[strongSwan] Issue establishing a connection with strongswan

Joe O notjoe at gmail.com
Fri Sep 16 19:44:25 CEST 2016


I am having this issue when trying to connect over IPSec. I am just wondering if anyone knows what this might be off the top of their head or be able to point me in the right direction to resolve it.

Thanks in advance!


^[[CSep 16 17:42:13 vmi82861 charon: 04[ENC] parsed ID_PROT request 0 [ SA V V V V V V V V V V V V V V ]
Sep 16 17:42:13 vmi82861 charon: 04[CFG] looking for an ike config for 5.189.135.134...37.14.94.220
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   candidate: %any...%any, prio 28
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   candidate: %any...%any, prio 24
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   candidate: %any...%any, prio 28
Sep 16 17:42:13 vmi82861 charon: 04[CFG] found matching ike config: %any...%any with prio 28
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received NAT-T (RFC 3947) vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received draft-ietf-ipsec-nat-t-ike vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received draft-ietf-ipsec-nat-t-ike-08 vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received draft-ietf-ipsec-nat-t-ike-07 vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received draft-ietf-ipsec-nat-t-ike-06 vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received draft-ietf-ipsec-nat-t-ike-05 vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received draft-ietf-ipsec-nat-t-ike-04 vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received draft-ietf-ipsec-nat-t-ike-03 vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received draft-ietf-ipsec-nat-t-ike-02 vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received draft-ietf-ipsec-nat-t-ike-02\n vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received XAuth vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received Cisco Unity vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received FRAGMENTATION vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] received DPD vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] 37.14.94.220 is initiating a Main Mode IKE_SA
Sep 16 17:42:13 vmi82861 charon: 04[IKE] IKE_SA (unnamed)[1] state change: CREATED => CONNECTING
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable DIFFIE_HELLMAN_GROUP found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable PSEUDO_RANDOM_FUNCTION found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable DIFFIE_HELLMAN_GROUP found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable PSEUDO_RANDOM_FUNCTION found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   no acceptable ENCRYPTION_ALGORITHM found
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selecting proposal:
Sep 16 17:42:13 vmi82861 charon: 04[CFG]   proposal matches
Sep 16 17:42:13 vmi82861 charon: 04[CFG] received proposals: IKE:AES_CBC_256/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_2048, IKE:AES_CBC_256/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_2048, IKE:AES_CBC_256/HMAC_MD5_96/PRF_HMAC_MD5/MODP_2048, IKE:AES_CBC_256/HMAC_SHA2_512_256/PRF_HMAC_SHA2_512/MODP_2048, IKE:AES_CBC_256/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_1536, IKE:AES_CBC_256/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1536, IKE:AES_CBC_256/HMAC_MD5_96/PRF_HMAC_MD5/MODP_1536, IKE:AES_CBC_256/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024, IKE:AES_CBC_256/HMAC_MD5_96/PRF_HMAC_MD5/MODP_1024, IKE:AES_CBC_128/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024, IKE:AES_CBC_128/HMAC_MD5_96/PRF_HMAC_MD5/MODP_1024, IKE:3DES_CBC/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024, IKE:3DES_CBC/HMAC_MD5_96/PRF_HMAC_MD5/MODP_1024, IKE:DES_CBC/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024, IKE:DES_CBC/HMAC_MD5_96/PRF_HMAC_MD5/MODP_1024
