No subject
Fri Jul 20 08:04:52 EDT 2012
On one side :
Debian strongswan vpn server : 192.168.0.20/24
ADSL Gateway : 192.168.0.254/24
Public IP : 88.185.173.199
On the other side, the client (OSX 10.6.8 native client) one :
PUBLIC IP : 84.78.198.299
ADSL Gateway : 192.168.1.1/24
OSX Client : 192.168.1.100/24
so according some post in the mailing list, i configured as follow :
*/etc/ipsec.conf*
/*****/******/
config setup
*nat_traversal=yes*
charonstart=yes
plutostart=yes
#higher debug level mode
plutodebug="control controlmore"
conn l2tp-psk-nat
authby=psk
pfs=no
#keyexchange=ikev1
rekey=no
type=transport
#esp=aes128-sha1
#ike=aes128-sha-modp1024
left=%defaultroute
leftsubnet=88.185.173.199/32
leftprotoport=17/1701
rightprotoport=17/%any
auto=add
/***********/
*/etc/ipsec.secrets *
/******chmod 600*****/
192.168.0.20 %any : PSK "mySecretKey"
/***********/
*/etc/xl2tpd/xl2tpd.conf*
/***********/
[global]
debug network = yes
debug tunnel = yes
port = 1701
ipsec saref = no
[lns default]
ip range = 192.168.2.35-192.168.2.39
local ip = 192.168.2.34
refuse chap = yes
refuse pap = yes
require authentication = yes
ppp debug = yes
pppoptfile = /etc/ppp/options.xl2tpd
length bit = yes
/***********/
*/etc/ppp/options.xl2tpd*
/***********/
ipcp-accept-local
ipcp-accept-remote
ms-dns 212.27.40.240
noccp
auth
crtscts
idle 1800
mtu 1500
mru 1500
nodefaultroute
debug
lock
proxyarp
connect-delay 5000
/***********/
*/etc/ppp/chap-secrets*
/*****chmod 600******/
# client server secret IP addresses
myUser l2tpd myUserSecret *
/***********/
Logs results :
command
**
*ipsec statusall*
000 Status of IKEv1 pluto daemon (strongSwan 4.4.1):
000 interface lo/lo ::1:500
000 interface lo/lo 127.0.0.1:4500
000 interface lo/lo 127.0.0.1:500
000 interface eth0/eth0 192.168.0.20:4500
000 interface eth0/eth0 192.168.0.20:500
000 %myid = '%any'
000 loaded plugins: curl ldap aes des sha1 sha2 md5 random x509 pubkey
pkcs1 pgp dnskey pem openssl hmac gmp xauth attr resolve
000 debug options: control+controlmore
000
000 "l2tp-psk-nat":
88.185.173.199/32===192.168.0.20[192.168.0.20]:17/1701---192.168.0.254...%any[%any]:17/%any;
unrouted; eroute owner: #0
000 "l2tp-psk-nat": ike_life: 10800s; ipsec_life: 3600s; rekey_margin:
540s; rekey_fuzz: 100%; keyingtries: 3
000 "l2tp-psk-nat": policy: PSK+ENCRYPT+DONTREKEY; prio: 32,32;
interface: eth0;
000 "l2tp-psk-nat": newest ISAKMP SA: #0; newest IPsec SA: #0;
000
Status of IKEv2 charon daemon (strongSwan 4.4.1):
uptime: 12 seconds, since Sep 18 00:32:37 2012
malloc: sbrk 270336, mmap 0, used 175544, free 94792
worker threads: 6 idle of 16, job queue load: 0, scheduled events: 0
loaded plugins: curl ldap aes des sha1 sha2 md5 random x509 pubkey pkcs1
pgp dnskey pem openssl fips-prf xcbc hmac agent gmp attr resolve
kernel-netlink socket-raw farp stroke updown eap-identity eap-aka eap-md5
eap-gtc eap-mschapv2 nm dhcp
Listening IP addresses:
192.168.0.20
Connections:
Security Associations:
none
*auth.log when i start the service :*
**
Sep 17 18:34:55 debian ipsec_starter[11137]: Starting strongSwan 4.4.1
IPsec [starter]...
Sep 17 18:34:55 debian pluto[11151]: Starting IKEv1 pluto daemon
(strongSwan 4.4.1) THREADS SMARTCARD VENDORID
Sep 17 18:34:55 debian pluto[11151]: plugin 'test-vectors' failed to load:
/usr/lib/ipsec/plugins/libstrongswan-test-vectors.so: cannot open shared
object file: No such file or directory
Sep 17 18:34:55 debian pluto[11151]: attr-sql plugin: database URI not set
Sep 17 18:34:55 debian pluto[11151]: plugin 'attr-sql': failed to load -
attr_sql_plugin_create returned NULL
Sep 17 18:34:55 debian pluto[11151]: loaded plugins: curl ldap aes des sha1
sha2 md5 random x509 pubkey pkcs1 pgp dnskey pem openssl hmac gmp xauth
attr resolve
Sep 17 18:34:55 debian pluto[11151]: | inserting event EVENT_REINIT_SECRET,
timeout in 3600 seconds
Sep 17 18:34:55 debian pluto[11151]: including NAT-Traversal patch
(Version 0.6c)
Sep 17 18:34:55 debian pluto[11151]: | pkcs11 module
'/usr/lib/opensc-pkcs11.so' loading...
Sep 17 18:34:55 debian pluto[11151]: | pkcs11 module initializing...
