[strongSwan] strongswan <-> juniper tunnel
Axel Zöllich
a.zoellich at kirsch.zoellich.de
Thu Oct 24 18:21:08 CEST 2013
Hi Martin,
>Could you post a more complete log (all levels 1) to see where these
>initiates come from?
You mean:
charon {
filelog {
/var/log/charon.log {
time_format = %b %e %T
append = no
flush_line = yes
dmn=1
mgr=1
ike=1
chd=1
job=1
cfg=1
knl=1
net=1
asn=1
enc=1
tls=1
lib=1
tnc=1
imc=1
imv=1
pts=1
}
}
}
Oct 24 17:54:12 00[DMN] Starting IKE charon daemon (strongSwan 5.1.0,
Linux 3.2.0-4-amd64, x86_64)
Oct 24 17:54:12 00[LIB] no RDRAND support on GenuineIntel CPU, disabled
Oct 24 17:54:12 00[LIB] plugin 'rdrand' does not provide features,
deprecated
Oct 24 17:54:12 00[CFG] HA config misses local/remote address
Oct 24 17:54:12 00[LIB] plugin 'ha': failed to load - ha_plugin_create
returned NULL
Oct 24 17:54:12 00[CFG] loading ca certificates from
'/etc/ipsec.d/cacerts'
Oct 24 17:54:12 00[CFG] loading aa certificates from
'/etc/ipsec.d/aacerts'
Oct 24 17:54:12 00[CFG] loading ocsp signer certificates from
'/etc/ipsec.d/ocspcerts'
Oct 24 17:54:12 00[CFG] loading attribute certificates from
'/etc/ipsec.d/acerts'
Oct 24 17:54:12 00[CFG] loading crls from '/etc/ipsec.d/crls'
Oct 24 17:54:12 00[CFG] loading secrets from '/etc/ipsec.secrets'
Oct 24 17:54:12 00[CFG] expanding file expression
'/var/lib/strongswan/ipsec.secrets.inc' failed
Oct 24 17:54:12 00[CFG] loaded IKE secret for ccc.ddd.70.155
Oct 24 17:54:12 00[CFG] loaded IKE secret for @router-pikt-1.pikt
@router-meb-1.pikt aaa.bbb.77.202
Oct 24 17:54:12 00[CFG] loaded IKE secret for eee.fff.157.103
Oct 24 17:54:12 00[CFG] loaded 0 RADIUS server configurations
Oct 24 17:54:12 00[LIB] loaded plugins: charon test-vectors curl ldap
pkcs11 aes rc2 sha1 sha2 md5 rdrand random nonce x509 revocation
constraints pubkey pkcs1 pkcs7 pkcs8 pkcs12 pgp dnskey sshkey pem
openssl gcrypt af-alg fips-prf gmp agent xcbc cmac hmac ctr ccm gcm attr
kernel-netlink resolve socket-default farp stroke updown eap-identity
eap-aka eap-md5 eap-gtc eap-mschapv2 eap-radius eap-tls eap-ttls eap-tnc
xauth-generic xauth-eap xauth-pam tnc-tnccs dhcp lookip error-notify
certexpire led addrblock unity
Oct 24 17:54:12 00[LIB] unable to load 6 plugin features (6 due to
unmet dependencies)
Oct 24 17:54:12 00[LIB] dropped capabilities, running as uid 0, gid 0
Oct 24 17:54:12 00[JOB] spawning 16 worker threads
Oct 24 17:54:12 07[CFG] received stroke: add connection 'pikt-meb'
Oct 24 17:54:12 07[CFG] added configuration 'pikt-meb'
Oct 24 17:54:12 08[CFG] received stroke: initiate 'pikt-meb'
Oct 24 17:54:12 08[IKE] initiating Main Mode IKE_SA pikt-meb[1] to
aaa.bbb.77.202
Oct 24 17:54:12 08[ENC] generating ID_PROT request 0 [ SA V V V V ]
Oct 24 17:54:12 08[NET] sending packet: from aaa.bbb.77.222[500] to
aaa.bbb.77.202[500] (236 bytes)
Oct 24 17:54:12 11[CFG] received stroke: add connection 'dorn'
Oct 24 17:54:12 11[CFG] added configuration 'dorn'
Oct 24 17:54:12 15[CFG] received stroke: initiate 'dorn'
Oct 24 17:54:12 15[IKE] initiating Main Mode IKE_SA dorn[2] to
ccc.ddd.70.155
Oct 24 17:54:12 15[ENC] generating ID_PROT request 0 [ SA V V V V ]
Oct 24 17:54:12 15[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:54:12 13[CFG] received stroke: add connection 'jung'
Oct 24 17:54:12 13[CFG] added configuration 'jung'