Sep 16 17:42:13 vmi82861 charon: 04[CFG] configured proposals: IKE:AES_CBC_128/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_2048, IKE:3DES_CBC/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1536, IKE:AES_CBC_128/AES_CBC_192/AES_CBC_256/3DES_CBC/CAMELLIA_CBC_128/CAMELLIA_CBC_192/CAMELLIA_CBC_256/HMAC_MD5_96/HMAC_SHA1_96/HMAC_SHA2_256_128/HMAC_SHA2_384_192/HMAC_SHA2_512_256/AES_XCBC_96/AES_CMAC_96/PRF_HMAC_MD5/PRF_HMAC_SHA1/PRF_HMAC_SHA2_256/PRF_HMAC_SHA2_384/PRF_HMAC_SHA2_512/PRF_AES128_XCBC/PRF_AES128_CMAC/MODP_2048/MODP_2048_224/MODP_2048_256/MODP_1536/MODP_3072/MODP_4096/MODP_8192/MODP_1024/MODP_1024_160/ECP_256/ECP_384/ECP_521/ECP_224/ECP_192/ECP_224_BP/ECP_256_BP/ECP_384_BP/ECP_512_BP, IKE:AES_GCM_8_128/AES_GCM_8_192/AES_GCM_8_256/AES_GCM_12_128/AES_GCM_12_192/AES_GCM_12_256/AES_GCM_16_128/AES_GCM_16_192/AES_GCM_16_256/PRF_HMAC_MD5/PRF_HMAC_SHA1/PRF_HMAC_SHA2_256/PRF_HMAC_SHA2_384/PRF_HMAC_SHA2_512/PRF_AES128_XCBC/PRF_AES128_CMAC/MODP_2048/MODP_2048_224/MODP_2048_256/MODP_1536/MODP_3072/MODP_4096/MODP_8192/MODP_1024/MODP_1024_160/ECP_256/ECP_384/ECP_521/ECP_224/ECP_192/ECP_224_BP/ECP_256_BP/ECP_384_BP/ECP_512_BP
Sep 16 17:42:13 vmi82861 charon: 04[CFG] selected proposal: IKE:AES_CBC_256/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_2048
Sep 16 17:42:13 vmi82861 charon: 04[IKE] sending strongSwan vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] sending XAuth vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] sending DPD vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[IKE] sending NAT-T (RFC 3947) vendor ID
Sep 16 17:42:13 vmi82861 charon: 04[ENC] generating ID_PROT response 0 [ SA V V V V ]
Sep 16 17:42:13 vmi82861 charon: 06[ENC] parsed ID_PROT request 0 [ KE No NAT-D NAT-D ]
Sep 16 17:42:13 vmi82861 charon: 06[IKE] remote host is behind NAT
Sep 16 17:42:13 vmi82861 charon: 06[ENC] generating ID_PROT response 0 [ KE No NAT-D NAT-D ]
Sep 16 17:42:13 vmi82861 charon: 05[ENC] invalid ID_V1 payload length, decryption failed?
Sep 16 17:42:13 vmi82861 charon: 05[ENC] could not decrypt payloads
Sep 16 17:42:13 vmi82861 charon: 05[IKE] message parsing failed
Sep 16 17:42:13 vmi82861 charon: 05[ENC] generating INFORMATIONAL_V1 request 1484035364 [ HASH N(PLD_MAL) ]
Sep 16 17:42:13 vmi82861 charon: 05[IKE] ID_PROT request with message ID 0 processing failed
Sep 16 17:42:16 vmi82861 charon: 07[ENC] invalid ID_V1 payload length, decryption failed?
Sep 16 17:42:16 vmi82861 charon: 07[ENC] could not decrypt payloads
Sep 16 17:42:16 vmi82861 charon: 07[IKE] message parsing failed
Sep 16 17:42:16 vmi82861 charon: 07[ENC] generating INFORMATIONAL_V1 request 2114862857 [ HASH N(PLD_MAL) ]
Sep 16 17:42:16 vmi82861 charon: 07[IKE] ID_PROT request with message ID 0 processing failed
Sep 16 17:42:19 vmi82861 charon: 10[ENC] invalid ID_V1 payload length, decryption failed?
Sep 16 17:42:19 vmi82861 charon: 10[ENC] could not decrypt payloads
Sep 16 17:42:19 vmi82861 charon: 10[IKE] message parsing failed
Sep 16 17:42:19 vmi82861 charon: 10[ENC] generating INFORMATIONAL_V1 request 1392184338 [ HASH N(PLD_MAL) ]
Sep 16 17:42:19 vmi82861 charon: 10[IKE] ID_PROT request with message ID 0 processing failed
Sep 16 17:42:22 vmi82861 charon: 12[ENC] invalid ID_V1 payload length, decryption failed?
Sep 16 17:42:22 vmi82861 charon: 12[ENC] could not decrypt payloads
Sep 16 17:42:22 vmi82861 charon: 12[IKE] message parsing failed
Sep 16 17:42:22 vmi82861 charon: 12[ENC] generating INFORMATIONAL_V1 request 2431363879 [ HASH N(PLD_MAL) ]
Sep 16 17:42:22 vmi82861 charon: 12[IKE] ID_PROT request with message ID 0 processing failed


More information about the Users mailing list