[strongSwan] How to use ah keyword for windows 7 L2TP/IPSec
李英杰
yingjie_li at suminet-sh.com
Tue Nov 19 10:06:06 CET 2013
Hello all,
I am setting strongswan with xl2tpd for windows 7 L2TP/IPSec.
Now, I can connect to the Server with ESP,
but when I add ah keywork which available since 5.1.1
as ah=md5,
windows client(192.168.226.1) can not connet to the server(192.168.226.136) and display error 789.
I want send AH packets ,
plaese help me to let the server use AH for the connection.
Thanks.
Best Regards.
E-mail:yingjie_li at suminet-sh.com
My config file is as flowing.
#/etc/ipsec.conf
config setup
conn L2TP
keyexchange=ikev1
rekey=no
authby=secret
type=tunnel
ah=md5
compress=yes
left=%defaultroute
leftprotoport=17/1701
right=%any
rightprotoport=17/%any
auto=add
And some of log is here.
#/var/log/strongswan.charon.log
Nov 13 06:42:00 16[CFG] received proposals: ESP:AES_CBC_128/HMAC_SHA1_96/NO_EXT_SEQ, ESP:3DES_CBC/HMAC_SHA1_96/NO_EXT_SEQ, ESP:DES_CBC/HMAC_SHA1_96/NO_EXT_SEQ, ESP:NULL/HMAC_SHA1_96/NO_EXT_SEQ, AH:HMAC_MD5_96/NO_EXT_SEQ
Nov 13 06:42:00 16[CFG] configured proposals: AH:HMAC_MD5_96/NO_EXT_SEQ, AH:HMAC_SHA1_96/AES_XCBC_96/HMAC_MD5_96/NO_EXT_SEQ
Nov 13 06:42:00 16[CFG] selected proposal: AH:HMAC_MD5_96/NO_EXT_SEQ
Nov 13 06:42:00 16[IKE] received 3600s lifetime, configured 0s
Nov 13 06:42:00 16[IKE] received 250000000 lifebytes, configured 0
Nov 13 06:42:00 16[KNL] getting SPI for reqid {1}
Nov 13 06:42:00 16[KNL] got SPI c30c2258 for reqid {1}
Nov 13 06:42:00 16[ENC] added payload of type SECURITY_ASSOCIATION_V1 to message
Nov 13 06:42:00 16[ENC] added payload of type NONCE_V1 to message
Nov 13 06:42:00 16[ENC] added payload of type ID_V1 to message
Nov 13 06:42:00 16[ENC] added payload of type ID_V1 to message
Nov 13 06:42:00 16[ENC] added payload of type SECURITY_ASSOCIATION_V1 to message
Nov 13 06:42:00 16[ENC] added payload of type NONCE_V1 to message
Nov 13 06:42:00 16[ENC] added payload of type ID_V1 to message
Nov 13 06:42:00 16[ENC] added payload of type ID_V1 to message
Nov 13 06:42:00 16[ENC] generating QUICK_MODE response 1 [ HASH SA No ID ID ]
Nov 13 06:42:00 16[ENC] insert payload HASH_V1 into encrypted payload
Nov 13 06:42:00 16[ENC] insert payload SECURITY_ASSOCIATION_V1 into encrypted payload
Nov 13 06:42:00 16[ENC] insert payload NONCE_V1 into encrypted payload
Nov 13 06:42:00 16[ENC] insert payload ID_V1 into encrypted payload
Nov 13 06:42:00 16[ENC] insert payload ID_V1 into encrypted payload
Nov 13 06:42:00 16[ENC] generating payload of type HEADER
Nov 13 06:42:00 16[ENC] generating rule 0 IKE_SPI
Nov 13 06:42:00 16[ENC] generating rule 1 IKE_SPI
Nov 13 06:42:00 16[ENC] generating rule 2 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 3 U_INT_4
Nov 13 06:42:00 16[ENC] generating rule 4 U_INT_4
Nov 13 06:42:00 16[ENC] generating rule 5 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 6 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 7 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 8 FLAG
Nov 13 06:42:00 16[ENC] generating rule 9 FLAG
Nov 13 06:42:00 16[ENC] generating rule 10 FLAG
Nov 13 06:42:00 16[ENC] generating rule 11 FLAG
Nov 13 06:42:00 16[ENC] generating rule 12 FLAG
Nov 13 06:42:00 16[ENC] generating rule 13 FLAG
Nov 13 06:42:00 16[ENC] generating rule 14 U_INT_32
Nov 13 06:42:00 16[ENC] generating rule 15 HEADER_LENGTH
Nov 13 06:42:00 16[ENC] generating HEADER payload finished
Nov 13 06:42:00 16[ENC] generating payload of type HASH_V1
Nov 13 06:42:00 16[ENC] generating rule 0 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 1 RESERVED_BYTE
