[strongSwan] reconect "loop" with: invalid HASH_V1 payload length, decryption failed

Lorenzo Milesi lorenzo.milesi at yetopen.com
Thu Aug 5 11:36:23 CEST 2021


> Looks like the log is truncated between 08:04:33 and 08:10:03.
> Please provide complete logs, and get logs from the other peer.
> See the HelpRequests article on the wiki for useful debug levels[1].

Currently the disconects aren't happening. During the day there are some lucky spots lasting ~1h or so, depending on dunno what. It doesn't seem to be the network load as at this time all the people are in the office...

I'll enable debug for the next disconnect, in the meantime I'm attaching the log from the last event. Unfortunately the server has many tunnels, the one I'm debugging now is FORTIGATE_IP. 

I'll try to collect logs from the Fortigate once the disconnect loop starts again.

Thanks.



Aug  5 10:55:01 vpn01 CRON[2430187]: (root) CMD (command -v debian-sa1 > /dev/null && debian-sa1 1 1)
Aug  5 10:55:07 vpn01 charon: 08[KNL] creating delete job for CHILD_SA ESP/0xccb9fe45/vpnserver_ip
Aug  5 10:55:07 vpn01 charon: 08[JOB] CHILD_SA ESP/0xccb9fe45/vpnserver_ip not found for delete
Aug  5 10:55:07 vpn01 charon: 09[IKE] giving up after 5 retransmits
Aug  5 10:55:07 vpn01 charon: 09[IKE] restarting CHILD_SA coco-lan2
Aug  5 10:55:07 vpn01 charon: 09[IKE] initiating Main Mode IKE_SA coco-base[155160] to unrelatedip1
Aug  5 10:55:07 vpn01 charon: 09[ENC] generating ID_PROT request 0 [ SA V V V V V ]
Aug  5 10:55:07 vpn01 charon: 09[NET] sending packet: from vpnserver_ip[500] to unrelatedip1[500] (240 bytes)
Aug  5 10:55:07 vpn01 charon: 14[NET] received packet: from unrelatedip1[500] to vpnserver_ip[500] (188 bytes)
Aug  5 10:55:07 vpn01 charon: 14[ENC] parsed ID_PROT response 0 [ SA V V V V V ]
Aug  5 10:55:07 vpn01 charon: 14[IKE] received NAT-T (RFC 3947) vendor ID
Aug  5 10:55:07 vpn01 charon: 14[IKE] received DPD vendor ID
Aug  5 10:55:07 vpn01 charon: 14[ENC] received unknown vendor ID: 82:99:03:17:57:a3:60:82:c6:a6:21:de:00:00:00:00
Aug  5 10:55:07 vpn01 charon: 14[IKE] received FRAGMENTATION vendor ID
Aug  5 10:55:07 vpn01 charon: 14[IKE] received FRAGMENTATION vendor ID
Aug  5 10:55:07 vpn01 charon: 14[CFG] selected proposal: IKE:AES_CBC_256/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_3072
Aug  5 10:55:07 vpn01 charon: 14[ENC] generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
Aug  5 10:55:07 vpn01 charon: 14[NET] sending packet: from vpnserver_ip[500] to unrelatedip1[500] (524 bytes)
Aug  5 10:55:07 vpn01 charon: 15[NET] received packet: from unrelatedip1[500] to vpnserver_ip[500] (508 bytes)
Aug  5 10:55:07 vpn01 charon: 15[ENC] parsed ID_PROT response 0 [ KE No NAT-D NAT-D ]
Aug  5 10:55:07 vpn01 charon: 15[IKE] remote host is behind NAT
Aug  5 10:55:07 vpn01 charon: 15[ENC] generating ID_PROT request 0 [ ID HASH N(INITIAL_CONTACT) ]
Aug  5 10:55:07 vpn01 charon: 15[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (108 bytes)
Aug  5 10:55:07 vpn01 charon: 07[NET] received packet: from unrelatedip1[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:55:07 vpn01 charon: 07[ENC] parsed ID_PROT response 0 [ ID HASH ]
Aug  5 10:55:07 vpn01 charon: 07[IKE] IKE_SA coco-base[155160] established between vpnserver_ip[vpnserver_ip]...unrelatedip1[Coco]