Oct 24 17:54:12 12[CFG] received stroke: initiate 'jung'
Oct 24 17:54:12 12[IKE] initiating Main Mode IKE_SA jung[3] to
eee.fff.157.103
Oct 24 17:54:12 12[ENC] generating ID_PROT request 0 [ SA V V V V ]
Oct 24 17:54:12 12[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (224 bytes)
Oct 24 17:54:12 05[NET] received packet: from aaa.bbb.77.202[500] to
aaa.bbb.77.222[500] (102 bytes)
Oct 24 17:54:12 05[ENC] parsed INFORMATIONAL_V1 request 2468310428 [
N(NO_PROP) ]
Oct 24 17:54:12 05[IKE] received NO_PROPOSAL_CHOSEN error notify
Oct 24 17:54:12 07[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (124 bytes)
Oct 24 17:54:12 07[ENC] parsed ID_PROT response 0 [ SA V V ]
Oct 24 17:54:12 07[IKE] received DPD vendor ID
Oct 24 17:54:12 07[IKE] received NAT-T (RFC 3947) vendor ID
Oct 24 17:54:12 07[ENC] generating ID_PROT request 0 [ KE No NAT-D
NAT-D ]
Oct 24 17:54:12 07[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (372 bytes)
Oct 24 17:54:13 08[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (356 bytes)
Oct 24 17:54:13 08[ENC] parsed ID_PROT response 0 [ KE No NAT-D NAT-D ]
Oct 24 17:54:13 08[ENC] generating ID_PROT request 0 [ ID HASH ]
Oct 24 17:54:13 08[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (76 bytes)
Oct 24 17:54:13 09[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 17:54:13 09[ENC] parsed ID_PROT response 0 [ ID HASH
N(INITIAL_CONTACT) ]
Oct 24 17:54:13 09[IKE] IKE_SA jung[3] established between
ggg.hhh.162.192[eee.fff.157.103]...eee.fff.157.103[eee.fff.157.103]
Oct 24 17:54:13 09[IKE] scheduling reauthentication in 6972s
Oct 24 17:54:13 09[IKE] maximum IKE_SA lifetime 7152s
Oct 24 17:54:13 09[ENC] generating QUICK_MODE request 280399244 [ HASH
SA No ID ID ]
Oct 24 17:54:13 09[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (236 bytes)
Oct 24 17:54:13 11[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (156 bytes)
Oct 24 17:54:13 11[ENC] parsed QUICK_MODE response 280399244 [ HASH SA
No ID ID ]
Oct 24 17:54:13 11[KNL] unable to install source route for
192.168.222.241
Oct 24 17:54:13 11[IKE] CHILD_SA jung{1} established with SPIs
cbc1ca68_i 43d74ac7_o and TS 192.168.222.0/24 === 192.168.1.0/24
Oct 24 17:54:13 11[ENC] generating QUICK_MODE request 280399244 [ HASH
]
Oct 24 17:54:13 11[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (60 bytes)
Oct 24 17:54:16 15[IKE] sending retransmit 1 of request message ID 0,
seq 1
Oct 24 17:54:16 15[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:54:17 05[NET] received packet: from aaa.bbb.77.202[500] to
aaa.bbb.77.222[500] (240 bytes)
Oct 24 17:54:17 05[ENC] parsed ID_PROT request 0 [ SA V V V V V V V V ]
Oct 24 17:54:17 05[ENC] received unknown vendor ID:
f7:58:f2:26:68:75:0f:03:b0:8d:f6:eb:e1:d0:04:03
Oct 24 17:54:17 05[ENC] received unknown vendor ID:
af:ca:d7:13:68:a1:f1:c9:6b:86:96:fc:77:57
Oct 24 17:54:17 05[IKE] received draft-ietf-ipsec-nat-t-ike-02 vendor
ID
Oct 24 17:54:17 05[IKE] received draft-ietf-ipsec-nat-t-ike-02\n vendor
ID
Oct 24 17:54:17 05[IKE] received draft-ietf-ipsec-nat-t-ike-03 vendor
ID
Oct 24 17:54:17 05[IKE] received NAT-T (RFC 3947) vendor ID
Oct 24 17:54:17 05[IKE] received DPD vendor ID
Oct 24 17:54:17 05[ENC] received unknown vendor ID:
af:ca:d7:13:68:a1:f1:c9:6b:86:96:fc:77:57
Oct 24 17:54:17 05[IKE] aaa.bbb.77.202 is initiating a Main Mode IKE_SA
