5 ff 8a 35
3b d0 15 d6 e0 f0
Jun 20 03:02:18 lme-fw pluto[11919]: | e0 13 04 b5
Jun 20 03:02:18 lme-fw pluto[11919]: | inserting event EVENT_RETRANSMIT,
timeout in 10 seconds for #9
Jun 20 03:02:18 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9:
STATE_MAIN_I3: sent MI3, expecting MR3
Jun 20 03:02:18 lme-fw pluto[11919]: | modecfg pull: noquirk policy:push
not-client
Jun 20 03:02:18 lme-fw pluto[11919]: | phase 1 is done, looking for
phase 1 to unpend
Jun 20 03:02:18 lme-fw pluto[11919]: | next event EVENT_RETRANSMIT in 10
seconds for #9
Jun 20 03:02:18 lme-fw pluto[11919]: |
Jun 20 03:02:18 lme-fw pluto[11919]: | *received 340 bytes from
99.135.79.74:500 on eth0 (port=500)
Jun 20 03:02:18 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe 4c 3c
46 99 75 14 1f 72
Jun 20 03:02:18 lme-fw pluto[11919]: | 05 10 02 01 00 00 00 00 00 00
01 54 c7 bc 8d 63
Jun 20 03:02:18 lme-fw pluto[11919]: | 54 01 b3 b2 3f ee bc b4 75 ec
1b 96 1f 7d 42 74
Jun 20 03:02:18 lme-fw pluto[11919]: | 0c be 0d ba ba b8 2c c8 f3 5a
d5 0b f6 71 6e 7d
Jun 20 03:02:18 lme-fw pluto[11919]: | 32 74 37 2b 48 46 f0 dc ff 15
d8 36 a4 58 2c 7c
Jun 20 03:02:18 lme-fw pluto[11919]: | 56 10 4b 9e 81 4f 1c 02 e2 39
82 7d e7 1f 64 fd
Jun 20 03:02:18 lme-fw pluto[11919]: | 06 3c 7c 68 54 06 23 08 de 25
15 44 64 5e 83 8a
Jun 20 03:02:18 lme-fw pluto[11919]: | 58 ed 08 6d 6d 47 b9 a6 a8 bb
2f 6b 7e 1c 5a 82
Jun 20 03:02:18 lme-fw pluto[11919]: | a4 e2 23 83 8a 77 ae e7 2e f4
b8 fc bf 4e 1b ae
Jun 20 03:02:18 lme-fw pluto[11919]: | 85 e9 b0 e7 d9 72 6f 60 9e 58
0e 02 57 f2 ea e7
Jun 20 03:02:18 lme-fw pluto[11919]: | 66 75 01 57 21 04 cb 9d b6 c3
ff cb 93 0e a5 71
Jun 20 03:02:18 lme-fw pluto[11919]: | 8e b7 f4 65 d0 de f6 07 78 ab
ca f3 95 7f e5 d1
Jun 20 03:02:18 lme-fw pluto[11919]: | f1 06 eb e5 10 b2 f6 76 c4 a2
44 2b 99 b0 db 1c
Jun 20 03:02:18 lme-fw pluto[11919]: | 14 8f 9e 39 aa b5 da 43 7e 05
15 1b 0e 83 94 f9
Jun 20 03:02:18 lme-fw pluto[11919]: | e2 01 e8 c2 ad 46 28 82 4b 9a
85 1a e5 1b 16 90
Jun 20 03:02:18 lme-fw pluto[11919]: | 84 1c b6 23 1e 58 0e 6b 13 33
55 2a c4 67 e2 2c
Jun 20 03:02:18 lme-fw pluto[11919]: | c6 82 dc ed 49 fc e9 e6 70 22
d1 91 e5 a6 4d d3
Jun 20 03:02:18 lme-fw pluto[11919]: | 72 94 95 62 4c c9 ba ce 50 62
ab 57 97 96 b5 3f
Jun 20 03:02:18 lme-fw pluto[11919]: | 1d 44 8c 7c d6 b1 8b 8d c7 d9
9f 45 ef bb e8 f8
Jun 20 03:02:18 lme-fw pluto[11919]: | b4 26 4a c2 c9 29 0b f5 9a 4c
f5 df db e9 cc 84
Jun 20 03:02:18 lme-fw pluto[11919]: | 75 c7 d9 92 2f d0 8e eb 20 75
2f 43 dc fc 04 06