Aug  5 10:55:07 vpn01 charon: 07[IKE] scheduling reauthentication in 9775s
Aug  5 10:55:07 vpn01 charon: 07[IKE] maximum IKE_SA lifetime 10315s
Aug  5 10:55:07 vpn01 charon: 07[ENC] generating QUICK_MODE request 3496254515 [ HASH SA No KE ID ID ]
Aug  5 10:55:07 vpn01 charon: 07[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (588 bytes)
Aug  5 10:55:07 vpn01 charon: 12[NET] received packet: from unrelatedip1[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:55:07 vpn01 charon: 12[ENC] parsed INFORMATIONAL_V1 request 2684389388 [ HASH D ]
Aug  5 10:55:07 vpn01 charon: 12[IKE] received DELETE for ESP CHILD_SA with SPI b7bd509b
Aug  5 10:55:07 vpn01 charon: 12[IKE] CHILD_SA not found, ignored
Aug  5 10:55:07 vpn01 charon: 13[NET] received packet: from unrelatedip1[4500] to vpnserver_ip[4500] (572 bytes)
Aug  5 10:55:07 vpn01 charon: 13[ENC] parsed QUICK_MODE response 3496254515 [ HASH SA No KE ID ID ]
Aug  5 10:55:07 vpn01 charon: 13[CFG] selected proposal: ESP:AES_CBC_256/HMAC_SHA2_256_128/MODP_3072/NO_EXT_SEQ
Aug  5 10:55:07 vpn01 charon: 13[IKE] CHILD_SA coco-lan2{357036} established with SPIs c19ca26c_i b7bd509c_o and TS 172.32.1.0/24 === 192.168.14.0/25
Aug  5 10:55:07 vpn01 charon: 13[ENC] generating QUICK_MODE request 3496254515 [ HASH ]
Aug  5 10:55:07 vpn01 charon: 13[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (76 bytes)
Aug  5 10:55:07 vpn01 charon: 13[ENC] generating QUICK_MODE request 3737876608 [ HASH SA No KE ID ID ]
Aug  5 10:55:07 vpn01 charon: 13[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (588 bytes)
Aug  5 10:55:11 vpn01 charon: 08[IKE] sending retransmit 1 of request message ID 3737876608, seq 6
Aug  5 10:55:11 vpn01 charon: 08[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (588 bytes)
Aug  5 10:55:16 vpn01 charon: 09[IKE] sending keep alive to unrelatedip2[4500]
Aug  5 10:55:18 vpn01 charon: 12[IKE] sending retransmit 5 of request message ID 2144306262, seq 6
Aug  5 10:55:18 vpn01 charon: 12[NET] sending packet: from vpnserver_ip[4500] to unrelatedip2[4500] (588 bytes)
Aug  5 10:55:18 vpn01 charon: 07[IKE] sending retransmit 2 of request message ID 3737876608, seq 6
Aug  5 10:55:18 vpn01 charon: 07[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (588 bytes)
Aug  5 10:55:19 vpn01 charon: 14[NET] received packet: from unrelatedip3[4500] to vpnserver_ip[4500] (57 bytes)
Aug  5 10:55:19 vpn01 charon: 14[ENC] parsed INFORMATIONAL request 120 [ ]
Aug  5 10:55:19 vpn01 charon: 14[ENC] generating INFORMATIONAL response 120 [ ]
Aug  5 10:55:19 vpn01 charon: 14[NET] sending packet: from vpnserver_ip[4500] to unrelatedip3[4500] (57 bytes)
Aug  5 10:55:22 vpn01 charon: 05[KNL] creating delete job for CHILD_SA ESP/0xc81a8663/vpnserver_ip
Aug  5 10:55:22 vpn01 charon: 05[JOB] CHILD_SA ESP/0xc81a8663/vpnserver_ip not found for delete
Aug  5 10:55:23 vpn01 charon: 13[IKE] giving up after 5 retransmits
Aug  5 10:55:23 vpn01 charon: 13[IKE] restarting CHILD_SA locanda-lan1
Aug  5 10:55:23 vpn01 charon: 13[IKE] initiating Main Mode IKE_SA locanda-base[155161] to unrelatedip6
Aug  5 10:55:23 vpn01 charon: 13[ENC] generating ID_PROT request 0 [ SA V V V V V ]
Aug  5 10:55:23 vpn01 charon: 13[NET] sending packet: from vpnserver_ip[500] to unrelatedip6[500] (240 bytes)
Aug  5 10:55:23 vpn01 charon: 13[IKE] restarting CHILD_SA locanda-lan2
