<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<style type="text/css" style="display:none;"> P {margin-top:0;margin-bottom:0;} </style>
</head>
<body dir="ltr">
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 12pt; color: rgb(0, 0, 0); background-color: rgb(255, 255, 255);">
Strongswan 5.8.4. Odd issue connecting to a fortigate. The tunnel appears to establish and the SA up. The fortigate shows phase1 and 2 complete but no traffic is passing. The logs on the strongsan show something I'm not used to seeing. It appears somehow
that quickmode phase2 is responding on port 500 instead of 4500. But again, it appears to complete. Here the info from the logs. Any ideas?</div>
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 12pt; color: rgb(0, 0, 0); background-color: rgb(255, 255, 255);">
<br>
</div>
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 12pt; color: rgb(0, 0, 0); background-color: rgb(255, 255, 255);">
<span>Jun 25 21:33:28 ip-100-105-8-167 charon: 07[ENC] generating QUICK_MODE response 2098315325 [ HASH SA No KE ID ID ]<br>
</span>
<div>Jun 25 21:33:28 ip-100-105-8-167 charon: 07[NET] sending packet: from 1.1.1.1[500] to 2.2.2.2[500] (380 bytes)<br>
</div>
<div>Jun 25 21:33:28 ip-100-105-8-167 charon: 08[NET] received packet: from 2.2.2.2[500] to 1.1.1.1[500] (60 bytes)<br>
</div>
<div>Jun 25 21:33:28 ip-100-105-8-167 charon: 08[ENC] parsed QUICK_MODE request 2098315325 [ HASH ]<br>
</div>
<div>Jun 25 21:33:28 ip-100-105-8-167 charon: 08[IKE] CHILD_SA sph-dr{71} established with SPIs c2b7d129_i 0a24e7dd_o and TS 1.1.0.0/16 === 2.2.0.0/28<br>
</div>
<div>Jun 25 21:33:43 ip-100-105-8-167 charon: 06[IKE] sending DPD request<br>
</div>
<div>Jun 25 21:33:43 ip-100-105-8-167 charon: 06[ENC] generating INFORMATIONAL_V1 request 1996139877 [ HASH N(DPD) ]<br>
</div>
<div>Jun 25 21:33:43 ip-100-105-8-167 charon: 06[NET] sending packet: from 1.1.1.1[500] to 2.2.2.2[500] (92 bytes)<br>
</div>
<div>Jun 25 21:33:43 ip-100-105-8-167 charon: 16[NET] received packet: from 2.2.2.2[500] to 1.1.1.1[500] (92 bytes)<br>
</div>
<div>Jun 25 21:33:43 ip-100-105-8-167 charon: 16[ENC] parsed INFORMATIONAL_V1 request 3916210465 [ HASH N(DPD_ACK) ]<br>
</div>
<div><br>
</div>
<div>ipsec statusall:</div>
<div><br>
</div>
<div><span>sph-dr[56]: ESTABLISHED 4 seconds ago, 1.1.1.13.3.3.3]...2.2.2.2[2.2.2.2]<br>
</span>
<div> sph-dr[56]: IKEv1 SPIs: 92bf32eece46a7f9_i fb85b9ec02d6437f_r*, pre-shared key reauthentication in 7 hours<br>
</div>
<div> sph-dr[56]: IKE proposal: AES_CBC_128/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1536<br>
</div>
<div> sph-dr{71}: INSTALLED, TUNNEL, reqid 2, ESP SPIs: c2b7d129_i 0a24e7dd_o<br>
</div>
<div> sph-dr{71}: AES_CBC_128/HMAC_SHA1_96/MODP_1536, 0 bytes_i, 0 bytes_o, rekeying in 7 hours<br>
</div>
<div> sph-dr{71}: 1.1.0.0/16 === 2.2.0.0/28<br>
</div>
<span></span><br>
</div>
<span></span><br>
</div>
<div>
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 12pt; color: rgb(0, 0, 0);">
<br>
</div>
<div id="Signature">
<div>
<meta content="text/html; charset=UTF-8">
<div id="divtagdefaultwrapper" dir="ltr" style="background-color: rgb(255, 255, 255);">
<p style="margin-top: 0px; margin-bottom: 0px;margin:0in 0in 0.0001pt"></p>
<p style="font-size: 12pt; margin: 0in 0in 0.0001pt; color: rgb(0, 0, 0);"></p>
<p class="x_MsoNormal" style="margin: 0in 0in 0.0001pt; color: rgb(33, 33, 33);">
<b style="font-family:Calibri,sans-serif; font-size:11pt"><span style="font-size: 10.5pt; font-family: Arial, sans-serif, serif, EmojiFont; color: black;">Doug Tucker<br>
</span></b><font face="Helvetica, sans-serif"><span style="font-size:13.32px">Sr. Director of Networking & Linux Operations</span></font><font face="Calibri, sans-serif"><span style="font-size: 11pt; color: black;"></span></font></p>
<p class="x_MsoNormal" style="margin: 0in 0in 0.0001pt; font-size: 11pt; font-family: Calibri, sans-serif; color: rgb(33, 33, 33);">
<b><span style="font-size: 10.5pt; font-family: Arial, sans-serif, serif, EmojiFont; color: black;">o:</span></b><span style="font-size: 10.5pt; font-family: Arial, sans-serif, serif, EmojiFont; color: black;"> 817.975.5832 | <b> m:</b> 817.975.5832<br>
</span></p>
<p style="margin-top: 0px; margin-bottom: 0px;font-size:11pt; font-family:Calibri,sans-serif,serif,EmojiFont; margin-right:0px; margin-left:0px">
<span style="font-size: 10.5pt; font-family: Arial, sans-serif, serif, EmojiFont; color: black;"><b>e:</b> doug.tucker</span><span style="font-size:10.5pt; font-family:Arial,sans-serif,serif,EmojiFont"><font color="#954f72" data-ogsc="" style="">@navigaglobal.com</font></span></p>