Sep 17 18:34:55 debian pluto[11151]: | pkcs11 module loaded and initialized
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 0
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 1
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 2
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 3
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 4
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 5
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 6
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 7
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 8
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 9
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 10
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 11
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 12
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 13
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 14
Sep 17 18:34:55 debian pluto[11151]: no token present in slot 15
Sep 17 18:34:55 debian pluto[11151]: Using Linux 2.6 IPsec interface code
Sep 17 18:34:55 debian ipsec_starter[11150]: pluto (11151) started after 20
ms
Sep 17 18:34:55 debian pluto[11151]: loading ca certificates from
'/etc/ipsec.d/cacerts'
Sep 17 18:34:55 debian pluto[11151]: loading aa certificates from
'/etc/ipsec.d/aacerts'
Sep 17 18:34:55 debian pluto[11151]: loading ocsp certificates from
'/etc/ipsec.d/ocspcerts'
Sep 17 18:34:55 debian pluto[11151]: Changing to directory
'/etc/ipsec.d/crls'
Sep 17 18:34:55 debian pluto[11151]: loading attribute certificates from
'/etc/ipsec.d/acerts'
Sep 17 18:34:55 debian pluto[11151]: | inserting event EVENT_LOG_DAILY,
timeout in 84305 seconds
Sep 17 18:34:55 debian pluto[11151]: | next event EVENT_REINIT_SECRET in
3600 seconds
Sep 17 18:34:55 debian pluto[11151]: |
Sep 17 18:34:55 debian pluto[11151]: | *received whack message
Sep 17 18:34:55 debian pluto[11151]: listening for IKE messages
Sep 17 18:34:55 debian pluto[11151]: | found lo with address 127.0.0.1
Sep 17 18:34:55 debian pluto[11151]: | found eth0 with address 192.168.0.20
Sep 17 18:34:55 debian pluto[11151]: adding interface eth0/eth0
192.168.0.20:500
Sep 17 18:34:55 debian pluto[11151]: adding interface eth0/eth0
192.168.0.20:4500
Sep 17 18:34:55 debian pluto[11151]: adding interface lo/lo 127.0.0.1:500
Sep 17 18:34:55 debian pluto[11151]: adding interface lo/lo 127.0.0.1:4500
Sep 17 18:34:55 debian pluto[11151]: | found lo with address
0000:0000:0000:0000:0000:0000:0000:0001
Sep 17 18:34:55 debian pluto[11151]: adding interface lo/lo ::1:500
Sep 17 18:34:55 debian pluto[11151]: | certs and keys locked by
'free_preshared_secrets'
Sep 17 18:34:55 debian pluto[11151]: | certs and keys unlocked by
'free_preshard_secrets'
Sep 17 18:34:55 debian pluto[11151]: loading secrets from
"/etc/ipsec.secrets"
Sep 17 18:34:55 debian pluto[11151]: loaded PSK secret for 192.168.0.20
%any
Sep 17 18:34:55 debian pluto[11151]: | certs and keys locked by
'process_secret'
Sep 17 18:34:55 debian pluto[11151]: | certs and keys unlocked by
'process_secrets'
Sep 17 18:34:55 debian pluto[11151]: | next event EVENT_REINIT_SECRET in
3600 seconds
Sep 17 18:34:55 debian ipsec_starter[11150]: charon (11162) started after
40 ms
Sep 17 18:34:55 debian pluto[11151]: |
Sep 17 18:34:55 debian pluto[11151]: | *received whack message
Sep 17 18:34:55 debian pluto[11151]: | from whack: got --esp=aes128-sha1
Sep 17 18:34:55 debian pluto[11151]: | esp proposal: AES_CBC_128/HMAC_SHA1,
Sep 17 18:34:55 debian pluto[11151]: | from whack: got
--ike=aes128-sha-modp1024
Sep 17 18:34:55 debian pluto[11151]: | ike proposal:
AES_CBC_128/HMAC_SHA1/MODP_1024,
Sep 17 18:34:55 debian pluto[11151]: *added connection description
"l2tp-psk-nat"*
Sep 17 18:34:55 debian pluto[11151]: |
88.185.173.199/32===192.168.0.20[192.168.0.20]:17/1701---192.168.0.254...%any[%any]:17/%any
Sep 17 18:34:55 debian pluto[11151]: | ike_life: 10800s; ipsec_life: 3600s;
rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 3; policy:
PSK+ENCRYPT+DONTREKEY
Sep 17 18:34:55 debian pluto[11151]: | next event EVENT_REINIT_SECRET in
3600 seconds
*auth.log when a client try to connect :*
Sep 17 18:37:27 debian pluto[11151]: |
Sep 17 18:37:27 debian pluto[11151]: | *received 300 bytes from
84.78.198.299:500 on eth0
Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299:500:
received Vendor ID payload [RFC 3947]
Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299:500:
ignoring Vendor ID payload [4df37928e9fc4fd1b3262170d515c662]
Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299:500:
ignoring Vendor ID payload [8f8d83826d246b6fc7a8a6a428c11de8]
Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299:500:
ignoring Vendor ID payload [439b59f8ba676c4c7737ae22eab8f582]
Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299:500:
ignoring Vendor ID payload [4d1e0e136deafa34c4f3ea9f02ec7285]
Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299:500:
ignoring Vendor ID payload [80d0bb3def54565ee84645d4c85ce3ee]
Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299:500:
ignoring Vendor ID payload [9909b64eed937c6573de52ace952fa6b]
Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299:500:
ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03]
Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299:500:
ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02]
Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299:500:
ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]
Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299:500:
received Vendor ID payload [Dead Peer Detection]
Sep 17 18:37:27 debian pluto[11151]: | preparse_isakmp_policy: peer
requests PSK authentication
Sep 17 18:37:27 debian pluto[11151]: | instantiated "l2tp-psk-nat" for
84.78.198.299
Sep 17 18:37:27 debian pluto[11151]: | creating state object #1 at
0xb8d9c320
Sep 17 18:37:27 debian pluto[11151]: | ICOOKIE: 96 61 2d 50 c6 46 15 77
Sep 17 18:37:27 debian pluto[11151]: | RCOOKIE: 32 f3 92 fa 6c af 23 86
Sep 17 18:37:27 debian pluto[11151]: | peer: 54 4e c6 e0
Sep 17 18:37:27 debian pluto[11151]: | state hash entry 23
Sep 17 18:37:27 debian pluto[11151]: | inserting event EVENT_SO_DISCARD,
timeout in 0 seconds for #1
Sep 17 18:37:27 debian pluto[11151]: "l2tp-psk-nat"[1] 84.78.198.299 #1:
responding to Main Mode from unknown peer 84.78.198.299
Sep 17 18:37:27 debian pluto[11151]: | inserting event EVENT_RETRANSMIT,
timeout in 10 seconds for #1
Sep 17 18:37:27 debian pluto[11151]: | next event EVENT_RETRANSMIT in 10
seconds for #1
Sep 17 18:37:27 debian pluto[11151]: |
Sep 17 18:37:27 debian pluto[11151]: | *received 228 bytes from
84.78.198.299:500 on eth0
Sep 17 18:37:27 debian pluto[11151]: | ICOOKIE: 96 61 2d 50 c6 46 15 77
Sep 17 18:37:27 debian pluto[11151]: | RCOOKIE: 32 f3 92 fa 6c af 23 86
Sep 17 18:37:27 debian pluto[11151]: | peer: 54 4e c6 e0
Sep 17 18:37:27 debian pluto[11151]: | state hash entry 23
Sep 17 18:37:27 debian pluto[11151]: | state object #1 found, in
STATE_MAIN_R1
Sep 17 18:37:27 debian pluto[11151]: "l2tp-psk-nat"[1] 84.78.198.299 #1:
NAT-Traversal: Result using RFC 3947: both are NATed
Sep 17 18:37:27 debian pluto[11151]: | inserting event
EVENT_NAT_T_KEEPALIVE, timeout in 20 seconds
Sep 17 18:37:27 debian pluto[11151]: | inserting event EVENT_RETRANSMIT,
timeout in 10 seconds for #1
Sep 17 18:37:27 debian pluto[11151]: | next event EVENT_RETRANSMIT in 10
seconds for #1
Sep 17 18:37:27 debian pluto[11151]: |
Sep 17 18:37:27 debian pluto[11151]: | *received 100 bytes from
84.78.198.299:4501 on eth0
Sep 17 18:37:27 debian pluto[11151]: | ICOOKIE: 96 61 2d 50 c6 46 15 77
Sep 17 18:37:27 debian pluto[11151]: | RCOOKIE: 32 f3 92 fa 6c af 23 86
Sep 17 18:37:27 debian pluto[11151]: | peer: 54 4e c6 e0
Sep 17 18:37:27 debian pluto[11151]: | state hash entry 23
Sep 17 18:37:27 debian pluto[11151]: | state object #1 found, in
STATE_MAIN_R2
Sep 17 18:37:27 debian pluto[11151]: "l2tp-psk-nat"[1] 84.78.198.299 #1:
ignoring informational payload, type IPSEC_INITIAL_CONTACT
Sep 17 18:37:27 debian pluto[11151]: "l2tp-psk-nat"[1] 84.78.198.299 #1:
Peer ID is ID_IPV4_ADDR: '192.168.1.110'
Sep 17 18:37:27 debian pluto[11151]: | peer CA: %none
Sep 17 18:37:27 debian pluto[11151]: | l2tp-psk-nat: no match (id: no,
auth: ok, trust: ok, request: ok, prio: 2048)
Sep 17 18:37:27 debian pluto[11151]: | l2tp-psk-nat: full match (id: ok,
auth: ok, trust: ok, request: ok, prio: 1216)