Aug  5 10:55:23 vpn01 charon: 08[NET] received packet: from unrelatedip6[500] to vpnserver_ip[500] (188 bytes)
Aug  5 10:55:23 vpn01 charon: 08[ENC] parsed ID_PROT response 0 [ SA V V V V V ]
Aug  5 10:55:23 vpn01 charon: 08[IKE] received NAT-T (RFC 3947) vendor ID
Aug  5 10:55:23 vpn01 charon: 08[IKE] received DPD vendor ID
Aug  5 10:55:23 vpn01 charon: 08[ENC] received unknown vendor ID: 82:99:03:17:57:a3:60:82:c6:a6:21:de:00:00:00:00
Aug  5 10:55:23 vpn01 charon: 08[IKE] received FRAGMENTATION vendor ID
Aug  5 10:55:23 vpn01 charon: 08[IKE] received FRAGMENTATION vendor ID
Aug  5 10:55:23 vpn01 charon: 08[CFG] selected proposal: IKE:AES_CBC_256/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_3072
Aug  5 10:55:23 vpn01 charon: 08[ENC] generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
Aug  5 10:55:23 vpn01 charon: 08[NET] sending packet: from vpnserver_ip[500] to unrelatedip6[500] (524 bytes)
Aug  5 10:55:23 vpn01 charon: 10[NET] received packet: from unrelatedip6[500] to vpnserver_ip[500] (508 bytes)
Aug  5 10:55:23 vpn01 charon: 10[ENC] parsed ID_PROT response 0 [ KE No NAT-D NAT-D ]
Aug  5 10:55:23 vpn01 charon: 10[IKE] remote host is behind NAT
Aug  5 10:55:23 vpn01 charon: 10[ENC] generating ID_PROT request 0 [ ID HASH N(INITIAL_CONTACT) ]
Aug  5 10:55:23 vpn01 charon: 10[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (108 bytes)
Aug  5 10:55:23 vpn01 charon: 09[NET] received packet: from unrelatedip6[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:55:23 vpn01 charon: 09[ENC] parsed ID_PROT response 0 [ ID HASH ]
Aug  5 10:55:23 vpn01 charon: 09[IKE] IKE_SA locanda-base[155161] established between vpnserver_ip[vpnserver_ip]...unrelatedip6[Locanda]
Aug  5 10:55:23 vpn01 charon: 09[IKE] scheduling reauthentication in 10116s
Aug  5 10:55:23 vpn01 charon: 09[IKE] maximum IKE_SA lifetime 10656s
Aug  5 10:55:23 vpn01 charon: 09[ENC] generating QUICK_MODE request 296596221 [ HASH SA No KE ID ID ]
Aug  5 10:55:23 vpn01 charon: 09[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (588 bytes)
Aug  5 10:55:23 vpn01 charon: 16[NET] received packet: from unrelatedip6[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:55:23 vpn01 charon: 16[ENC] parsed INFORMATIONAL_V1 request 677965133 [ HASH D ]
Aug  5 10:55:23 vpn01 charon: 16[IKE] received DELETE for ESP CHILD_SA with SPI 185e83e7
Aug  5 10:55:23 vpn01 charon: 16[IKE] CHILD_SA not found, ignored
Aug  5 10:55:23 vpn01 charon: 14[NET] received packet: from unrelatedip6[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:55:23 vpn01 charon: 14[ENC] parsed INFORMATIONAL_V1 request 700731633 [ HASH D ]
Aug  5 10:55:23 vpn01 charon: 14[IKE] received DELETE for ESP CHILD_SA with SPI 185e83e8
Aug  5 10:55:23 vpn01 charon: 14[IKE] CHILD_SA not found, ignored
Aug  5 10:55:23 vpn01 charon: 05[NET] received packet: from unrelatedip6[4500] to vpnserver_ip[4500] (572 bytes)
Aug  5 10:55:23 vpn01 charon: 05[ENC] parsed QUICK_MODE response 296596221 [ HASH SA No KE ID ID ]
Aug  5 10:55:23 vpn01 charon: 05[CFG] selected proposal: ESP:AES_CBC_256/HMAC_SHA2_256_128/MODP_3072/NO_EXT_SEQ
Aug  5 10:55:23 vpn01 charon: 05[IKE] CHILD_SA locanda-lan1{357038} established with SPIs cab6bd8b_i 185e83ea_o and TS 172.32.1.0/24 === 192.168.4.0/24
Aug  5 10:55:23 vpn01 charon: 05[ENC] generating QUICK_MODE request 296596221 [ HASH ]