Nov 13 06:42:00 16[ENC] generating rule 2 PAYLOAD_LENGTH
Nov 13 06:42:00 16[ENC] generating rule 3 CHUNK_DATA
Nov 13 06:42:00 16[ENC] generating HASH_V1 payload finished
Nov 13 06:42:00 16[ENC] generating payload of type SECURITY_ASSOCIATION_V1
Nov 13 06:42:00 16[ENC] generating rule 0 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 1 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 2 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 3 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 4 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 5 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 6 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 7 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 8 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 9 PAYLOAD_LENGTH
Nov 13 06:42:00 16[ENC] generating rule 10 U_INT_32
Nov 13 06:42:00 16[ENC] generating rule 11 U_INT_32
Nov 13 06:42:00 16[ENC] generating rule 12 (1258)
Nov 13 06:42:00 16[ENC] generating payload of type PROPOSAL_SUBSTRUCTURE_V1
Nov 13 06:42:00 16[ENC] generating rule 0 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 1 RESERVED_BYTE
Nov 13 06:42:00 16[ENC] generating rule 2 PAYLOAD_LENGTH
Nov 13 06:42:00 16[ENC] generating rule 3 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 4 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 5 SPI_SIZE
Nov 13 06:42:00 16[ENC] generating rule 6 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 7 SPI
Nov 13 06:42:00 16[ENC] generating rule 8 (1260)
Nov 13 06:42:00 16[ENC] generating payload of type TRANSFORM_SUBSTRUCTURE_V1
Nov 13 06:42:00 16[ENC] generating rule 0 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 1 RESERVED_BYTE
Nov 13 06:42:00 16[ENC] generating rule 2 PAYLOAD_LENGTH
Nov 13 06:42:00 16[ENC] generating rule 3 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 4 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 5 RESERVED_BYTE
Nov 13 06:42:00 16[ENC] generating rule 6 RESERVED_BYTE
Nov 13 06:42:00 16[ENC] generating rule 7 (1262)
Nov 13 06:42:00 16[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
Nov 13 06:42:00 16[ENC] generating rule 0 ATTRIBUTE_FORMAT
Nov 13 06:42:00 16[ENC] generating rule 1 ATTRIBUTE_TYPE
Nov 13 06:42:00 16[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
Nov 13 06:42:00 16[ENC] generating rule 3 ATTRIBUTE_VALUE
Nov 13 06:42:00 16[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
Nov 13 06:42:00 16[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
Nov 13 06:42:00 16[ENC] generating rule 0 ATTRIBUTE_FORMAT
Nov 13 06:42:00 16[ENC] generating rule 1 ATTRIBUTE_TYPE
Nov 13 06:42:00 16[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
Nov 13 06:42:00 16[ENC] generating rule 3 ATTRIBUTE_VALUE
Nov 13 06:42:00 16[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
Nov 13 06:42:00 16[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
Nov 13 06:42:00 16[ENC] generating rule 0 ATTRIBUTE_FORMAT
Nov 13 06:42:00 16[ENC] generating rule 1 ATTRIBUTE_TYPE
Nov 13 06:42:00 16[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
Nov 13 06:42:00 16[ENC] generating rule 3 ATTRIBUTE_VALUE
Nov 13 06:42:00 16[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
Nov 13 06:42:00 16[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
Nov 13 06:42:00 16[ENC] generating rule 0 ATTRIBUTE_FORMAT
Nov 13 06:42:00 16[ENC] generating rule 1 ATTRIBUTE_TYPE
Nov 13 06:42:00 16[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