Sep 17 18:37:27 debian pluto[11151]: | offered CA: %none
Sep 17 18:37:27 debian pluto[11151]: | switched from "l2tp-psk-nat" to
"l2tp-psk-nat"
Sep 17 18:37:27 debian pluto[11151]: | instantiated "l2tp-psk-nat" for
84.78.198.299
Sep 17 18:37:27 debian pluto[11151]: "l2tp-psk-nat"[2] 84.78.198.299 #1:
deleting connection "l2tp-psk-nat" instance with peer 84.78.198.299
{isakmp=#0/ipsec=#0}
Sep 17 18:37:27 debian pluto[11151]: | certs and keys locked by
'delete_connection'
Sep 17 18:37:27 debian pluto[11151]: | certs and keys unlocked by
'delete_connection'
Sep 17 18:37:27 debian pluto[11151]: | *NAT-T: *new mapping
84.78.198.299:500/4501)
Sep 17 18:37:27 debian pluto[11151]: | inserting event EVENT_SA_EXPIRE,
timeout in 3600 seconds for #1
Sep 17 18:37:27 debian pluto[11151]: "l2tp-psk-nat"[2] 84.78.198.299:4501
#1: sent MR3, ISAKMP SA established
Sep 17 18:37:27 debian pluto[11151]: | next event EVENT_NAT_T_KEEPALIVE in
20 seconds
Sep 17 18:37:28 debian pluto[11151]: |
Sep 17 18:37:28 debian pluto[11151]: | *received 252 bytes from
84.78.198.299:4501 on eth0
Sep 17 18:37:28 debian pluto[11151]: | ICOOKIE: 96 61 2d 50 c6 46 15 77
Sep 17 18:37:28 debian pluto[11151]: | RCOOKIE: 32 f3 92 fa 6c af 23 86
Sep 17 18:37:28 debian pluto[11151]: | peer: 54 4e c6 e0
Sep 17 18:37:28 debian pluto[11151]: | state hash entry 23
Sep 17 18:37:28 debian pluto[11151]: | state object not found
Sep 17 18:37:28 debian pluto[11151]: | ICOOKIE: 96 61 2d 50 c6 46 15 77
Sep 17 18:37:28 debian pluto[11151]: | RCOOKIE: 32 f3 92 fa 6c af 23 86
Sep 17 18:37:28 debian pluto[11151]: | peer: 54 4e c6 e0
Sep 17 18:37:28 debian pluto[11151]: | state hash entry 23
Sep 17 18:37:28 debian pluto[11151]: | state object #1 found, in
STATE_MAIN_R3
Sep 17 18:37:28 debian pluto[11151]: | peer client is 192.168.1.110
Sep 17 18:37:28 debian pluto[11151]: | peer client protocol/port is 17/53734
Sep 17 18:37:28 debian pluto[11151]: | our client is 88.185.173.199
Sep 17 18:37:28 debian pluto[11151]: | our client protocol/port is 17/1701
Sep 17 18:37:28 debian pluto[11151]: | find_client_connection starting with
l2tp-psk-nat
Sep 17 18:37:28 debian pluto[11151]: | looking for
88.185.173.199/32:17/1701 -> 192.168.1.110/32:17/53734
Sep 17 18:37:28 debian pluto[11151]: | concrete checking against sr#0
88.185.173.199/32 -> 84.78.198.299/32
Sep 17 18:37:28 debian pluto[11151]: | fc_try trying l2tp-psk-nat:
88.185.173.199/32:17/1701 -> 192.168.1.110/32:17/0 vs l2tp-psk-nat:
88.185.173.199/32:17/1701 -> 84.78.198.299/32:17/0
Sep 17 18:37:28 debian pluto[11151]: | fc_try concluding with none [0]
Sep 17 18:37:28 debian pluto[11151]: | fc_try l2tp-psk-nat gives none
Sep 17 18:37:28 debian pluto[11151]: | checking hostpair
88.185.173.199/32-> 84.78.198.299/32 is found
Sep 17 18:37:28 debian pluto[11151]: | fc_try trying l2tp-psk-nat:
88.185.173.199/32:17/1701 -> 192.168.1.110/32:17/0 vs l2tp-psk-nat:
88.185.173.199/32:17/1701 -> 0.0.0.0/32:17/0
Sep 17 18:37:28 debian pluto[11151]: | fc_try concluding with none [0]
Sep 17 18:37:28 debian pluto[11151]: | fc_try_oppo trying l2tp-psk-nat:
88.185.173.199/32 -> 192.168.1.110/32 vs l2tp-psk-nat:88.185.173.199/32 ->
0.0.0.0/32
Sep 17 18:37:28 debian pluto[11151]: | fc_try_oppo concluding with none
[0]
Sep 17 18:37:28 debian pluto[11151]: | concluding with d = none
Sep 17 18:37:28 debian pluto[11151]: "l2tp-psk-nat"[2] 84.78.198.299:4501
#1: cannot respond to IPsec SA request because no connection is known for
88.185.173.199/32===192.168.0.20:4500[192.168.0.20]:17/1701...84.78.198.299:4501[192.168.1.110]:17/%any===192.168.1.110/32
Sep 17 18:37:28 debian pluto[11151]: "l2tp-psk-nat"[2] 84.78.198.299:4501
#1: sending encrypted notification INVALID_ID_INFORMATION to
84.78.198.299:4501
Sep 17 18:37:28 debian pluto[11151]: | state transition function for
STATE_QUICK_R0 failed: INVALID_ID_INFORMATION
Sep 17 18:37:28 debian pluto[11151]: | next event EVENT_NAT_T_KEEPALIVE in
19 seconds
Sep 17 18:37:31 debian pluto[11151]: |
Sep 17 18:37:31 debian pluto[11151]: | *received 252 bytes from
84.78.198.299:4501 on eth0
Sep 17 18:37:31 debian pluto[11151]: | ICOOKIE: 96 61 2d 50 c6 46 15 77
Sep 17 18:37:31 debian pluto[11151]: | RCOOKIE: 32 f3 92 fa 6c af 23 86
Sep 17 18:37:31 debian pluto[11151]: | peer: 54 4e c6 e0
Sep 17 18:37:31 debian pluto[11151]: | state hash entry 23
Sep 17 18:37:31 debian pluto[11151]: | state object not found
Sep 17 18:37:31 debian pluto[11151]: | ICOOKIE: 96 61 2d 50 c6 46 15 77
Sep 17 18:37:31 debian pluto[11151]: | RCOOKIE: 32 f3 92 fa 6c af 23 86
Sep 17 18:37:31 debian pluto[11151]: | peer: 54 4e c6 e0
Sep 17 18:37:31 debian pluto[11151]: | state hash entry 23
Sep 17 18:37:31 debian pluto[11151]: | state object #1 found, in
STATE_MAIN_R3
Sep 17 18:37:31 debian pluto[11151]: "l2tp-psk-nat"[2] 84.78.198.299:4501
#1: Quick Mode I1 message is unacceptable because it uses a previously used
Message ID 0x767ae29b (perhaps this is a duplicated packet)
Sep 17 18:37:31 debian pluto[11151]: "l2tp-psk-nat"[2] 84.78.198.299:4501
#1: sending encrypted notification INVALID_MESSAGE_ID to 84.78.198.299:4501
Sep 17 18:37:31 debian pluto[11151]: | next event EVENT_NAT_T_KEEPALIVE in
16 seconds
Sep 17 18:37:31 debian pluto[11151]: |
Sep 17 18:37:31 debian pluto[11151]: | *received 84 bytes from
84.78.198.299:4501 on eth0
Sep 17 18:37:31 debian pluto[11151]: | ICOOKIE: 96 61 2d 50 c6 46 15 77
Sep 17 18:37:31 debian pluto[11151]: | RCOOKIE: 32 f3 92 fa 6c af 23 86
Sep 17 18:37:31 debian pluto[11151]: | peer: 54 4e c6 e0
Sep 17 18:37:31 debian pluto[11151]: | state hash entry 23
Sep 17 18:37:31 debian pluto[11151]: | state object #1 found, in
STATE_MAIN_R3
Sep 17 18:37:31 debian pluto[11151]: | ICOOKIE: 96 61 2d 50 c6 46 15 77
Sep 17 18:37:31 debian pluto[11151]: | RCOOKIE: 32 f3 92 fa 6c af 23 86
Sep 17 18:37:31 debian pluto[11151]: | peer: 54 4e c6 e0
Sep 17 18:37:31 debian pluto[11151]: | state hash entry 23
Sep 17 18:37:31 debian pluto[11151]: | state object #1 found, in
STATE_MAIN_R3
Sep 17 18:37:31 debian pluto[11151]: "l2tp-psk-nat"[2] 84.78.198.299:4501
#1: received Delete SA payload: deleting ISAKMP State #1
Sep 17 18:37:31 debian pluto[11151]: | ICOOKIE: 96 61 2d 50 c6 46 15 77
Sep 17 18:37:31 debian pluto[11151]: | RCOOKIE: 32 f3 92 fa 6c af 23 86
Sep 17 18:37:31 debian pluto[11151]: | peer: 54 4e c6 e0
Sep 17 18:37:31 debian pluto[11151]: | state hash entry 23
Sep 17 18:37:31 debian pluto[11151]: "l2tp-psk-nat"[2] 84.78.198.299:4501:
deleting connection "l2tp-psk-nat" instance with peer 84.78.198.299
{isakmp=#0/ipsec=#0}
Sep 17 18:37:31 debian pluto[11151]: | certs and keys locked by
'delete_connection'
Sep 17 18:37:31 debian pluto[11151]: | certs and keys unlocked by
'delete_connection'
Sep 17 18:37:31 debian pluto[11151]: | next event EVENT_NAT_T_KEEPALIVE in
16 seconds
Sep 17 18:37:47 debian pluto[11151]: |
Sep 17 18:37:47 debian pluto[11151]: | *time to handle event
So here i am, i really tried the best i can, but i'm running out of ideas
:((( I underlined in the latest log what's i think its going wrong, but
despite that it seems to be a NAT problem, everything is nated correctly on
the ADSL router
the port 1701, 4500, 500 in udp are well nated to my vpn server, any ideas,
any suggestions will be more than welcome ;)
Thanks a lot in advance for your precious help and sorry for the level of
logs, but the more the debug level of log is, the easier is the way to find
out what is going wrong ;)
Best Regards
Steve
**
**
**
**
**
**
--f46d04478837b45bf604c9ed9f22
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
<div><span class=3D"Apple-style-span" style=3D"font-family:Courier"><p styl=
e=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0px;margi=
n-left:0px;font:normal normal normal 13px/normal Arial">Hi all,=A0</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 13px/normal Arial;min-height:15=
px"><br></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 13px/normal Arial">I think i re=
ally did my best but even after having read so (too) much of the mailing li=
st, i finish posting here :)</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 13px/normal Arial">To sum up qu=
ickly :</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 13px/normal Arial;min-height:15=
px"><br></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 13px/normal Arial">OS running s=
trongswan : debian 6.0.3</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 13px/normal Arial;min-height:15=