Aug  5 10:55:23 vpn01 charon: 05[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (76 bytes)
Aug  5 10:55:23 vpn01 charon: 05[ENC] generating QUICK_MODE request 3477114662 [ HASH SA No KE ID ID ]
Aug  5 10:55:23 vpn01 charon: 05[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (588 bytes)
Aug  5 10:55:23 vpn01 charon: 11[NET] received packet: from unrelatedip6[4500] to vpnserver_ip[4500] (572 bytes)
Aug  5 10:55:23 vpn01 charon: 11[ENC] parsed QUICK_MODE response 3477114662 [ HASH SA No KE ID ID ]
Aug  5 10:55:23 vpn01 charon: 11[CFG] selected proposal: ESP:AES_CBC_256/HMAC_SHA2_256_128/MODP_3072/NO_EXT_SEQ
Aug  5 10:55:23 vpn01 charon: 11[IKE] CHILD_SA locanda-lan2{357039} established with SPIs c58daf6c_i 185e83eb_o and TS 172.32.1.0/24 === 192.168.15.0/24
Aug  5 10:55:23 vpn01 charon: 11[ENC] generating QUICK_MODE request 3477114662 [ HASH ]
Aug  5 10:55:23 vpn01 charon: 11[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (76 bytes)
Aug  5 10:55:23 vpn01 charon: 11[ENC] generating QUICK_MODE request 2332887559 [ HASH SA No KE ID ID ]
Aug  5 10:55:23 vpn01 charon: 11[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (588 bytes)
Aug  5 10:55:23 vpn01 charon: 16[NET] received packet: from unrelatedip6[4500] to vpnserver_ip[4500] (572 bytes)
Aug  5 10:55:23 vpn01 charon: 16[ENC] parsed QUICK_MODE response 2332887559 [ HASH SA No KE ID ID ]
Aug  5 10:55:23 vpn01 charon: 16[CFG] selected proposal: ESP:AES_CBC_256/HMAC_SHA2_256_128/MODP_3072/NO_EXT_SEQ
Aug  5 10:55:23 vpn01 charon: 16[IKE] detected rekeying of CHILD_SA locanda-lan2{357039}
Aug  5 10:55:23 vpn01 charon: 16[IKE] CHILD_SA locanda-lan2{357040} established with SPIs c01d83cc_i 185e83ec_o and TS 172.32.1.0/24 === 192.168.15.0/24
Aug  5 10:55:23 vpn01 charon: 16[ENC] generating QUICK_MODE request 2332887559 [ HASH ]
Aug  5 10:55:23 vpn01 charon: 16[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (76 bytes)
Aug  5 10:55:23 vpn01 charon: 16[ENC] generating QUICK_MODE request 2716866373 [ HASH SA No KE ID ID ]
Aug  5 10:55:23 vpn01 charon: 16[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (588 bytes)
Aug  5 10:55:23 vpn01 charon: 09[NET] received packet: from unrelatedip6[4500] to vpnserver_ip[4500] (572 bytes)
Aug  5 10:55:23 vpn01 charon: 09[ENC] parsed QUICK_MODE response 2716866373 [ HASH SA No KE ID ID ]
Aug  5 10:55:23 vpn01 charon: 09[CFG] selected proposal: ESP:AES_CBC_256/HMAC_SHA2_256_128/MODP_3072/NO_EXT_SEQ
Aug  5 10:55:23 vpn01 charon: 09[IKE] detected rekeying of CHILD_SA locanda-lan1{357038}
Aug  5 10:55:23 vpn01 charon: 09[IKE] CHILD_SA locanda-lan1{357041} established with SPIs cd46cca9_i 185e83ed_o and TS 172.32.1.0/24 === 192.168.4.0/24
Aug  5 10:55:23 vpn01 charon: 09[ENC] generating QUICK_MODE request 2716866373 [ HASH ]
Aug  5 10:55:23 vpn01 charon: 09[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (76 bytes)
Aug  5 10:55:23 vpn01 charon: 09[ENC] generating QUICK_MODE request 2143319012 [ HASH SA No KE ID ID ]
Aug  5 10:55:23 vpn01 charon: 09[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (588 bytes)
Aug  5 10:55:27 vpn01 charon: 11[IKE] sending retransmit 1 of request message ID 2143319012, seq 12
Aug  5 10:55:27 vpn01 charon: 11[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (588 bytes)
Aug  5 10:55:31 vpn01 charon: 15[IKE] sending retransmit 3 of request message ID 3737876608, seq 6