Jun 20 03:02:18 lme-fw pluto[11919]: | b8 ca 3c 67
Jun 20 03:02:18 lme-fw pluto[11919]: | **parse ISAKMP Message:
Jun 20 03:02:18 lme-fw pluto[11919]: | initiator cookie:
Jun 20 03:02:18 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe
Jun 20 03:02:18 lme-fw pluto[11919]: | responder cookie:
Jun 20 03:02:18 lme-fw pluto[11919]: | 4c 3c 46 99 75 14 1f 72
Jun 20 03:02:18 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_ID
Jun 20 03:02:18 lme-fw pluto[11919]: | ISAKMP version: ISAKMP Version
1.0
Jun 20 03:02:18 lme-fw pluto[11919]: | exchange type:
ISAKMP_XCHG_IDPROT
Jun 20 03:02:18 lme-fw pluto[11919]: | flags: ISAKMP_FLAG_ENCRYPTION
Jun 20 03:02:18 lme-fw pluto[11919]: | message ID: 00 00 00 00
Jun 20 03:02:18 lme-fw pluto[11919]: | length: 340
Jun 20 03:02:18 lme-fw pluto[11919]: | processing packet with exchange
type=ISAKMP_XCHG_IDPROT (2)
Jun 20 03:02:18 lme-fw pluto[11919]: | ICOOKIE: 84 44 2b e6 d3 fe 61
fe
Jun 20 03:02:18 lme-fw pluto[11919]: | RCOOKIE: 4c 3c 46 99 75 14 1f
72
Jun 20 03:02:18 lme-fw pluto[11919]: | peer: 63 87 4f 4a
Jun 20 03:02:18 lme-fw pluto[11919]: | state hash entry 11
Jun 20 03:02:18 lme-fw pluto[11919]: | peer and cookies match on #9,
provided msgid 00000000 vs 00000000
Jun 20 03:02:18 lme-fw pluto[11919]: | state object #9 found, in
STATE_MAIN_I3
Jun 20 03:02:18 lme-fw pluto[11919]: | processing connection
JanesvillePNT-Everywhere
Jun 20 03:02:18 lme-fw pluto[11919]: | received encrypted packet from
99.135.79.74:500
Jun 20 03:02:18 lme-fw pluto[11919]: | decrypting 312 bytes using
algorithm OAKLEY_3DES_CBC
Jun 20 03:02:18 lme-fw pluto[11919]: | decrypted:
Jun 20 03:02:18 lme-fw pluto[11919]: | 09 00 00 1f 02 00 00 00 6a 61
6e 65 73 76 69 6c
Jun 20 03:02:18 lme-fw pluto[11919]: | 6c 65 63 68 65 65 74 61 68 2e
6c 6f 63 61 6c 00
Jun 20 03:02:18 lme-fw pluto[11919]: | 00 01 16 94 59 ff cd 61 1b 72
e5 f2 9e ee 69 20
Jun 20 03:02:18 lme-fw pluto[11919]: | ef 4a af 14 cd 78 9e d0 d3 eb
93 27 f7 aa dc ac
Jun 20 03:02:18 lme-fw pluto[11919]: | 42 a7 ed eb 4c 31 dc a1 63 7d
54 65 6a 44 5e 78
Jun 20 03:02:18 lme-fw pluto[11919]: | df 68 92 b0 a6 66 0c 92 7d d0
b4 41 5a 3a 24 42
Jun 20 03:02:18 lme-fw pluto[11919]: | 97 c9 1d b0 6c 21 5c 9f 28 5a
9b c6 7d fe c0 5d
Jun 20 03:02:18 lme-fw pluto[11919]: | 7e 86 bc 5b 5b 4c 5c 92 26 48
89 6c f2 04 b1 63
Jun 20 03:02:18 lme-fw pluto[11919]: | a1 2e ab 40 10 cf e5 d0 3f 42
aa 27 73 35 d9 5a
Jun 20 03:02:18 lme-fw pluto[11919]: | 05 0d fb 32 9a 10 4d 6a 7f 43
7e f7 2c 25 67 48
Jun 20 03:02:18 lme-fw pluto[11919]: | 9a e6 e8 b1 18 06 d6 e7 b2 f6