Nov 13 06:42:00 16[ENC] generating rule 3 ATTRIBUTE_VALUE
Nov 13 06:42:00 16[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
Nov 13 06:42:00 16[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
Nov 13 06:42:00 16[ENC] generating rule 0 ATTRIBUTE_FORMAT
Nov 13 06:42:00 16[ENC] generating rule 1 ATTRIBUTE_TYPE
Nov 13 06:42:00 16[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
Nov 13 06:42:00 16[ENC] generating rule 3 ATTRIBUTE_VALUE
Nov 13 06:42:00 16[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
Nov 13 06:42:00 16[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
Nov 13 06:42:00 16[ENC] generating rule 0 ATTRIBUTE_FORMAT
Nov 13 06:42:00 16[ENC] generating rule 1 ATTRIBUTE_TYPE
Nov 13 06:42:00 16[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
Nov 13 06:42:00 16[ENC] generating rule 3 ATTRIBUTE_VALUE
Nov 13 06:42:00 16[ENC] attribute value has not fixed size
Nov 13 06:42:00 16[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
Nov 13 06:42:00 16[ENC] generating TRANSFORM_SUBSTRUCTURE_V1 payload finished
Nov 13 06:42:00 16[ENC] generating PROPOSAL_SUBSTRUCTURE_V1 payload finished
Nov 13 06:42:00 16[ENC] generating SECURITY_ASSOCIATION_V1 payload finished
Nov 13 06:42:00 16[ENC] generating payload of type NONCE_V1
Nov 13 06:42:00 16[ENC] generating rule 0 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 1 FLAG
Nov 13 06:42:00 16[ENC] generating rule 2 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 3 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 4 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 5 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 6 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 7 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 8 RESERVED_BIT
Nov 13 06:42:00 16[ENC] generating rule 9 PAYLOAD_LENGTH
Nov 13 06:42:00 16[ENC] generating rule 10 CHUNK_DATA
Nov 13 06:42:00 16[ENC] generating NONCE_V1 payload finished
Nov 13 06:42:00 16[ENC] generating payload of type ID_V1
Nov 13 06:42:00 16[ENC] generating rule 0 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 1 RESERVED_BYTE
Nov 13 06:42:00 16[ENC] generating rule 2 PAYLOAD_LENGTH
Nov 13 06:42:00 16[ENC] generating rule 3 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 4 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 5 U_INT_16
Nov 13 06:42:00 16[ENC] generating rule 6 CHUNK_DATA
Nov 13 06:42:00 16[ENC] generating ID_V1 payload finished
Nov 13 06:42:00 16[ENC] generating payload of type ID_V1
Nov 13 06:42:00 16[ENC] generating rule 0 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 1 RESERVED_BYTE
Nov 13 06:42:00 16[ENC] generating rule 2 PAYLOAD_LENGTH
Nov 13 06:42:00 16[ENC] generating rule 3 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 4 U_INT_8
Nov 13 06:42:00 16[ENC] generating rule 5 U_INT_16
Nov 13 06:42:00 16[ENC] generating rule 6 CHUNK_DATA
Nov 13 06:42:00 16[ENC] generating ID_V1 payload finished
Nov 13 06:42:00 16[ENC] generated content in encryption payload
Nov 13 06:42:00 16[ENC] generating payload of type ENCRYPTED_V1
Nov 13 06:42:00 16[ENC] generating rule 0 ENCRYPTED_DATA
Nov 13 06:42:00 16[ENC] generating ENCRYPTED_V1 payload finished
Nov 13 06:42:00 16[NET] sending packet: from 192.168.226.136[500] to 192.168.226.1[500] (188 bytes)
Nov 13 06:42:00 07[NET] sending packet: from 192.168.226.136[500] to 192.168.226.1[500]
Nov 13 06:42:00 04[JOB] next event in 3s 999ms, waiting
Nov 13 06:42:00 16[MGR] checkin IKE_SA L2TP[1]
Nov 13 06:42:00 16[MGR] check-in of IKE_SA successful.