Aug  5 10:55:31 vpn01 charon: 15[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (588 bytes)
Aug  5 10:55:34 vpn01 charon: 12[IKE] sending retransmit 2 of request message ID 2143319012, seq 12
Aug  5 10:55:34 vpn01 charon: 12[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (588 bytes)
Aug  5 10:55:38 vpn01 charon: 08[IKE] sending keep alive to unrelatedip2[4500]
Aug  5 10:55:42 vpn01 charon: 11[KNL] creating delete job for CHILD_SA ESP/0xc6e64274/vpnserver_ip
Aug  5 10:55:42 vpn01 charon: 11[JOB] CHILD_SA ESP/0xc6e64274/vpnserver_ip not found for delete
Aug  5 10:55:42 vpn01 charon: 16[IKE] giving up after 5 retransmits
Aug  5 10:55:42 vpn01 charon: 16[IKE] initiating Main Mode IKE_SA stelle-base[155162] to unrelatedip5
Aug  5 10:55:42 vpn01 charon: 16[ENC] generating ID_PROT request 0 [ SA V V V V V ]
Aug  5 10:55:42 vpn01 charon: 16[NET] sending packet: from vpnserver_ip[500] to unrelatedip5[500] (240 bytes)
Aug  5 10:55:42 vpn01 charon: 14[NET] received packet: from unrelatedip5[500] to vpnserver_ip[500] (188 bytes)
Aug  5 10:55:42 vpn01 charon: 14[ENC] parsed ID_PROT response 0 [ SA V V V V V ]
Aug  5 10:55:42 vpn01 charon: 14[IKE] received NAT-T (RFC 3947) vendor ID
Aug  5 10:55:42 vpn01 charon: 14[IKE] received DPD vendor ID
Aug  5 10:55:42 vpn01 charon: 14[ENC] received unknown vendor ID: 82:99:03:17:57:a3:60:82:c6:a6:21:de:00:00:00:00
Aug  5 10:55:42 vpn01 charon: 14[IKE] received FRAGMENTATION vendor ID
Aug  5 10:55:42 vpn01 charon: 14[IKE] received FRAGMENTATION vendor ID
Aug  5 10:55:42 vpn01 charon: 14[CFG] selected proposal: IKE:AES_CBC_256/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_3072
Aug  5 10:55:42 vpn01 charon: 14[ENC] generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
Aug  5 10:55:42 vpn01 charon: 14[NET] sending packet: from vpnserver_ip[500] to unrelatedip5[500] (524 bytes)
Aug  5 10:55:42 vpn01 charon: 15[NET] received packet: from unrelatedip5[500] to vpnserver_ip[500] (508 bytes)
Aug  5 10:55:42 vpn01 charon: 15[ENC] parsed ID_PROT response 0 [ KE No NAT-D NAT-D ]
Aug  5 10:55:42 vpn01 charon: 15[IKE] remote host is behind NAT
Aug  5 10:55:42 vpn01 charon: 15[ENC] generating ID_PROT request 0 [ ID HASH N(INITIAL_CONTACT) ]
Aug  5 10:55:42 vpn01 charon: 15[NET] sending packet: from vpnserver_ip[4500] to unrelatedip5[4500] (108 bytes)
Aug  5 10:55:42 vpn01 charon: 05[NET] received packet: from unrelatedip5[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:55:42 vpn01 charon: 05[ENC] parsed ID_PROT response 0 [ ID HASH ]
Aug  5 10:55:42 vpn01 charon: 05[IKE] IKE_SA stelle-base[155162] established between vpnserver_ip[vpnserver_ip]...unrelatedip5[Stelle]
Aug  5 10:55:42 vpn01 charon: 05[IKE] scheduling reauthentication in 9925s
Aug  5 10:55:42 vpn01 charon: 05[IKE] maximum IKE_SA lifetime 10465s
Aug  5 10:55:42 vpn01 charon: 05[ENC] generating QUICK_MODE request 191803783 [ HASH SA No KE ID ID ]
Aug  5 10:55:42 vpn01 charon: 05[NET] sending packet: from vpnserver_ip[4500] to unrelatedip5[4500] (588 bytes)
Aug  5 10:55:46 vpn01 charon: 06[IKE] sending retransmit 1 of request message ID 191803783, seq 4
Aug  5 10:55:46 vpn01 charon: 06[NET] sending packet: from vpnserver_ip[4500] to unrelatedip5[4500] (588 bytes)
Aug  5 10:55:47 vpn01 charon: 09[IKE] sending retransmit 3 of request message ID 2143319012, seq 12