c5 bd 44 86 b2 34
Jun 20 03:02:18 lme-fw pluto[11919]: | b6 b5 08 0d a2 2a ce 78 d3 43
4b f1 3d 93 29 92
Jun 20 03:02:18 lme-fw pluto[11919]: | 34 3b 27 78 dd 64 91 8c 6b dd
48 52 a8 0d 03 fc
Jun 20 03:02:18 lme-fw pluto[11919]: | ad 07 6b 7c 89 ef 93 05 ec 20
bc 12 7d 54 9f 2e
Jun 20 03:02:18 lme-fw pluto[11919]: | 5e 43 e3 32 6c f3 a3 7a 8e 28
cd a3 75 e1 84 c2
Jun 20 03:02:18 lme-fw pluto[11919]: | 2a 96 42 37 3f e0 a6 e8 ba 37
23 98 f9 e7 97 b3
Jun 20 03:02:18 lme-fw pluto[11919]: | e1 7b 76 a3 ae 1d 36 7c 68 72
23 14 f3 a5 76 c1
Jun 20 03:02:18 lme-fw pluto[11919]: | 19 95 d1 72 58 ad c4 54 2d a3
57 ab ac ba d4 2d
Jun 20 03:02:18 lme-fw pluto[11919]: | 96 87 d3 63 96 36 f6 bb 07 fa
1d 98 50 fd 24 58
Jun 20 03:02:18 lme-fw pluto[11919]: | cd 26 51 a4 de 00 00 00
Jun 20 03:02:18 lme-fw pluto[11919]: | next IV: dc fc 04 06 b8 ca 3c
67
Jun 20 03:02:18 lme-fw pluto[11919]: | ***parse ISAKMP Identification
Payload:
Jun 20 03:02:18 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_SIG
Jun 20 03:02:18 lme-fw pluto[11919]: | length: 31
Jun 20 03:02:18 lme-fw pluto[11919]: | ID type: ID_FQDN
Jun 20 03:02:18 lme-fw pluto[11919]: | DOI specific A: 0
Jun 20 03:02:18 lme-fw pluto[11919]: | DOI specific B: 0
Jun 20 03:02:18 lme-fw pluto[11919]: | ***parse ISAKMP Signature
Payload:
Jun 20 03:02:18 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:18 lme-fw pluto[11919]: | length: 278
Jun 20 03:02:18 lme-fw pluto[11919]: | removing 3 bytes of padding
Jun 20 03:02:18 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9: Main
mode peer ID is ID_FQDN: '@janesvillecheetah.local'
Jun 20 03:02:18 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9: we
require peer to have ID '@janesvillepnt.local', but peer declares
'@janesvillecheetah.local'
Jun 20 03:02:18 lme-fw pluto[11919]: | complete state transition with
(null)
Jun 20 03:02:18 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9:
sending encrypted notification INVALID_ID_INFORMATION to
99.135.79.74:500
Jun 20 03:02:18 lme-fw pluto[11919]: | **emit ISAKMP Message:
Jun 20 03:02:18 lme-fw pluto[11919]: | initiator cookie:
Jun 20 03:02:18 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe
Jun 20 03:02:18 lme-fw pluto[11919]: | responder cookie:
Jun 20 03:02:18 lme-fw pluto[11919]: | 4c 3c 46 99 75 14 1f 72
Jun 20 03:02:18 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_HASH
Jun 20 03:02:18 lme-fw pluto[11919]: | ISAKMP version: ISAKMP Version
1.0
Jun 20 03:02:18 lme-fw pluto[11919]: | exchange type:
ISAKMP_XCHG_INFO
Jun 20 03:02:18 lme-fw pluto[11919]: | flags: ISAKMP_FLAG_ENCRYPTION
Jun 20 03:02:18 lme-fw pluto[11919]: | message ID: 89 19 db 4a
Jun 20 03:02:18 lme-fw pluto[11919]: | ***emit ISAKMP Hash Payload:
Jun 20 03:02:18 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_N
Jun 20 03:02:18 lme-fw pluto[11919]: | emitting 16 zero bytes of HASH(1)
into ISAKMP Hash Payload
Jun 20 03:02:18 lme-fw pluto[11919]: | emitting length of ISAKMP Hash
Payload: 20
Jun 20 03:02:18 lme-fw pluto[11919]: | ***emit ISAKMP Notification
Payload:
Jun 20 03:02:18 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:18 lme-fw pluto[11919]: | DOI: ISAKMP_DOI_IPSEC
Jun 20 03:02:18 lme-fw pluto[11919]: | protocol ID: 1
Jun 20 03:02:18 lme-fw pluto[11919]: | SPI size: 0
Jun 20 03:02:18 lme-fw pluto[11919]: | Notify Message Type:
INVALID_ID_INFORMATION
Jun 20 03:02:18 lme-fw pluto[11919]: | emitting length of ISAKMP
Notification Payload: 12
Jun 20 03:02:18 lme-fw pluto[11919]: | HASH(1) computed:
Jun 20 03:02:18 lme-fw pluto[11919]: | 98 c2 2f df d4 0e 82 af 48 f2
00 d2 06 c7 10 9a
Jun 20 03:02:18 lme-fw pluto[11919]: | last Phase 1 IV:
Jun 20 03:02:18 lme-fw pluto[11919]: | current Phase 1 IV: dc fc 04 06
b8 ca 3c 67
Jun 20 03:02:18 lme-fw pluto[11919]: | computed Phase 2 IV:
Jun 20 03:02:18 lme-fw pluto[11919]: | 01 ae 1f 24 b1 ae 60 9f c8 7d
06 ac 04 2b 0c de
Jun 20 03:02:18 lme-fw pluto[11919]: | encrypting:
Jun 20 03:02:18 lme-fw pluto[11919]: | 0b 00 00 14 98 c2 2f df d4 0e
82 af 48 f2 00 d2
Jun 20 03:02:18 lme-fw pluto[11919]: | 06 c7 10 9a 00 00 00 0c 00 00
00 01 01 00 00 12
Jun 20 03:02:18 lme-fw pluto[11919]: | IV:
Jun 20 03:02:18 lme-fw pluto[11919]: | 01 ae 1f 24 b1 ae 60 9f c8 7d
06 ac 04 2b 0c de
Jun 20 03:02:18 lme-fw pluto[11919]: | encrypting using OAKLEY_3DES_CBC
Jun 20 03:02:18 lme-fw pluto[11919]: | next IV: 1b ad b8 e4 41 56 8c
22
Jun 20 03:02:18 lme-fw pluto[11919]: | emitting length of ISAKMP
Message: 60
Jun 20 03:02:18 lme-fw pluto[11919]: | sending 60 bytes for notification
packet through eth0:500 to 99.135.79.74:500:
Jun 20 03:02:18 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe 4c 3c
46 99 75 14 1f 72
Jun 20 03:02:18 lme-fw pluto[11919]: | 08 10 05 01 89 19 db 4a 00 00
00 3c 6f 93 6e d9
Jun 20 03:02:18 lme-fw pluto[11919]: | c6 f3 94 8d 3c 6a 47 bc 92 8d
04 ae 2e 40 10 0a
Jun 20 03:02:18 lme-fw pluto[11919]: | 69 a2 aa 72 1b ad b8 e4 41 56
8c 22
Jun 20 03:02:18 lme-fw pluto[11919]: | state transition function for
STATE_MAIN_I3 failed: INVALID_ID_INFORMATION