Nov 13 06:42:00 06[NET] received packet: from 192.168.226.1[500] to 192.168.226.136[500]
Nov 13 06:42:00 06[ENC] parsing header of message
Nov 13 06:42:00 06[ENC] parsing HEADER payload, 76 bytes left
Nov 13 06:42:00 06[ENC] parsing rule 0 IKE_SPI
Nov 13 06:42:00 06[ENC] parsing rule 1 IKE_SPI
Nov 13 06:42:00 06[ENC] parsing rule 2 U_INT_8
Nov 13 06:42:00 06[ENC] parsing rule 3 U_INT_4
Nov 13 06:42:00 06[ENC] parsing rule 4 U_INT_4
Nov 13 06:42:00 06[ENC] parsing rule 5 U_INT_8
Nov 13 06:42:00 06[ENC] parsing rule 6 RESERVED_BIT
Nov 13 06:42:00 06[ENC] parsing rule 7 RESERVED_BIT
Nov 13 06:42:00 06[ENC] parsing rule 8 FLAG
Nov 13 06:42:00 06[ENC] parsing rule 9 FLAG
Nov 13 06:42:00 06[ENC] parsing rule 10 FLAG
Nov 13 06:42:00 06[ENC] parsing rule 11 FLAG
Nov 13 06:42:00 06[ENC] parsing rule 12 FLAG
Nov 13 06:42:00 06[ENC] parsing rule 13 FLAG
Nov 13 06:42:00 06[ENC] parsing rule 14 U_INT_32
Nov 13 06:42:00 06[ENC] parsing rule 15 HEADER_LENGTH
Nov 13 06:42:00 06[ENC] parsing HEADER payload finished
Nov 13 06:42:00 06[ENC] parsed a INFORMATIONAL_V1 message header
Nov 13 06:42:00 06[NET] waiting for data on sockets
Nov 13 06:42:00 03[MGR] checkout IKE_SA by message
Nov 13 06:42:00 03[MGR] IKE_SA L2TP[1] successfully checked out
Nov 13 06:42:00 03[NET] received packet: from 192.168.226.1[500] to 192.168.226.136[500] (76 bytes)
Nov 13 06:42:00 03[ENC] parsing body of message, first payload is HASH_V1
Nov 13 06:42:00 03[ENC] parsing ENCRYPTED_V1 payload, 48 bytes left
Nov 13 06:42:00 03[ENC] parsing rule 0 ENCRYPTED_DATA
Nov 13 06:42:00 03[ENC] parsing ENCRYPTED_V1 payload finished
Nov 13 06:42:00 03[ENC] process payload of type ENCRYPTED_V1
Nov 13 06:42:00 03[ENC] found an encrypted payload
Nov 13 06:42:00 03[ENC] parsing HASH_V1 payload, 48 bytes left
Nov 13 06:42:00 03[ENC] parsing rule 0 U_INT_8
Nov 13 06:42:00 03[ENC] parsing rule 1 RESERVED_BYTE
Nov 13 06:42:00 03[ENC] parsing rule 2 PAYLOAD_LENGTH
Nov 13 06:42:00 03[ENC] parsing rule 3 CHUNK_DATA
Nov 13 06:42:00 03[ENC] parsing HASH_V1 payload finished
Nov 13 06:42:00 03[ENC] parsing NOTIFY_V1 payload, 24 bytes left
Nov 13 06:42:00 03[ENC] parsing rule 0 U_INT_8
Nov 13 06:42:00 03[ENC] parsing rule 1 RESERVED_BIT
Nov 13 06:42:00 03[ENC] parsing rule 2 RESERVED_BIT
Nov 13 06:42:00 03[ENC] parsing rule 3 RESERVED_BIT
Nov 13 06:42:00 03[ENC] parsing rule 4 RESERVED_BIT
Nov 13 06:42:00 03[ENC] parsing rule 5 RESERVED_BIT
Nov 13 06:42:00 03[ENC] parsing rule 6 RESERVED_BIT
Nov 13 06:42:00 03[ENC] parsing rule 7 RESERVED_BIT
Nov 13 06:42:00 03[ENC] parsing rule 8 RESERVED_BIT
Nov 13 06:42:00 03[ENC] parsing rule 9 PAYLOAD_LENGTH