px"><br></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 13px/normal Arial">I installed =
strongswan this way:</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial;min-height:15px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">apt-get install build-essential fakeroot dpkg-dev devscripts</=
p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">apt-get source strongswan=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =
=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0=
=A0 =A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">apt-get install libcurl4-openssl-dev =A0 =A0 =A0 =A0 =A0 =A0 =
=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">apt-get build-dep strongswan =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =
=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0=
=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">vi strongswan-4.4.1/debian/rules</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102);min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier"><span style=3D"color:#666666">/*****[</span>strongswan-4.4.1/d=
ebian/rules<span style=3D"color:#666666">]******/</span></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">CONFIGUREARGS :=3D --prefix=3D/usr --sysconfdir=3D/etc --localst=
atedir=3D/var \</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 --libexecdir=3D/usr/lib \</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 --enable-ldap --enable-curl \</p=
>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 --with-capabilities=3Dlibcap \</=
p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 --enable-smartcard \</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 --with-default-pkcs11=3D/usr/lib=
/opensc-pkcs11.so \</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 --enable-mediation --enable-meds=
rv --enable-medcli \</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 --enable-openssl --enable-agent =
\</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 --enable-eap-radius --enable-eap=
-identity --enable-eap-md5 \</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 --enable-eap-gtc --enable-eap-ak=
a --enable-eap-mschapv2 \</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 --enable-sql --enable-integrity-=
test \</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 --enable-nm --enable-ha --enable=
-dhcp --enable-farp \</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 13px/nor=
mal Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 --enable-test-vectors \</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 18px/nor=
mal Arial"><span style=3D"font:13.0px Arial">=A0 =A0 =A0 =A0 =A0 =A0 =A0 =
=A0 </span><b>--enable-nat-transport</b></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">/***********/</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">dpkg-buildpackage -rfakeroot -uc -b</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier">Then insta=
lled everything with :</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">dpkg -i *.deb</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Results :</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier"><b>dpkg -l | grep strong</b></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><b></b><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ii =A0libstrongswan =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =
=A04.4.1-5.2 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 strongSwan uti=
lity and crypto library</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">rc =A0network-manager-strongswan =A0 =A0 =A0 =A0 1.1.2-1 =A0 =
=A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 network management framewor=
k (strongSwan plugin)</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ii =A0strongswan =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =
=A0 4.4.1-5.2 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 IPsec VPN sol=
ution metapackage</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ii =A0strongswan-dbg =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 4=
.4.1-5.2 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 strongSwan library=
and binaries - debugging symbols</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ii =A0strongswan-ikev1 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 4.4=
.1-5.2 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 strongSwan Internet =
Key Exchange (v1) daemon</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ii =A0strongswan-ikev2 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 4.4=
.1-5.2 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 strongSwan Internet =
Key Exchange (v2) daemon</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ii =A0strongswan-nm =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =
=A04.4.1-5.2 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 strongSwan plu=
gin to interact with NetworkManager</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ii =A0strongswan-starter =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 4.4.1=
-5.2 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 strongSwan daemon star=
ter and configuration file parser</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><br></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier"><font class=3D"Apple-styl=
e-span" size=3D"4">From here, everything fine, my setup is he following :</=
font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier;min-height:14px"><font cla=
ss=3D"Apple-style-span" size=3D"4"><br></font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier"><font class=3D"Apple-styl=
e-span" size=3D"4">On one side :</font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier;min-height:14px"><font cla=
ss=3D"Apple-style-span" size=3D"4"><br></font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier"><font class=3D"Apple-styl=
e-span" size=3D"4">Debian strongswan vpn server : <a href=3D"http://192.168=
.0.20/24">192.168.0.20/24</a></font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier"><font class=3D"Apple-styl=
e-span" size=3D"4">ADSL Gateway : <a href=3D"http://192.168.0.254/24">192.1=
68.0.254/24</a></font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier"><font class=3D"Apple-styl=
e-span" size=3D"4">Public IP :=A088.185.173.199</font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier;min-height:14px"><font cla=
ss=3D"Apple-style-span" size=3D"4"><br></font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier"><font class=3D"Apple-styl=
e-span" size=3D"4">On the other side, the client (OSX 10.6.8 native client)=
one :</font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier;min-height:14px"><font cla=
ss=3D"Apple-style-span" size=3D"4"><br></font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier"><font class=3D"Apple-styl=
e-span" size=3D"4">PUBLIC IP : 84.78.198.299</font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier"><font class=3D"Apple-styl=
e-span" size=3D"4">ADSL Gateway : <a href=3D"http://192.168.1.1/24">192.168=
.1.1/24</a></font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier"><font class=3D"Apple-styl=
e-span" size=3D"4">OSX Client : <a href=3D"http://192.168.1.100/24">192.168=
.1.100/24</a></font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier;min-height:14px"><font cla=
ss=3D"Apple-style-span" size=3D"4"><br></font></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier"><font class=3D"Apple-styl=
e-span" size=3D"4">so according some post in the mailing list, i configured=
as follow :</font></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 18px/nor=
mal Courier"><b>/etc/ipsec.conf</b>=A0</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">/*****/******/</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">config setup</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 <b>nat_traversal=3Dyes</b></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 charonstart=3Dyes</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 plutostart=3Dyes</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 #higher debug level mode</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 plutodebug=3D"control controlmore"</=