Jun 20 03:02:18 lme-fw pluto[11919]: | next event EVENT_NAT_T_KEEPALIVE
in 20 seconds
Jun 20 03:02:18 lme-fw pluto[11919]: |
Jun 20 03:02:18 lme-fw pluto[11919]: | *received 40 bytes from
99.135.79.74:500 on eth0 (port=500)
Jun 20 03:02:18 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe 4c 3c
46 99 75 14 1f 72
Jun 20 03:02:18 lme-fw pluto[11919]: | 0b 10 05 00 98 f0 e6 b2 00 00
00 28 00 00 00 0c
Jun 20 03:02:18 lme-fw pluto[11919]: | 00 00 00 01 01 00 00 10
Jun 20 03:02:18 lme-fw pluto[11919]: | **parse ISAKMP Message:
Jun 20 03:02:18 lme-fw pluto[11919]: | initiator cookie:
Jun 20 03:02:18 lme-fw pluto[11919]: | 84 44 2b e6 d3 fe 61 fe
Jun 20 03:02:18 lme-fw pluto[11919]: | responder cookie:
Jun 20 03:02:18 lme-fw pluto[11919]: | 4c 3c 46 99 75 14 1f 72
Jun 20 03:02:18 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_N
Jun 20 03:02:18 lme-fw pluto[11919]: | ISAKMP version: ISAKMP Version
1.0
Jun 20 03:02:18 lme-fw pluto[11919]: | exchange type:
ISAKMP_XCHG_INFO
Jun 20 03:02:18 lme-fw pluto[11919]: | flags: none
Jun 20 03:02:18 lme-fw pluto[11919]: | message ID: 98 f0 e6 b2
Jun 20 03:02:18 lme-fw pluto[11919]: | length: 40
Jun 20 03:02:18 lme-fw pluto[11919]: | processing packet with exchange
type=ISAKMP_XCHG_INFO (5)
Jun 20 03:02:18 lme-fw pluto[11919]: | ICOOKIE: 84 44 2b e6 d3 fe 61
fe
Jun 20 03:02:18 lme-fw pluto[11919]: | RCOOKIE: 4c 3c 46 99 75 14 1f
72
Jun 20 03:02:18 lme-fw pluto[11919]: | peer: 63 87 4f 4a
Jun 20 03:02:18 lme-fw pluto[11919]: | state hash entry 11
Jun 20 03:02:18 lme-fw pluto[11919]: | peer and cookies match on #9,
provided msgid 00000000 vs 00000000/00000000
Jun 20 03:02:18 lme-fw pluto[11919]: | p15 state object #9 found, in
STATE_MAIN_I3
Jun 20 03:02:18 lme-fw pluto[11919]: | processing connection
JanesvillePNT-Everywhere
Jun 20 03:02:18 lme-fw pluto[11919]: | ***parse ISAKMP Notification
Payload:
Jun 20 03:02:18 lme-fw pluto[11919]: | next payload type:
ISAKMP_NEXT_NONE
Jun 20 03:02:18 lme-fw pluto[11919]: | length: 12
Jun 20 03:02:18 lme-fw pluto[11919]: | DOI: ISAKMP_DOI_IPSEC
Jun 20 03:02:18 lme-fw pluto[11919]: | protocol ID: 1
Jun 20 03:02:18 lme-fw pluto[11919]: | SPI size: 0
Jun 20 03:02:18 lme-fw pluto[11919]: | Notify Message Type:
PAYLOAD_MALFORMED
Jun 20 03:02:18 lme-fw pluto[11919]: | info:
Jun 20 03:02:18 lme-fw pluto[11919]: | processing informational
PAYLOAD_MALFORMED (16)
Jun 20 03:02:18 lme-fw pluto[11919]: "JanesvillePNT-Everywhere" #9:
received 1 malformed payload notifies
Jun 20 03:02:18 lme-fw pluto[11919]: | complete state transition with