Nov 13 06:42:00 03[ENC] parsing rule 10 U_INT_32
Nov 13 06:42:00 03[ENC] parsing rule 11 U_INT_8
Nov 13 06:42:00 03[ENC] parsing rule 12 SPI_SIZE
Nov 13 06:42:00 03[ENC] parsing rule 13 U_INT_16
Nov 13 06:42:00 03[ENC] parsing rule 14 SPI
Nov 13 06:42:00 03[ENC] parsing rule 15 CHUNK_DATA
Nov 13 06:42:00 03[ENC] parsing NOTIFY_V1 payload finished
Nov 13 06:42:00 03[ENC] parsed content of encryption payload
Nov 13 06:42:00 03[ENC] insert decrypted payload of type HASH_V1 at end of list
Nov 13 06:42:00 03[ENC] insert decrypted payload of type NOTIFY_V1 at end of list
Nov 13 06:42:00 03[ENC] verifying message structure
Nov 13 06:42:00 03[ENC] found payload of type NOTIFY_V1
Nov 13 06:42:00 03[ENC] found payload of type NOTIFY_V1
Nov 13 06:42:00 03[ENC] parsed INFORMATIONAL_V1 request 1083309842 [ HASH N(NO_PROP) ]
Nov 13 06:42:00 03[IKE] received NO_PROPOSAL_CHOSEN error notify
Nov 13 06:42:00 03[KNL] deleting SAD entry with SPI c30c2258 (mark 0/0x00000000)
Nov 13 06:42:00 03[KNL] deleted SAD entry with SPI c30c2258 (mark 0/0x00000000)
Nov 13 06:42:00 03[MGR] checkin IKE_SA L2TP[1]
Nov 13 06:42:00 03[MGR] check-in of IKE_SA successful.
Nov 13 06:42:00 06[NET] received packet: from 192.168.226.1[500] to 192.168.226.136[500]
Nov 13 06:42:00 06[ENC] parsing header of message
Nov 13 06:42:00 06[ENC] parsing HEADER payload, 92 bytes left
Nov 13 06:42:00 06[ENC] parsing rule 0 IKE_SPI
Nov 13 06:42:00 06[ENC] parsing rule 1 IKE_SPI
Nov 13 06:42:00 06[ENC] parsing rule 2 U_INT_8
Nov 13 06:42:00 06[ENC] parsing rule 3 U_INT_4
Nov 13 06:42:00 06[ENC] parsing rule 4 U_INT_4
Nov 13 06:42:00 06[ENC] parsing rule 5 U_INT_8
Nov 13 06:42:00 06[ENC] parsing rule 6 RESERVED_BIT
Nov 13 06:42:00 06[ENC] parsing rule 7 RESERVED_BIT
Nov 13 06:42:00 06[ENC] parsing rule 8 FLAG
Nov 13 06:42:00 06[ENC] parsing rule 9 FLAG
Nov 13 06:42:00 06[ENC] parsing rule 10 FLAG
Nov 13 06:42:00 06[ENC] parsing rule 11 FLAG
Nov 13 06:42:00 06[ENC] parsing rule 12 FLAG
Nov 13 06:42:00 06[ENC] parsing rule 13 FLAG
Nov 13 06:42:00 06[ENC] parsing rule 14 U_INT_32
Nov 13 06:42:00 06[ENC] parsing rule 15 HEADER_LENGTH
Nov 13 06:42:00 06[ENC] parsing HEADER payload finished
Nov 13 06:42:00 06[ENC] parsed a INFORMATIONAL_V1 message header
Nov 13 06:42:00 06[NET] waiting for data on sockets
Nov 13 06:42:00 02[MGR] checkout IKE_SA by message
Nov 13 06:42:00 02[MGR] IKE_SA L2TP[1] successfully checked out
Nov 13 06:42:00 02[NET] received packet: from 192.168.226.1[500] to 192.168.226.136[500] (92 bytes)
Nov 13 06:42:00 02[ENC] parsing body of message, first payload is HASH_V1
Nov 13 06:42:00 02[ENC] parsing ENCRYPTED_V1 payload, 64 bytes left