Aug  5 10:55:47 vpn01 charon: 09[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (588 bytes)
Aug  5 10:55:53 vpn01 charon: 08[IKE] sending retransmit 2 of request message ID 191803783, seq 4
Aug  5 10:55:53 vpn01 charon: 08[NET] sending packet: from vpnserver_ip[4500] to unrelatedip5[4500] (588 bytes)
Aug  5 10:55:55 vpn01 charon: 16[IKE] sending retransmit 4 of request message ID 3737876608, seq 6
Aug  5 10:55:55 vpn01 charon: 16[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (588 bytes)
Aug  5 10:55:58 vpn01 charon: 14[IKE] sending keep alive to unrelatedip2[4500]
Aug  5 10:56:06 vpn01 charon: 14[IKE] sending retransmit 3 of request message ID 191803783, seq 4
Aug  5 10:56:06 vpn01 charon: 14[NET] sending packet: from vpnserver_ip[4500] to unrelatedip5[4500] (588 bytes)
Aug  5 10:56:08 vpn01 charon: 10[KNL] creating delete job for CHILD_SA ESP/0xc2d32a64/vpnserver_ip
Aug  5 10:56:08 vpn01 charon: 10[JOB] CHILD_SA ESP/0xc2d32a64/vpnserver_ip not found for delete
Aug  5 10:56:08 vpn01 charon: 06[IKE] giving up after 5 retransmits
Aug  5 10:56:08 vpn01 charon: 06[IKE] restarting CHILD_SA sdp-lan2
Aug  5 10:56:08 vpn01 charon: 06[IKE] initiating Main Mode IKE_SA sdp-base[155163] to unrelatedip4
Aug  5 10:56:08 vpn01 charon: 06[ENC] generating ID_PROT request 0 [ SA V V V V V ]
Aug  5 10:56:08 vpn01 charon: 06[NET] sending packet: from vpnserver_ip[500] to unrelatedip4[500] (240 bytes)
Aug  5 10:56:08 vpn01 charon: 06[IKE] restarting CHILD_SA sdp-lan1
Aug  5 10:56:08 vpn01 charon: 09[NET] received packet: from unrelatedip4[500] to vpnserver_ip[500] (188 bytes)
Aug  5 10:56:08 vpn01 charon: 09[ENC] parsed ID_PROT response 0 [ SA V V V V V ]
Aug  5 10:56:08 vpn01 charon: 09[IKE] received NAT-T (RFC 3947) vendor ID
Aug  5 10:56:08 vpn01 charon: 09[IKE] received DPD vendor ID
Aug  5 10:56:08 vpn01 charon: 09[ENC] received unknown vendor ID: 82:99:03:17:57:a3:60:82:c6:a6:21:de:00:00:00:00
Aug  5 10:56:08 vpn01 charon: 09[IKE] received FRAGMENTATION vendor ID
Aug  5 10:56:08 vpn01 charon: 09[IKE] received FRAGMENTATION vendor ID
Aug  5 10:56:08 vpn01 charon: 09[CFG] selected proposal: IKE:AES_CBC_256/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_3072
Aug  5 10:56:08 vpn01 charon: 09[ENC] generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
Aug  5 10:56:08 vpn01 charon: 09[NET] sending packet: from vpnserver_ip[500] to unrelatedip4[500] (524 bytes)
Aug  5 10:56:08 vpn01 charon: 12[NET] received packet: from unrelatedip4[500] to vpnserver_ip[500] (508 bytes)
Aug  5 10:56:08 vpn01 charon: 12[ENC] parsed ID_PROT response 0 [ KE No NAT-D NAT-D ]
Aug  5 10:56:08 vpn01 charon: 12[IKE] remote host is behind NAT
Aug  5 10:56:08 vpn01 charon: 12[ENC] generating ID_PROT request 0 [ ID HASH N(INITIAL_CONTACT) ]
Aug  5 10:56:08 vpn01 charon: 12[NET] sending packet: from vpnserver_ip[4500] to unrelatedip4[4500] (108 bytes)
Aug  5 10:56:08 vpn01 charon: 15[NET] received packet: from unrelatedip4[4500] to vpnserver_ip[4500] (76 bytes)
Aug  5 10:56:08 vpn01 charon: 15[ENC] parsed ID_PROT response 0 [ ID HASH ]
Aug  5 10:56:08 vpn01 charon: 15[IKE] IKE_SA sdp-base[155163] established between vpnserver_ip[vpnserver_ip]...unrelatedip4[Sdp]
Aug  5 10:56:08 vpn01 charon: 15[IKE] scheduling reauthentication in 9795s
Aug  5 10:56:08 vpn01 charon: 15[IKE] maximum IKE_SA lifetime 10335s