Oct 24 17:54:17 05[ENC] generating ID_PROT response 0 [ SA V V V ]
Oct 24 17:54:17 05[NET] sending packet: from aaa.bbb.77.222[500] to
aaa.bbb.77.202[500] (136 bytes)
Oct 24 17:54:17 07[NET] received packet: from aaa.bbb.77.202[500] to
aaa.bbb.77.222[500] (228 bytes)
Oct 24 17:54:17 07[ENC] parsed ID_PROT request 0 [ KE No NAT-D NAT-D ]
Oct 24 17:54:17 07[ENC] generating ID_PROT response 0 [ KE No NAT-D
NAT-D ]
Oct 24 17:54:17 07[NET] sending packet: from aaa.bbb.77.222[500] to
aaa.bbb.77.202[500] (244 bytes)
Oct 24 17:54:18 06[NET] received packet: from aaa.bbb.77.202[500] to
aaa.bbb.77.222[500] (92 bytes)
Oct 24 17:54:18 06[ENC] parsed ID_PROT request 0 [ ID HASH
N(INITIAL_CONTACT) ]
Oct 24 17:54:18 06[CFG] looking for pre-shared key peer configs
matching aaa.bbb.77.222...aaa.bbb.77.202[aaa.bbb.77.202]
Oct 24 17:54:18 06[CFG] selected peer config "pikt-meb"
Oct 24 17:54:18 06[IKE] IKE_SA pikt-meb[4] established between
aaa.bbb.77.222[router-pikt-1.pikt]...aaa.bbb.77.202[aaa.bbb.77.202]
Oct 24 17:54:18 06[IKE] scheduling reauthentication in 86170s
Oct 24 17:54:18 06[IKE] maximum IKE_SA lifetime 86350s
Oct 24 17:54:18 06[ENC] generating ID_PROT response 0 [ ID HASH ]
Oct 24 17:54:18 06[NET] sending packet: from aaa.bbb.77.222[500] to
aaa.bbb.77.202[500] (84 bytes)
Oct 24 17:54:19 09[NET] received packet: from aaa.bbb.77.202[500] to
aaa.bbb.77.222[500] (292 bytes)
Oct 24 17:54:19 09[ENC] parsed QUICK_MODE request 4091986404 [ HASH SA
No KE ID ID ]
Oct 24 17:54:19 09[ENC] generating QUICK_MODE response 4091986404 [
HASH SA No KE ID ID ]
Oct 24 17:54:19 09[NET] sending packet: from aaa.bbb.77.222[500] to
aaa.bbb.77.202[500] (316 bytes)
Oct 24 17:54:19 11[NET] received packet: from aaa.bbb.77.202[500] to
aaa.bbb.77.222[500] (52 bytes)
Oct 24 17:54:19 11[ENC] parsed QUICK_MODE request 4091986404 [ HASH ]
Oct 24 17:54:19 11[IKE] CHILD_SA pikt-meb{2} established with SPIs
ca254bd0_i 6dccfbb9_o and TS 192.168.222.0/24 === 192.168.223.0/24
Oct 24 17:54:23 12[IKE] sending retransmit 2 of request message ID 0,
seq 1
Oct 24 17:54:23 12[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:54:36 08[IKE] sending retransmit 3 of request message ID 0,
seq 1
Oct 24 17:54:36 08[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:54:43 15[IKE] sending DPD request
Oct 24 17:54:43 15[ENC] generating INFORMATIONAL_V1 request 551386522 [
HASH N(DPD) ]
Oct 24 17:54:43 15[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 17:54:43 14[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 17:54:43 14[ENC] parsed INFORMATIONAL_V1 request 207357402 [
HASH N(DPD_ACK) ]
Oct 24 17:55:00 10[IKE] sending retransmit 4 of request message ID 0,
seq 1
Oct 24 17:55:00 10[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:55:13 11[IKE] sending DPD request
Oct 24 17:55:13 11[ENC] generating INFORMATIONAL_V1 request 2909055651
[ HASH N(DPD) ]
Oct 24 17:55:13 11[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 17:55:13 15[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 17:55:13 15[ENC] parsed INFORMATIONAL_V1 request 2796730428 [
HASH N(DPD_ACK) ]
Oct 24 17:55:42 16[IKE] sending retransmit 5 of request message ID 0,
seq 1
Oct 24 17:55:42 16[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:55:43 12[IKE] sending DPD request