Nov 13 06:42:00 02[ENC] parsing rule 0 ENCRYPTED_DATA
Nov 13 06:42:00 02[ENC] parsing ENCRYPTED_V1 payload finished
Nov 13 06:42:00 02[ENC] process payload of type ENCRYPTED_V1
Nov 13 06:42:00 02[ENC] found an encrypted payload
Nov 13 06:42:00 02[ENC] parsing HASH_V1 payload, 64 bytes left
Nov 13 06:42:00 02[ENC] parsing rule 0 U_INT_8
Nov 13 06:42:00 02[ENC] parsing rule 1 RESERVED_BYTE
Nov 13 06:42:00 02[ENC] parsing rule 2 PAYLOAD_LENGTH
Nov 13 06:42:00 02[ENC] parsing rule 3 CHUNK_DATA
Nov 13 06:42:00 02[ENC] parsing HASH_V1 payload finished
Nov 13 06:42:00 02[ENC] parsing DELETE_V1 payload, 40 bytes left
Nov 13 06:42:00 02[ENC] parsing rule 0 U_INT_8
Nov 13 06:42:00 02[ENC] parsing rule 1 RESERVED_BIT
Nov 13 06:42:00 02[ENC] parsing rule 2 RESERVED_BIT
Nov 13 06:42:00 02[ENC] parsing rule 3 RESERVED_BIT
Nov 13 06:42:00 02[ENC] parsing rule 4 RESERVED_BIT
Nov 13 06:42:00 02[ENC] parsing rule 5 RESERVED_BIT
Nov 13 06:42:00 02[ENC] parsing rule 6 RESERVED_BIT
Nov 13 06:42:00 02[ENC] parsing rule 7 RESERVED_BIT
Nov 13 06:42:00 02[ENC] parsing rule 8 RESERVED_BIT
Nov 13 06:42:00 02[ENC] parsing rule 9 PAYLOAD_LENGTH
Nov 13 06:42:00 02[ENC] parsing rule 10 U_INT_32
Nov 13 06:42:00 02[ENC] parsing rule 11 U_INT_8
Nov 13 06:42:00 02[ENC] parsing rule 12 U_INT_8
Nov 13 06:42:00 02[ENC] parsing rule 13 U_INT_16
Nov 13 06:42:00 02[ENC] parsing rule 14 CHUNK_DATA
Nov 13 06:42:00 02[ENC] parsing DELETE_V1 payload finished
Nov 13 06:42:00 02[ENC] parsed content of encryption payload
Nov 13 06:42:00 02[ENC] insert decrypted payload of type HASH_V1 at end of list
Nov 13 06:42:00 02[ENC] insert decrypted payload of type DELETE_V1 at end of list
Nov 13 06:42:00 02[ENC] verifying message structure
Nov 13 06:42:00 02[ENC] found payload of type DELETE_V1
Nov 13 06:42:00 02[ENC] parsed INFORMATIONAL_V1 request 2567143510 [ HASH D ]
Nov 13 06:42:00 02[IKE] received DELETE for IKE_SA L2TP[1]
Nov 13 06:42:00 02[IKE] deleting IKE_SA L2TP[1] between 192.168.226.136[192.168.226.136]...192.168.226.1[192.168.226.1]
Nov 13 06:42:00 02[IKE] IKE_SA L2TP[1] state change: ESTABLISHED => DELETING
Nov 13 06:42:00 02[IKE] IKE_SA L2TP[1] state change: DELETING => DELETING
Nov 13 06:42:00 02[MGR] checkin and destroy IKE_SA L2TP[1]
Nov 13 06:42:00 02[IKE] IKE_SA L2TP[1] state change: DELETING => DESTROYING
Nov 13 06:42:00 02[MGR] check-in and destroy of IKE_SA successful
Nov 13 06:42:04 04[JOB] got event, queuing job for execution
Nov 13 06:42:04 04[JOB] next event in 25s 876ms, waiting
Nov 13 06:42:04 01[MGR] checkout IKE_SA
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20131119/f8425f4d/attachment.html>
More information about the Users
mailing list