<p style="margin: 0px; font-size: 11pt; font-family: Calibri, sans-serif, serif, EmojiFont; color: rgb(33, 33, 33);">
<span style="font-size: 10.5pt; font-family: Arial, sans-serif, serif, EmojiFont; color: black;"> </span></p>
<p style="margin: 0px; font-size: 11pt; font-family: Calibri, sans-serif, serif, EmojiFont; color: rgb(33, 33, 33);">
<span style="font-size: 12pt; color: black;"><a href="https://navigaglobal.com/" target="_blank" rel="noopener noreferrer" title="https://navigaglobal.com/ Ctrl+Click or tap to follow the link"><span style="text-decoration-line:none"><img class="EmojiInsert" border="0" id="OWAPstImg750417" style="width:218.99pt; height:48.74pt" data-outlook-trace="F:0|T:1" src="cid:image001.png@01D4FEC7.F32F3010"></span></a></span></p>
<p style="margin: 0px; font-size: 11pt; font-family: Calibri, sans-serif, serif, EmojiFont; color: rgb(33, 33, 33);">
<span style="font-size: 10.5pt; font-family: Arial, sans-serif, serif, EmojiFont; color: black;"><br>
</span><a href="https://www.facebook.com/navigaglobal" target="_blank" rel="noopener noreferrer"><span style="text-decoration-line:none"><img class="EmojiInsert" border="0" id="OWAPstImg217983" style="width:18pt; height:18pt" data-outlook-trace="F:0|T:1" src="cid:image002.png@01D4FEC7.F32F3010"></span></a><span style="color: black;"> <a href="https://twitter.com/navigaglobal" target="_blank" rel="noopener noreferrer"><span style="text-decoration-line:none"><img class="EmojiInsert" border="0" id="OWAPstImg993761" style="width:18pt; height:18pt" data-outlook-trace="F:0|T:1" src="cid:image003.png@01D4FEC7.F32F3010"></span></a> <a href="https://www.linkedin.com/company/navigaglobal/about/" target="_blank" rel="noopener noreferrer"><span style="text-decoration-line:none"><img class="EmojiInsert" border="0" id="OWAPstImg727145" style="width:18pt; height:18pt" data-outlook-trace="F:0|T:1" src="cid:image004.png@01D4FEC7.F32F3010"></span></a></span></p>
<p style="margin: 0px; font-size: 11pt; font-family: Calibri, sans-serif, serif, EmojiFont; color: rgb(33, 33, 33);">
<span style="color: black;"> </span></p>
<p style="margin: 0px; font-size: 11pt; font-family: Calibri, sans-serif, serif, EmojiFont; line-height: 11.65pt; color: rgb(33, 33, 33);">
<b><i><span style="font-size: 11.5pt; font-family: Arial, sans-serif, serif, EmojiFont; color: white; background-color: rgb(65, 28, 181);"><a href="https://navigaglobal.com/" target="_blank" rel="noopener noreferrer"><span style="color: white;">Newscycle Solutions
is now Naviga. Learn more.</span></a></span></i></b></p>
<p style="margin: 0px; font-size: 11pt; font-family: Calibri, sans-serif, serif, EmojiFont; color: rgb(33, 33, 33);">
<b><span style="font-size: 10.5pt; color: black;"><br>
</span></b><span style="font-size: 8.5pt; font-family: Arial, sans-serif, serif, EmojiFont; color: rgb(136, 136, 136);">CONFIDENTIALITY NOTICE: The contents of this email message and any attachments are intended solely for the addressee(s) and may contain confidential
and/or privileged information and may be legally protected from disclosure. If you are not the intended recipient of this message or their agent, or if this message has been addressed to you in error, please immediately alert the sender by reply email and
then delete this message and any attachments. If you are not the intended recipient, you are hereby notified that any use, dissemination, copying, or storage of this message or its attachments is strictly prohibited.</span></p>
<br>
<p style="margin-top: 0px; margin-bottom: 0px;"></p>
<p class="x_MsoNormal" style="margin: 0in 0in 0.0001pt; font-size: 11pt; font-family: Calibri, sans-serif; color: rgb(33, 33, 33);">
<span style="font-size: 10.5pt; font-family: Arial, sans-serif, serif, EmojiFont; color: black;"> </span></p>
<p class="x_MsoNormal" style="margin: 0in 0in 0.0001pt; font-size: 11pt; font-family: Calibri, sans-serif; color: rgb(33, 33, 33);">
<span style="font-size: 8.5pt; font-family: Arial, sans-serif, serif, EmojiFont; color: rgb(136, 136, 136);"></span></p>
<p style="margin-top: 0px; margin-bottom: 0px;"></p>
<p style="margin-top: 0px; margin-bottom: 0px;"></p>
<p style="margin-top: 0px; margin-bottom: 0px;"></p>
<p style="font-size: 12pt; font-family: Calibri, Arial, Helvetica, sans-serif; margin: 0in 0in 0.0001pt; color: rgb(0, 0, 0);">
<span style="font-size: 8.5pt; font-family: Helvetica, sans-serif; color: rgb(136, 137, 139);"></span></p>
</div>
</div>
</div>
</div>
</body>
</html>