p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">conn l2tp-psk-nat</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 authby=3Dpsk</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 pfs=3Dno</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 #keyexchange=3Dikev1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 rekey=3Dno</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 type=3Dtransport</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 #esp=3Daes128-sha1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 #ike=3Daes128-sha-modp1024</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 left=3D%defaultroute</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 leftsubnet=3D<a href=3D"http://88.185.173.199/=
32">88.185.173.199/32</a></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 leftprotoport=3D17/1701</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 rightprotoport=3D17/%any</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 =A0 =A0 =A0 auto=3Dadd</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">/***********/</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 18px/nor=
mal Courier"><b>/etc/ipsec.secrets=A0</b></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">/******chmod 600*****/</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">192.168.0.20 %any : PSK "mySecretKey"</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">/***********/</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 18px/nor=
mal Courier"><b>/etc/xl2tpd/xl2tpd.conf</b></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">/***********/</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">[global]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">debug network =3D yes</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">debug tunnel =3D yes</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">port =3D 1701</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ipsec saref =3D no</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">[lns default]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ip range =3D 192.168.2.35-192.168.2.39</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">local ip =3D 192.168.2.34</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">refuse chap =3D yes</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">refuse pap =3D yes</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">require authentication =3D yes</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ppp debug =3D yes</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">pppoptfile =3D /etc/ppp/options.xl2tpd</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">length bit =3D yes</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">/***********/</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102);min-height:14px"><br></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102);min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 18px/nor=
mal Courier"><b>/etc/ppp/options.xl2tpd</b></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">/***********/</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ipcp-accept-local</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ipcp-accept-remote</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">ms-dns 212.27.40.240</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">noccp</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">auth</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">crtscts</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">idle 1800</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">mtu 1500</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">mru 1500</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">nodefaultroute</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">debug</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">lock</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">proxyarp</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">connect-delay 5000</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">/***********/</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102);min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 18px/nor=
mal Courier"><b>/etc/ppp/chap-secrets</b></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">/*****chmod 600******/</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)"># client =A0 =A0 =A0 =A0server =A0secret =A0 =A0 =A0 =A0 =A0 =
=A0 =A0 =A0 =A0IP addresses</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">myUser =A0 =A0 =A0 l2tpd =A0 myUserSecret =A0 =A0 =A0 =A0 =A0 =
=A0 =A0 =A0 *</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">/***********/</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102);min-height:14px"><br></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">Logs results :</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102);min-height:14px"><br></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102)">command=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 18px/nor=
mal Courier;min-height:22px"><b></b><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 18px/nor=
mal Courier"><b>ipsec statusall</b></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier;color:rgb(1=
02,102,102);min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 Status of IKEv1 pluto daemon (strongSwan 4.4.1):</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 interface lo/lo ::1:500</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 interface lo/lo <a href=3D"http://127.0.0.1:4500">127.0.0.=
1:4500</a></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 interface lo/lo <a href=3D"http://127.0.0.1:500">127.0.0.1=
:500</a></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 interface eth0/eth0 <a href=3D"http://192.168.0.20:4500">1=
92.168.0.20:4500</a></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 interface eth0/eth0 <a href=3D"http://192.168.0.20:500">19=
2.168.0.20:500</a></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 %myid =3D '%any'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 loaded plugins: curl ldap aes des sha1 sha2 md5 random x50=
9 pubkey pkcs1 pgp dnskey pem openssl hmac gmp xauth attr resolve=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 debug options: control+controlmore</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 "l2tp-psk-nat": <a href=3D"http://88.185.173.199=
/32=3D=3D=3D192.168.0.20[192.168.0.20]:17/1701---192.168.0.254...%any[%any]=
:17/%any">88.185.173.199/32=3D=3D=3D192.168.0.20[192.168.0.20]:17/1701---19=
2.168.0.254...%any[%any]:17/%any</a>; unrouted; eroute owner: #0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 "l2tp-psk-nat": =A0 ike_life: 10800s; ipsec_life=
: 3600s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 3</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 "l2tp-psk-nat": =A0 policy: PSK+ENCRYPT+DONTREKE=
Y; prio: 32,32; interface: eth0;=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000 "l2tp-psk-nat": =A0 newest ISAKMP SA: #0; newest=
IPsec SA: #0;=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">000=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Status of IKEv2 charon daemon (strongSwan 4.4.1):</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 uptime: 12 seconds, since Sep 18 00:32:37 2012</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 malloc: sbrk 270336, mmap 0, used 175544, free 94792</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 worker threads: 6 idle of 16, job queue load: 0, scheduled=
events: 0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 loaded plugins: curl ldap aes des sha1 sha2 md5 random x50=
9 pubkey pkcs1 pgp dnskey pem openssl fips-prf xcbc hmac agent gmp attr res=
olve kernel-netlink socket-raw farp stroke updown eap-identity eap-aka eap-=
md5 eap-gtc eap-mschapv2 nm dhcp=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Listening IP addresses:</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 192.168.0.20</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Connections:</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Security Associations:</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">=A0 none</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 18px/nor=
mal Courier"><b>auth.log when i start the service :</b></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 18px/nor=
mal Courier;min-height:22px"><b></b><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian ipsec_starter[11137]: Starting strongSw=
an 4.4.1 IPsec [starter]...</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: Starting IKEv1 pluto daem=