Oct 24 17:55:43 12[ENC] generating INFORMATIONAL_V1 request 71866085 [
HASH N(DPD) ]
Oct 24 17:55:43 12[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 17:55:43 05[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 17:55:43 05[ENC] parsed INFORMATIONAL_V1 request 1091071135 [
HASH N(DPD_ACK) ]
Oct 24 17:56:13 13[IKE] sending DPD request
Oct 24 17:56:13 13[ENC] generating INFORMATIONAL_V1 request 416240678 [
HASH N(DPD) ]
Oct 24 17:56:13 13[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 17:56:13 16[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 17:56:13 16[ENC] parsed INFORMATIONAL_V1 request 3680378881 [
HASH N(DPD_ACK) ]
Oct 24 17:56:43 12[IKE] sending DPD request
Oct 24 17:56:43 12[ENC] generating INFORMATIONAL_V1 request 4178475430
[ HASH N(DPD) ]
Oct 24 17:56:43 12[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 17:56:43 05[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 17:56:43 05[ENC] parsed INFORMATIONAL_V1 request 1907544932 [
HASH N(DPD_ACK) ]
Oct 24 17:56:57 08[IKE] giving up after 5 retransmits
Oct 24 17:56:57 08[IKE] peer not responding, trying again (2/0)
Oct 24 17:56:57 08[IKE] initiating Main Mode IKE_SA dorn[2] to
ccc.ddd.70.155
Oct 24 17:56:57 08[ENC] generating ID_PROT request 0 [ SA V V V V ]
Oct 24 17:56:57 08[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:57:01 10[IKE] sending retransmit 1 of request message ID 0,
seq 1
Oct 24 17:57:01 10[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:57:04 13[KNL] 192.168.120.14 disappeared from tun_media
Oct 24 17:57:04 05[KNL] interface tun_media deactivated
Oct 24 17:57:04 07[KNL] interface tun_media deleted
Oct 24 17:57:09 09[IKE] sending retransmit 2 of request message ID 0,
seq 1
Oct 24 17:57:09 09[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:57:11 15[KNL] 192.168.120.14 appeared on tun_media
Oct 24 17:57:11 13[KNL] interface tun_media activated
Oct 24 17:57:11 16[KNL] 192.168.120.14 disappeared from tun_media
Oct 24 17:57:11 05[KNL] 192.168.120.14 appeared on tun_media
Oct 24 17:57:12 12[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 17:57:12 12[ENC] parsed INFORMATIONAL_V1 request 4051452581 [
HASH N(DPD) ]
Oct 24 17:57:12 12[ENC] generating INFORMATIONAL_V1 request 1637891101
[ HASH N(DPD_ACK) ]
Oct 24 17:57:12 12[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 17:57:22 12[IKE] sending retransmit 3 of request message ID 0,
seq 1
Oct 24 17:57:22 12[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:57:43 07[IKE] sending DPD request
Oct 24 17:57:43 07[ENC] generating INFORMATIONAL_V1 request 1418360364
[ HASH N(DPD) ]
Oct 24 17:57:43 07[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 17:57:43 08[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 17:57:43 08[ENC] parsed INFORMATIONAL_V1 request 2841722156 [
HASH N(DPD_ACK) ]
Oct 24 17:57:45 06[IKE] sending retransmit 4 of request message ID 0,
seq 1
Oct 24 17:57:45 06[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:58:13 15[IKE] sending DPD request
Oct 24 17:58:13 15[ENC] generating INFORMATIONAL_V1 request 2911969915
[ HASH N(DPD) ]
Oct 24 17:58:13 15[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 17:58:13 13[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 17:58:13 13[ENC] parsed INFORMATIONAL_V1 request 1136062606 [
HASH N(DPD_ACK) ]