Aug  5 10:56:08 vpn01 charon: 15[ENC] generating QUICK_MODE request 475331730 [ HASH SA No KE ID ID ]
Aug  5 10:56:08 vpn01 charon: 15[NET] sending packet: from vpnserver_ip[4500] to unrelatedip4[4500] (588 bytes)
Aug  5 10:56:08 vpn01 charon: 13[NET] received packet: from unrelatedip4[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:56:08 vpn01 charon: 13[ENC] parsed INFORMATIONAL_V1 request 154570283 [ HASH D ]
Aug  5 10:56:08 vpn01 charon: 13[IKE] received DELETE for ESP CHILD_SA with SPI 56905717
Aug  5 10:56:08 vpn01 charon: 13[IKE] CHILD_SA not found, ignored
Aug  5 10:56:08 vpn01 charon: 05[NET] received packet: from unrelatedip4[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:56:08 vpn01 charon: 05[ENC] parsed INFORMATIONAL_V1 request 2164499934 [ HASH D ]
Aug  5 10:56:08 vpn01 charon: 05[IKE] received DELETE for ESP CHILD_SA with SPI 56905716
Aug  5 10:56:08 vpn01 charon: 05[IKE] CHILD_SA not found, ignored
Aug  5 10:56:08 vpn01 charon: 08[IKE] sending DPD request
Aug  5 10:56:08 vpn01 charon: 08[ENC] generating INFORMATIONAL request 196 [ ]
Aug  5 10:56:08 vpn01 charon: 08[NET] sending packet: from vpnserver_ip[4500] to unrelatedip3[4500] (57 bytes)
Aug  5 10:56:08 vpn01 charon: 10[NET] received packet: from unrelatedip3[4500] to vpnserver_ip[4500] (57 bytes)
Aug  5 10:56:08 vpn01 charon: 10[ENC] parsed INFORMATIONAL response 196 [ ]
Aug  5 10:56:08 vpn01 charon: 06[NET] received packet: from unrelatedip4[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:56:08 vpn01 charon: 06[ENC] parsed QUICK_MODE response 475331730 [ HASH SA No KE ID ID N((24576)) ]
Aug  5 10:56:08 vpn01 charon: 06[CFG] selected proposal: ESP:AES_CBC_256/HMAC_SHA2_256_128/MODP_3072/NO_EXT_SEQ
Aug  5 10:56:08 vpn01 charon: 06[IKE] CHILD_SA sdp-lan2{357044} established with SPIs c1dff23b_i 56905718_o and TS 172.32.1.0/24 === 192.168.11.0/24
Aug  5 10:56:08 vpn01 charon: 06[ENC] generating QUICK_MODE request 475331730 [ HASH ]
Aug  5 10:56:08 vpn01 charon: 06[NET] sending packet: from vpnserver_ip[4500] to unrelatedip4[4500] (76 bytes)
Aug  5 10:56:08 vpn01 charon: 06[ENC] generating QUICK_MODE request 703246639 [ HASH SA No KE ID ID ]
Aug  5 10:56:08 vpn01 charon: 06[NET] sending packet: from vpnserver_ip[4500] to unrelatedip4[4500] (588 bytes)
Aug  5 10:56:08 vpn01 charon: 07[NET] received packet: from unrelatedip4[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:56:08 vpn01 charon: 07[ENC] parsed QUICK_MODE response 703246639 [ HASH SA No KE ID ID N((24576)) ]
Aug  5 10:56:08 vpn01 charon: 07[CFG] selected proposal: ESP:AES_CBC_256/HMAC_SHA2_256_128/MODP_3072/NO_EXT_SEQ
Aug  5 10:56:08 vpn01 charon: 07[IKE] CHILD_SA sdp-lan1{357045} established with SPIs cdf2101a_i 56905719_o and TS 172.32.1.0/24 === 192.168.10.0/24
Aug  5 10:56:08 vpn01 charon: 07[ENC] generating QUICK_MODE request 703246639 [ HASH ]
Aug  5 10:56:08 vpn01 charon: 07[NET] sending packet: from vpnserver_ip[4500] to unrelatedip4[4500] (76 bytes)
Aug  5 10:56:08 vpn01 charon: 07[ENC] generating QUICK_MODE request 3000267538 [ HASH SA No KE ID ID ]
Aug  5 10:56:08 vpn01 charon: 07[NET] sending packet: from vpnserver_ip[4500] to unrelatedip4[4500] (588 bytes)
Aug  5 10:56:11 vpn01 charon: 08[IKE] sending retransmit 4 of request message ID 2143319012, seq 12