on (strongSwan 4.4.1) THREADS SMARTCARD VENDORID</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: plugin 'test-vectors&=
#39; failed to load: /usr/lib/ipsec/plugins/libstrongswan-test-vectors.so: =
cannot open shared object file: No such file or directory</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: attr-sql plugin: database=
URI not set</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: plugin 'attr-sql'=
: failed to load - attr_sql_plugin_create returned NULL</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: loaded plugins: curl ldap=
aes des sha1 sha2 md5 random x509 pubkey pkcs1 pgp dnskey pem openssl hmac=
gmp xauth attr resolve=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | inserting event EVENT_R=
EINIT_SECRET, timeout in 3600 seconds</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: =A0 including NAT-Travers=
al patch (Version 0.6c)</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | pkcs11 module '/usr=
/lib/opensc-pkcs11.so' loading...</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | pkcs11 module initializ=
ing...</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | pkcs11 module loaded an=
d initialized</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
2</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
3</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
4</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
5</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
6</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
7</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
8</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
9</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
10</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
11</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
12</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
13</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
14</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: no token present in slot =
15</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: Using Linux 2.6 IPsec int=
erface code</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian ipsec_starter[11150]: pluto (11151) sta=
rted after 20 ms</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: loading ca certificates f=
rom '/etc/ipsec.d/cacerts'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: loading aa certificates f=
rom '/etc/ipsec.d/aacerts'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: loading ocsp certificates=
from '/etc/ipsec.d/ocspcerts'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: Changing to directory =
9;/etc/ipsec.d/crls'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: loading attribute certifi=
cates from '/etc/ipsec.d/acerts'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | inserting event EVENT_L=
OG_DAILY, timeout in 84305 seconds</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | next event EVENT_REINIT=
_SECRET in 3600 seconds</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: |=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | *received whack message=
</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: listening for IKE message=
s</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | found lo with address 1=
27.0.0.1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | found eth0 with address=
192.168.0.20</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: adding interface eth0/eth=
0 <a href=3D"http://192.168.0.20:500">192.168.0.20:500</a></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: adding interface eth0/eth=
0 <a href=3D"http://192.168.0.20:4500">192.168.0.20:4500</a></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: adding interface lo/lo <a=
href=3D"http://127.0.0.1:500">127.0.0.1:500</a></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: adding interface lo/lo <a=
href=3D"http://127.0.0.1:4500">127.0.0.1:4500</a></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | found lo with address 0=
000:0000:0000:0000:0000:0000:0000:0001</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: adding interface lo/lo ::=
1:500</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | certs and keys locked b=
y 'free_preshared_secrets'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | certs and keys unlocked=
by 'free_preshard_secrets'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: loading secrets from &quo=
t;/etc/ipsec.secrets"</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: =A0 loaded PSK secret for=
192.168.0.20 %any=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | certs and keys locked b=
y 'process_secret'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | certs and keys unlocked=
by 'process_secrets'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | next event EVENT_REINIT=
_SECRET in 3600 seconds</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian ipsec_starter[11150]: charon (11162) st=
arted after 40 ms</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: |=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | *received whack message=
</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | from whack: got --esp=
=3Daes128-sha1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | esp proposal: AES_CBC_1=
28/HMAC_SHA1,=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | from whack: got --ike=
=3Daes128-sha-modp1024</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | ike proposal: AES_CBC_1=
28/HMAC_SHA1/MODP_1024,=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: <b>added connection descr=
iption "l2tp-psk-nat"</b></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | <a href=3D"http://88.18=
5.173.199/32=3D=3D=3D192.168.0.20[192.168.0.20]:17/1701---192.168.0.254...%=
any[%any]:17/%any">88.185.173.199/32=3D=3D=3D192.168.0.20[192.168.0.20]:17/=
1701---192.168.0.254...%any[%any]:17/%any</a></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | ike_life: 10800s; ipsec=
_life: 3600s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 3; policy:=
PSK+ENCRYPT+DONTREKEY</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:34:55 debian pluto[11151]: | next event EVENT_REINIT=
_SECRET in 3600 seconds</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><br></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 18px/normal Courier;color:rgb(2=
55,18,18)"><b>auth.log when a client try to connect =A0:</b></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier;min-height:14px"><br></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: |=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | *received 300 bytes fro=
m 84.78.198.299:500 on eth0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299=
:500: received Vendor ID payload [RFC 3947]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299=
:500: ignoring Vendor ID payload [4df37928e9fc4fd1b3262170d515c662]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299=
:500: ignoring Vendor ID payload [8f8d83826d246b6fc7a8a6a428c11de8]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299=
:500: ignoring Vendor ID payload [439b59f8ba676c4c7737ae22eab8f582]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299=
:500: ignoring Vendor ID payload [4d1e0e136deafa34c4f3ea9f02ec7285]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299=
:500: ignoring Vendor ID payload [80d0bb3def54565ee84645d4c85ce3ee]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299=
:500: ignoring Vendor ID payload [9909b64eed937c6573de52ace952fa6b]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299=
:500: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299=
:500: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299=
:500: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: packet from 84.78.198.299=
:500: received Vendor ID payload [Dead Peer Detection]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | preparse_isakmp_policy:=
peer requests PSK authentication</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | instantiated "l2tp=
-psk-nat" for 84.78.198.299</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | creating state object #=
1 at 0xb8d9c320</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | ICOOKIE: =A096 61 2d 50=
=A0c6 46 15 77</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | RCOOKIE: =A032 f3 92 fa=
=A06c af 23 86</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | peer: =A054 4e c6 e0</p=