Oct 24 17:58:27 06[IKE] sending retransmit 5 of request message ID 0,
seq 1
Oct 24 17:58:27 06[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:58:43 08[IKE] sending DPD request
Oct 24 17:58:43 08[ENC] generating INFORMATIONAL_V1 request 3461213193
[ HASH N(DPD) ]
Oct 24 17:58:43 08[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 17:58:43 06[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 17:58:43 06[ENC] parsed INFORMATIONAL_V1 request 3641353200 [
HASH N(DPD_ACK) ]
Oct 24 17:59:13 13[IKE] sending DPD request
Oct 24 17:59:13 13[ENC] generating INFORMATIONAL_V1 request 2273414870
[ HASH N(DPD) ]
Oct 24 17:59:13 13[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 17:59:13 16[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 17:59:13 16[ENC] parsed INFORMATIONAL_V1 request 1935693651 [
HASH N(DPD_ACK) ]
Oct 24 17:59:42 12[IKE] giving up after 5 retransmits
Oct 24 17:59:42 12[IKE] peer not responding, trying again (3/0)
Oct 24 17:59:42 12[IKE] initiating Main Mode IKE_SA dorn[2] to
ccc.ddd.70.155
Oct 24 17:59:42 12[ENC] generating ID_PROT request 0 [ SA V V V V ]
Oct 24 17:59:42 12[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:59:43 05[IKE] sending DPD request
Oct 24 17:59:43 05[ENC] generating INFORMATIONAL_V1 request 1305170889
[ HASH N(DPD) ]
Oct 24 17:59:43 05[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 17:59:43 07[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 17:59:43 07[ENC] parsed INFORMATIONAL_V1 request 246811574 [
HASH N(DPD_ACK) ]
Oct 24 17:59:46 06[IKE] sending retransmit 1 of request message ID 0,
seq 1
Oct 24 17:59:46 06[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 17:59:54 10[IKE] sending retransmit 2 of request message ID 0,
seq 1
Oct 24 17:59:54 10[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:00:07 15[IKE] sending retransmit 3 of request message ID 0,
seq 1
Oct 24 18:00:07 15[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:00:13 05[IKE] sending DPD request
Oct 24 18:00:13 05[ENC] generating INFORMATIONAL_V1 request 265918987 [
HASH N(DPD) ]
Oct 24 18:00:13 05[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:00:13 07[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:00:13 07[ENC] parsed INFORMATIONAL_V1 request 2802564375 [
HASH N(DPD_ACK) ]
Oct 24 18:00:30 11[IKE] sending retransmit 4 of request message ID 0,
seq 1
Oct 24 18:00:30 11[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:00:43 10[IKE] sending DPD request
Oct 24 18:00:43 10[ENC] generating INFORMATIONAL_V1 request 2342667772
[ HASH N(DPD) ]
Oct 24 18:00:43 10[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:00:43 14[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:00:43 14[ENC] parsed INFORMATIONAL_V1 request 1113682298 [
HASH N(DPD_ACK) ]
Oct 24 18:01:12 16[IKE] sending retransmit 5 of request message ID 0,
seq 1
Oct 24 18:01:12 16[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:01:13 05[IKE] sending DPD request
Oct 24 18:01:13 05[ENC] generating INFORMATIONAL_V1 request 1125515423
[ HASH N(DPD) ]
Oct 24 18:01:13 05[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:01:13 07[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:01:13 07[ENC] parsed INFORMATIONAL_V1 request 3618907099 [
HASH N(DPD_ACK) ]
Oct 24 18:01:43 15[IKE] sending DPD request