STF_IGNORE
Jun 20 03:02:18 lme-fw pluto[11919]: | next event EVENT_NAT_T_KEEPALIVE
in 20 seconds
Jun 20 03:02:38 lme-fw pluto[11919]: |
Jun 20 03:02:38 lme-fw pluto[11919]: | *time to handle event
Jun 20 03:02:38 lme-fw pluto[11919]: | handling event
EVENT_NAT_T_KEEPALIVE
Jun 20 03:02:38 lme-fw pluto[11919]: | event after this is
EVENT_PENDING_PHASE2 in 30 seconds
Jun 20 03:02:38 lme-fw pluto[11919]: | processing connection
JanesvillePNT-Everywhere
Jun 20 03:02:38 lme-fw pluto[11919]: | processing connection
Wichita-Everywhere
Jun 20 03:02:38 lme-fw pluto[11919]: | processing connection
Wichita-Everywhere
Jun 20 03:02:38 lme-fw pluto[11919]: | processing connection
Rochester-Everywhere
Jun 20 03:02:38 lme-fw pluto[11919]: | processing connection
Rochester-Everywhere
Jun 20 03:02:38 lme-fw pluto[11919]: | processing connection
JanesvilleCheetah-Everywhere
Jun 20 03:02:38 lme-fw pluto[11919]: | processing connection
Columbia-Everywhere
Jun 20 03:02:38 lme-fw pluto[11919]: | processing connection
JanesvilleCheetah-Everywhere
Jun 20 03:02:38 lme-fw pluto[11919]: | processing connection
Columbia-Everywhere
Jun 20 03:02:38 lme-fw pluto[11919]: | next event EVENT_PENDING_PHASE2
in 30 seconds
Jun 20 03:03:08 lme-fw pluto[11919]: |
Jun 20 03:03:08 lme-fw pluto[11919]: | *time to handle event
Jun 20 03:03:08 lme-fw pluto[11919]: | handling event
EVENT_PENDING_PHASE2
Jun 20 03:03:08 lme-fw pluto[11919]: | event after this is
EVENT_SA_REPLACE in 1933 seconds
Jun 20 03:03:08 lme-fw pluto[11919]: | inserting event
EVENT_PENDING_PHASE2, timeout in 120 seconds
Jun 20 03:03:08 lme-fw pluto[11919]: | pending review: connection
"JanesvillePNT-Everywhere" checked
Jun 20 03:03:08 lme-fw pluto[11919]: | pending review: connection
"JanesvilleCheetah-Everywhere" checked
Jun 20 03:03:08 lme-fw pluto[11919]: | pending review: connection
"Rochester-Everywhere" checked
Jun 20 03:03:08 lme-fw pluto[11919]: | pending review: connection
"Columbia-Everywhere" checked
Jun 20 03:03:08 lme-fw pluto[11919]: | pending review: connection
"Wichita-Everywhere" checked
Jun 20 03:03:08 lme-fw pluto[11919]: | next event EVENT_PENDING_PHASE2
in 120 seconds
<<secure.log>>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080620/87247999/attachment-0001.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: secure.log
Type: application/octet-stream
Size: 74546 bytes
Desc: secure.log
Url : http://lists.openswan.org/pipermail/users/attachments/20080620/87247999/attachment-0001.obj
More information about the Users
mailing list