>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | state hash entry 23</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | inserting event EVENT_S=
O_DISCARD, timeout in 0 seconds for #1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: "l2tp-psk-nat"[=
1] 84.78.198.299 #1: responding to Main Mode from unknown peer 84.78.198.29=
9</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | inserting event EVENT_R=
ETRANSMIT, timeout in 10 seconds for #1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | next event EVENT_RETRAN=
SMIT in 10 seconds for #1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: |=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | *received 228 bytes fro=
m 84.78.198.299:500 on eth0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | ICOOKIE: =A096 61 2d 50=
=A0c6 46 15 77</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | RCOOKIE: =A032 f3 92 fa=
=A06c af 23 86</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | peer: =A054 4e c6 e0</p=
>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | state hash entry 23</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | state object #1 found, =
in STATE_MAIN_R1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: "l2tp-psk-nat"[=
1] 84.78.198.299 #1: NAT-Traversal: Result using RFC 3947: both are NATed</=
p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | inserting event EVENT_N=
AT_T_KEEPALIVE, timeout in 20 seconds</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | inserting event EVENT_R=
ETRANSMIT, timeout in 10 seconds for #1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | next event EVENT_RETRAN=
SMIT in 10 seconds for #1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: |=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | *received 100 bytes fro=
m 84.78.198.299:4501 on eth0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | ICOOKIE: =A096 61 2d 50=
=A0c6 46 15 77</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | RCOOKIE: =A032 f3 92 fa=
=A06c af 23 86</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | peer: =A054 4e c6 e0</p=
>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | state hash entry 23</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | state object #1 found, =
in STATE_MAIN_R2</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: "l2tp-psk-nat"[=
1] 84.78.198.299 #1: ignoring informational payload, type IPSEC_INITIAL_CON=
TACT</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: "l2tp-psk-nat"[=
1] 84.78.198.299 #1: Peer ID is ID_IPV4_ADDR: '192.168.1.110'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | peer CA: =A0 =A0 =A0%no=
ne</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | l2tp-psk-nat: =A0no mat=
ch (id: no, auth: ok, trust: ok, request: ok, prio: 2048)</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | l2tp-psk-nat: full matc=
h (id: ok, auth: ok, trust: ok, request: ok, prio: 1216)</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | offered CA: =A0 %none</=
p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | switched from "l2t=
p-psk-nat" to "l2tp-psk-nat"</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | instantiated "l2tp=
-psk-nat" for 84.78.198.299</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: "l2tp-psk-nat"[=
2] 84.78.198.299 #1: deleting connection "l2tp-psk-nat" instance =
with peer 84.78.198.299 {isakmp=3D#0/ipsec=3D#0}</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | certs and keys locked b=
y 'delete_connection'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | certs and keys unlocked=
by 'delete_connection'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | <b>NAT-T: </b>new mappi=
ng 84.78.198.299:500/4501)</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | inserting event EVENT_S=
A_EXPIRE, timeout in 3600 seconds for #1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: "l2tp-psk-nat"[=
2] 84.78.198.299:4501 #1: sent MR3, ISAKMP SA established</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:27 debian pluto[11151]: | next event EVENT_NAT_T_=
KEEPALIVE in 20 seconds</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: |=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | *received 252 bytes fro=
m 84.78.198.299:4501 on eth0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | ICOOKIE: =A096 61 2d 50=
=A0c6 46 15 77</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | RCOOKIE: =A032 f3 92 fa=
=A06c af 23 86</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | peer: =A054 4e c6 e0</p=
>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | state hash entry 23</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | state object not found<=
/p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | ICOOKIE: =A096 61 2d 50=
=A0c6 46 15 77</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | RCOOKIE: =A032 f3 92 fa=
=A06c af 23 86</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | peer: =A054 4e c6 e0</p=
>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | state hash entry 23</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | state object #1 found, =
in STATE_MAIN_R3</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | peer client is 192.168.=
1.110</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | peer client protocol/po=
rt is 17/53734</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | our client is 88.185.17=
3.199</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | our client protocol/por=
t is 17/1701</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | find_client_connection =
starting with l2tp-psk-nat</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | =A0 looking for <a href=
=3D"http://88.185.173.199/32:17/1701">88.185.173.199/32:17/1701</a> -> <=
a href=3D"http://192.168.1.110/32:17/53734">192.168.1.110/32:17/53734</a></=
p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | =A0 concrete checking a=
gainst sr#0 <a href=3D"http://88.185.173.199/32">88.185.173.199/32</a> ->=
; 84.78.198.299/32</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | =A0 fc_try trying l2tp-=
psk-nat:<a href=3D"http://88.185.173.199/32:17/1701">88.185.173.199/32:17/1=
701</a> -> <a href=3D"http://192.168.1.110/32:17/0">192.168.1.110/32:17/=
0</a> vs l2tp-psk-nat:<a href=3D"http://88.185.173.199/32:17/1701">88.185.1=
73.199/32:17/1701</a> -> 84.78.198.299/32:17/0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | =A0 fc_try concluding w=
ith none [0]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | =A0 fc_try l2tp-psk-nat=
gives none</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | =A0 checking hostpair <=
a href=3D"http://88.185.173.199/32">88.185.173.199/32</a> -> 84.78.198.2=
99/32 is found</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | =A0 fc_try trying l2tp-=
psk-nat:<a href=3D"http://88.185.173.199/32:17/1701">88.185.173.199/32:17/1=
701</a> -> <a href=3D"http://192.168.1.110/32:17/0">192.168.1.110/32:17/=
0</a> vs l2tp-psk-nat:<a href=3D"http://88.185.173.199/32:17/1701">88.185.1=
73.199/32:17/1701</a> -> <a href=3D"http://0.0.0.0/32:17/0">0.0.0.0/32:1=
7/0</a></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | =A0 fc_try concluding w=
ith none [0]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | =A0 fc_try_oppo trying =
l2tp-psk-nat:<a href=3D"http://88.185.173.199/32">88.185.173.199/32</a> -&g=
t; <a href=3D"http://192.168.1.110/32">192.168.1.110/32</a> vs l2tp-psk-nat=
:<a href=3D"http://88.185.173.199/32">88.185.173.199/32</a> -> <a href=
=3D"http://0.0.0.0/32">0.0.0.0/32</a></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | =A0 fc_try_oppo conclud=
ing with none [0]</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:28 debian pluto[11151]: | =A0 concluding with d =
=3D none</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier"><font clas=
s=3D"Apple-style-span" color=3D"#ff0000">Sep 17 18:37:28 debian pluto[11151=
]: "l2tp-psk-nat"[2] 84.78.198.299:4501 #1: cannot respond to IPs=
ec SA request because no connection is known for <a href=3D"http://88.185.1=
73.199/32=3D=3D=3D192.168.0.20:4500[192.168.0.20]:17/1701...84.78.198.299:4=
501[192.168.1.110]:17/%any=3D=3D=3D192.168.1.110/32">88.185.173.199/32=3D=
=3D=3D192.168.0.20:4500[192.168.0.20]:17/1701...84.78.198.299:4501[192.168.=
1.110]:17/%any=3D=3D=3D192.168.1.110/32</a></font></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier"><font clas=