Oct 24 18:01:43 15[ENC] generating INFORMATIONAL_V1 request 232407111 [
HASH N(DPD) ]
Oct 24 18:01:43 15[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:01:43 11[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:01:43 11[ENC] parsed INFORMATIONAL_V1 request 1913378879 [
HASH N(DPD_ACK) ]
Oct 24 18:02:13 10[IKE] sending DPD request
Oct 24 18:02:13 10[ENC] generating INFORMATIONAL_V1 request 3804600900
[ HASH N(DPD) ]
Oct 24 18:02:13 10[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:02:13 14[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:02:13 14[ENC] parsed INFORMATIONAL_V1 request 207653793 [
HASH N(DPD_ACK) ]
Oct 24 18:02:27 12[IKE] giving up after 5 retransmits
Oct 24 18:02:27 12[IKE] peer not responding, trying again (4/0)
Oct 24 18:02:27 12[IKE] initiating Main Mode IKE_SA dorn[2] to
ccc.ddd.70.155
Oct 24 18:02:27 12[ENC] generating ID_PROT request 0 [ SA V V V V ]
Oct 24 18:02:27 12[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:02:31 06[IKE] sending retransmit 1 of request message ID 0,
seq 1
Oct 24 18:02:31 06[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:02:39 09[IKE] sending retransmit 2 of request message ID 0,
seq 1
Oct 24 18:02:39 09[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:02:43 12[IKE] sending DPD request
Oct 24 18:02:43 12[ENC] generating INFORMATIONAL_V1 request 465566779 [
HASH N(DPD) ]
Oct 24 18:02:43 12[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:02:43 05[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:02:43 05[ENC] parsed INFORMATIONAL_V1 request 2813804292 [
HASH N(DPD_ACK) ]
Oct 24 18:02:52 06[IKE] sending retransmit 3 of request message ID 0,
seq 1
Oct 24 18:02:52 06[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:03:13 16[IKE] sending DPD request
Oct 24 18:03:13 16[ENC] generating INFORMATIONAL_V1 request 177246334 [
HASH N(DPD) ]
Oct 24 18:03:13 16[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:03:13 12[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:03:13 12[ENC] parsed INFORMATIONAL_V1 request 1074524517 [
HASH N(DPD_ACK) ]
Oct 24 18:03:15 07[IKE] sending retransmit 4 of request message ID 0,
seq 1
Oct 24 18:03:15 07[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:03:43 05[IKE] sending DPD request
Oct 24 18:03:43 05[ENC] generating INFORMATIONAL_V1 request 770010331 [
HASH N(DPD) ]
Oct 24 18:03:43 05[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:03:43 07[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:03:43 07[ENC] parsed INFORMATIONAL_V1 request 3596592327 [
HASH N(DPD_ACK) ]
Oct 24 18:03:57 11[IKE] sending retransmit 5 of request message ID 0,
seq 1
Oct 24 18:03:57 11[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:04:13 05[IKE] sending DPD request
Oct 24 18:04:13 05[ENC] generating INFORMATIONAL_V1 request 2151305342
[ HASH N(DPD) ]
Oct 24 18:04:13 05[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:04:13 07[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:04:13 07[ENC] parsed INFORMATIONAL_V1 request 1890932778 [
HASH N(DPD_ACK) ]
Oct 24 18:04:43 11[IKE] sending DPD request
Oct 24 18:04:43 11[ENC] generating INFORMATIONAL_V1 request 1790807232
[ HASH N(DPD) ]
Oct 24 18:04:43 11[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:04:43 13[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:04:43 13[ENC] parsed INFORMATIONAL_V1 request 269356429 [