s=3D"Apple-style-span" color=3D"#ff0000">Sep 17 18:37:28 debian pluto[11151=
]: "l2tp-psk-nat"[2] 84.78.198.299:4501 #1: sending encrypted not=
ification INVALID_ID_INFORMATION to 84.78.198.299:4501</font></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier"><font clas=
s=3D"Apple-style-span" color=3D"#ff0000">Sep 17 18:37:28 debian pluto[11151=
]: | state transition function for STATE_QUICK_R0 failed: INVALID_ID_INFORM=
ATION</font></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier"><font clas=
s=3D"Apple-style-span" color=3D"#ff0000">Sep 17 18:37:28 debian pluto[11151=
]: | next event EVENT_NAT_T_KEEPALIVE in 19 seconds</font></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: |=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | *received 252 bytes fro=
m 84.78.198.299:4501 on eth0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | ICOOKIE: =A096 61 2d 50=
=A0c6 46 15 77</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | RCOOKIE: =A032 f3 92 fa=
=A06c af 23 86</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | peer: =A054 4e c6 e0</p=
>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | state hash entry 23</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | state object not found<=
/p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | ICOOKIE: =A096 61 2d 50=
=A0c6 46 15 77</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | RCOOKIE: =A032 f3 92 fa=
=A06c af 23 86</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | peer: =A054 4e c6 e0</p=
>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | state hash entry 23</p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier"><font clas=
s=3D"Apple-style-span" color=3D"#cc0000">Sep 17 18:37:31 debian pluto[11151=
]: | state object #1 found, in STATE_MAIN_R3</font></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier"><font clas=
s=3D"Apple-style-span" color=3D"#cc0000">Sep 17 18:37:31 debian pluto[11151=
]: "l2tp-psk-nat"[2] 84.78.198.299:4501 #1: Quick Mode I1 message=
is unacceptable because it uses a previously used Message ID 0x767ae29b (p=
erhaps this is a duplicated packet)</font></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier"><font clas=
s=3D"Apple-style-span" color=3D"#cc0000">Sep 17 18:37:31 debian pluto[11151=
]: "l2tp-psk-nat"[2] 84.78.198.299:4501 #1: sending encrypted not=
ification INVALID_MESSAGE_ID to 84.78.198.299:4501</font></p>
<p style=3D"font-size:12px;margin-top:0px;margin-right:0px;margin-bottom:0p=
x;margin-left:0px;font:normal normal normal 12px/normal Courier"><font clas=
s=3D"Apple-style-span" color=3D"#cc0000">Sep 17 18:37:31 debian pluto[11151=
]: | next event EVENT_NAT_T_KEEPALIVE in 16 seconds</font></p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: |=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | *received 84 bytes from=
84.78.198.299:4501 on eth0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | ICOOKIE: =A096 61 2d 50=
=A0c6 46 15 77</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | RCOOKIE: =A032 f3 92 fa=
=A06c af 23 86</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | peer: =A054 4e c6 e0</p=
>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | state hash entry 23</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | state object #1 found, =
in STATE_MAIN_R3</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | ICOOKIE: =A096 61 2d 50=
=A0c6 46 15 77</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | RCOOKIE: =A032 f3 92 fa=
=A06c af 23 86</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | peer: =A054 4e c6 e0</p=
>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | state hash entry 23</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | state object #1 found, =
in STATE_MAIN_R3</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: "l2tp-psk-nat"[=
2] 84.78.198.299:4501 #1: received Delete SA payload: deleting ISAKMP State=
#1</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | ICOOKIE: =A096 61 2d 50=
=A0c6 46 15 77</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | RCOOKIE: =A032 f3 92 fa=
=A06c af 23 86</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | peer: =A054 4e c6 e0</p=
>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | state hash entry 23</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: "l2tp-psk-nat"[=
2] 84.78.198.299:4501: deleting connection "l2tp-psk-nat" instanc=
e with peer 84.78.198.299 {isakmp=3D#0/ipsec=3D#0}</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | certs and keys locked b=
y 'delete_connection'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | certs and keys unlocked=
by 'delete_connection'</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:31 debian pluto[11151]: | next event EVENT_NAT_T_=
KEEPALIVE in 16 seconds</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:47 debian pluto[11151]: |=A0</p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier">Sep 17 18:37:47 debian pluto[11151]: | *time to handle event</=
p>
<p style=3D"font-size:12px;color:rgb(102,102,102);margin-top:0px;margin-rig=
ht:0px;margin-bottom:0px;margin-left:0px;font:normal normal normal 12px/nor=
mal Courier"><br></p></span><span class=3D"Apple-style-span" style=3D"font-=
family:Arial"><font class=3D"Apple-style-span" size=3D"4">So here i am, i r=
eally tried the best i can, but i'm running out of ideas :((( I underli=
ned in the latest log what's i think its going wrong, but despite that =
it seems to be a NAT problem, everything is nated correctly on the ADSL rou=
ter</font></span></div>
<div><font class=3D"Apple-style-span" face=3D"Arial" size=3D"4"><br></font>=
</div><div><font class=3D"Apple-style-span" face=3D"Arial" size=3D"4">the p=
ort 1701, 4500, 500 in udp are well nated to my vpn server, any ideas, any =
suggestions will be more than welcome ;)</font></div>
<div><font class=3D"Apple-style-span" face=3D"Arial" size=3D"4"><br></font>=
</div><div><font class=3D"Apple-style-span" face=3D"Arial" size=3D"4">Thank=
s a lot in advance for your precious help and sorry for the level of logs, =
but the more the debug level of log is, the easier is the way to find out w=
hat is going wrong ;)</font></div>
<div><font class=3D"Apple-style-span" face=3D"Arial" size=3D"4"><br></font>=
</div><div><font class=3D"Apple-style-span" face=3D"Arial" size=3D"4">Best =
Regards</font></div><div><font class=3D"Apple-style-span" face=3D"Arial" si=
ze=3D"4"><br></font></div>
<div><font class=3D"Apple-style-span" face=3D"Arial"><font class=3D"Apple-s=
tyle-span" size=3D"4">Steve</font><br></font><span class=3D"Apple-style-spa=
n" style=3D"font-family:Courier;font-size:12px">
<p style=3D"color:rgb(102,102,102);margin-top:0px;margin-right:0px;margin-b=
ottom:0px;margin-left:0px;font:normal normal normal 12px/normal Courier;min=
-height:14px"><br></p>
<p style=3D"color:rgb(102,102,102);margin-top:0px;margin-right:0px;margin-b=
ottom:0px;margin-left:0px;font:normal normal normal 12px/normal Courier;min=
-height:14px"><br></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 18px/normal Courier;color:rgb(255,18,18);min-h=
eight:22px"><b></b><br></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 18px/normal Courier;color:rgb(255,18,18);min-h=
eight:22px"><b></b><br></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 18px/normal Courier;color:rgb(255,18,18);min-h=
eight:22px"><b></b><br></p>
<p style=3D"color:rgb(102,102,102);margin-top:0px;margin-right:0px;margin-b=
ottom:0px;margin-left:0px;font:normal normal normal 12px/normal Courier;min=
-height:14px"><br></p>
<p style=3D"color:rgb(102,102,102);margin-top:0px;margin-right:0px;margin-b=
ottom:0px;margin-left:0px;font:normal normal normal 18px/normal Courier;min=
-height:22px"><b></b><br></p>
<p style=3D"color:rgb(102,102,102);margin-top:0px;margin-right:0px;margin-b=
ottom:0px;margin-left:0px;font:normal normal normal 18px/normal Courier;min=
-height:22px"><b></b><br></p>
<p style=3D"color:rgb(102,102,102);margin-top:0px;margin-right:0px;margin-b=
ottom:0px;margin-left:0px;font:normal normal normal 18px/normal Courier;min=
-height:22px"><b></b><br></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier;color:rgb(102,102,102);min=
-height:14px"><br></p>
<p style=3D"margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0=
px;font:normal normal normal 12px/normal Courier;color:rgb(102,102,102);min=
-height:14px"><br></p></span></div>
--f46d04478837b45bf604c9ed9f22--
More information about the Users
mailing list