HASH N(DPD_ACK) ]
Oct 24 18:05:13 12[IKE] giving up after 5 retransmits
Oct 24 18:05:13 12[IKE] peer not responding, trying again (5/0)
Oct 24 18:05:13 12[IKE] initiating Main Mode IKE_SA dorn[2] to
ccc.ddd.70.155
Oct 24 18:05:13 12[ENC] generating ID_PROT request 0 [ SA V V V V ]
Oct 24 18:05:13 12[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:05:13 07[IKE] sending DPD request
Oct 24 18:05:13 07[ENC] generating INFORMATIONAL_V1 request 1414059672
[ HASH N(DPD) ]
Oct 24 18:05:13 07[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:05:13 08[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:05:13 08[ENC] parsed INFORMATIONAL_V1 request 2774646767 [
HASH N(DPD_ACK) ]
Oct 24 18:05:17 10[IKE] sending retransmit 1 of request message ID 0,
seq 1
Oct 24 18:05:17 10[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:05:24 16[IKE] sending retransmit 2 of request message ID 0,
seq 1
Oct 24 18:05:24 16[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:05:37 10[IKE] sending retransmit 3 of request message ID 0,
seq 1
Oct 24 18:05:37 10[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:05:43 12[IKE] sending DPD request
Oct 24 18:05:43 12[ENC] generating INFORMATIONAL_V1 request 3704304774
[ HASH N(DPD) ]
Oct 24 18:05:43 12[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:05:43 05[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:05:43 05[ENC] parsed INFORMATIONAL_V1 request 1085764434 [
HASH N(DPD_ACK) ]
Oct 24 18:06:00 14[IKE] sending retransmit 4 of request message ID 0,
seq 1
Oct 24 18:06:00 14[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:06:13 16[IKE] sending DPD request
Oct 24 18:06:13 16[ENC] generating INFORMATIONAL_V1 request 535618425 [
HASH N(DPD) ]
Oct 24 18:06:13 16[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:06:13 12[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:06:13 12[ENC] parsed INFORMATIONAL_V1 request 3557369010 [
HASH N(DPD_ACK) ]
Oct 24 18:06:42 08[IKE] sending retransmit 5 of request message ID 0,
seq 1
Oct 24 18:06:42 08[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:06:43 10[IKE] sending DPD request
Oct 24 18:06:43 10[ENC] generating INFORMATIONAL_V1 request 379579835 [
HASH N(DPD) ]
Oct 24 18:06:43 10[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:06:43 14[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:06:43 14[ENC] parsed INFORMATIONAL_V1 request 1868618006 [
HASH N(DPD_ACK) ]
Oct 24 18:07:13 06[IKE] sending DPD request
Oct 24 18:07:13 06[ENC] generating INFORMATIONAL_V1 request 3828483361
[ HASH N(DPD) ]
Oct 24 18:07:13 06[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:07:13 09[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:07:13 09[ENC] parsed INFORMATIONAL_V1 request 162892920 [
HASH N(DPD_ACK) ]
Oct 24 18:07:43 13[IKE] sending DPD request
Oct 24 18:07:43 13[ENC] generating INFORMATIONAL_V1 request 4228101670
[ HASH N(DPD) ]
Oct 24 18:07:43 13[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:07:43 16[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:07:43 16[ENC] parsed INFORMATIONAL_V1 request 2752266459 [
HASH N(DPD_ACK) ]
Oct 24 18:07:58 05[IKE] giving up after 5 retransmits
Oct 24 18:07:58 05[IKE] peer not responding, trying again (6/0)
Oct 24 18:07:58 05[IKE] initiating Main Mode IKE_SA dorn[2] to
ccc.ddd.70.155
Oct 24 18:07:58 05[ENC] generating ID_PROT request 0 [ SA V V V V ]
Oct 24 18:07:58 05[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:08:02 07[IKE] sending retransmit 1 of request message ID 0,
seq 1
Oct 24 18:08:02 07[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:08:09 14[IKE] sending retransmit 2 of request message ID 0,
seq 1
Oct 24 18:08:09 14[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:08:13 11[IKE] sending DPD request
Oct 24 18:08:13 11[ENC] generating INFORMATIONAL_V1 request 3877777614
[ HASH N(DPD) ]
Oct 24 18:08:13 11[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:08:13 13[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:08:13 13[ENC] parsed INFORMATIONAL_V1 request 1046606653 [
HASH N(DPD_ACK) ]
Oct 24 18:08:22 06[IKE] sending retransmit 3 of request message ID 0,
seq 1
Oct 24 18:08:22 06[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:08:43 07[IKE] sending DPD request
Oct 24 18:08:43 07[ENC] generating INFORMATIONAL_V1 request 4250966694
[ HASH N(DPD) ]
Oct 24 18:08:43 07[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:08:43 08[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:08:43 08[ENC] parsed INFORMATIONAL_V1 request 3568674463 [
HASH N(DPD_ACK) ]
Oct 24 18:08:45 09[IKE] sending retransmit 4 of request message ID 0,
seq 1
Oct 24 18:08:45 09[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:09:13 15[IKE] sending DPD request
Oct 24 18:09:13 15[ENC] generating INFORMATIONAL_V1 request 2821804180
[ HASH N(DPD) ]
Oct 24 18:09:13 15[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:09:13 11[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:09:13 11[ENC] parsed INFORMATIONAL_V1 request 1829394689 [
HASH N(DPD_ACK) ]
Oct 24 18:09:27 09[IKE] sending retransmit 5 of request message ID 0,
seq 1
Oct 24 18:09:27 09[NET] sending packet: from ggg.hhh.162.192[500] to
ccc.ddd.70.155[500] (224 bytes)
Oct 24 18:09:43 06[IKE] sending DPD request
Oct 24 18:09:43 06[ENC] generating INFORMATIONAL_V1 request 1741743082
[ HASH N(DPD) ]
Oct 24 18:09:43 06[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:09:43 09[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:09:43 09[ENC] parsed INFORMATIONAL_V1 request 140512612 [
HASH N(DPD_ACK) ]
Oct 24 18:10:13 12[IKE] sending DPD request
Oct 24 18:10:13 12[ENC] generating INFORMATIONAL_V1 request 616250366 [
HASH N(DPD) ]
Oct 24 18:10:13 12[NET] sending packet: from ggg.hhh.162.192[500] to
eee.fff.157.103[500] (92 bytes)
Oct 24 18:10:13 05[NET] received packet: from eee.fff.157.103[500] to
ggg.hhh.162.192[500] (92 bytes)
Oct 24 18:10:13 05[ENC] parsed INFORMATIONAL_V1 request 2729885894 [
HASH N(DPD_ACK) ]
ipsec status:
Security Associations (3 up, 0 connecting):
pikt-meb[4]: ESTABLISHED 23 minutes ago,
aaa.bbb.77.222[router-pikt-1.pikt]...aaa.bbb.77.202[aaa.bbb.77.202]
pikt-meb{2}: INSTALLED, TUNNEL, ESP SPIs: ca254bd0_i 6dccfbb9_o
pikt-meb{2}: 192.168.222.0/24 === 192.168.223.0/24
jung[3]: ESTABLISHED 23 minutes ago,
ggg.hhh.162.192[eee.fff.157.103]...eee.fff.157.103[eee.fff.157.103]
jung{1}: INSTALLED, TUNNEL, ESP SPIs: cbc1ca68_i 43d74ac7_o
jung{1}: 192.168.222.0/24 === 192.168.1.0/24
dorn[2]: CONNECTING,
ggg.hhh.162.192[%any]...ccc.ddd.70.155[%any]
Axel
More information about the Users
mailing list