Aug  5 10:56:11 vpn01 charon: 08[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (588 bytes)
Aug  5 10:56:12 vpn01 charon: 08[IKE] sending retransmit 1 of request message ID 3000267538, seq 8
Aug  5 10:56:12 vpn01 charon: 08[NET] sending packet: from vpnserver_ip[4500] to unrelatedip4[4500] (588 bytes)
Aug  5 10:56:13 vpn01 charon: 07[KNL] creating delete job for CHILD_SA ESP/0xc91054e5/vpnserver_ip
Aug  5 10:56:13 vpn01 charon: 10[JOB] CHILD_SA ESP/0xc91054e5/vpnserver_ip not found for delete
Aug  5 10:56:13 vpn01 charon: 11[IKE] giving up after 5 retransmits
Aug  5 10:56:13 vpn01 charon: 11[IKE] restarting CHILD_SA exme-lan
Aug  5 10:56:13 vpn01 charon: 11[IKE] initiating Main Mode IKE_SA exme-base[155164] to FORTIGATE_IP
Aug  5 10:56:13 vpn01 charon: 11[ENC] generating ID_PROT request 0 [ SA V V V V V ]
Aug  5 10:56:13 vpn01 charon: 11[NET] sending packet: from vpnserver_ip[500] to FORTIGATE_IP[500] (240 bytes)
Aug  5 10:56:13 vpn01 charon: 11[IKE] restarting CHILD_SA exme-wifi
Aug  5 10:56:13 vpn01 charon: 09[NET] received packet: from FORTIGATE_IP[500] to vpnserver_ip[500] (188 bytes)
Aug  5 10:56:13 vpn01 charon: 09[ENC] parsed ID_PROT response 0 [ SA V V V V V ]
Aug  5 10:56:13 vpn01 charon: 09[IKE] received NAT-T (RFC 3947) vendor ID
Aug  5 10:56:13 vpn01 charon: 09[IKE] received DPD vendor ID
Aug  5 10:56:13 vpn01 charon: 09[ENC] received unknown vendor ID: 82:99:03:17:57:a3:60:82:c6:a6:21:de:00:00:00:00
Aug  5 10:56:13 vpn01 charon: 09[IKE] received FRAGMENTATION vendor ID
Aug  5 10:56:13 vpn01 charon: 09[IKE] received FRAGMENTATION vendor ID
Aug  5 10:56:13 vpn01 charon: 09[CFG] selected proposal: IKE:AES_CBC_256/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_3072
Aug  5 10:56:13 vpn01 charon: 09[ENC] generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
Aug  5 10:56:13 vpn01 charon: 09[NET] sending packet: from vpnserver_ip[500] to FORTIGATE_IP[500] (524 bytes)
Aug  5 10:56:13 vpn01 charon: 12[NET] received packet: from FORTIGATE_IP[500] to vpnserver_ip[500] (508 bytes)
Aug  5 10:56:13 vpn01 charon: 12[ENC] parsed ID_PROT response 0 [ KE No NAT-D NAT-D ]
Aug  5 10:56:13 vpn01 charon: 12[IKE] remote host is behind NAT
Aug  5 10:56:13 vpn01 charon: 12[ENC] generating ID_PROT request 0 [ ID HASH N(INITIAL_CONTACT) ]
Aug  5 10:56:13 vpn01 charon: 12[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (108 bytes)
Aug  5 10:56:13 vpn01 charon: 06[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:56:13 vpn01 charon: 06[ENC] parsed ID_PROT response 0 [ ID HASH ]
Aug  5 10:56:13 vpn01 charon: 06[IKE] IKE_SA exme-base[155164] established between vpnserver_ip[vpnserver_ip]...FORTIGATE_IP[Exme]
Aug  5 10:56:13 vpn01 charon: 06[IKE] scheduling reauthentication in 10045s
Aug  5 10:56:13 vpn01 charon: 06[IKE] maximum IKE_SA lifetime 10585s
Aug  5 10:56:13 vpn01 charon: 06[ENC] generating QUICK_MODE request 4147030735 [ HASH SA No KE ID ID ]
Aug  5 10:56:13 vpn01 charon: 06[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (588 bytes)
Aug  5 10:56:13 vpn01 charon: 13[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:56:13 vpn01 charon: 13[ENC] parsed INFORMATIONAL_V1 request 4104993954 [ HASH D ]
Aug  5 10:56:13 vpn01 charon: 13[IKE] received DELETE for ESP CHILD_SA with SPI 168c5940
Aug  5 10:56:13 vpn01 charon: 13[IKE] CHILD_SA not found, ignored
Aug  5 10:56:13 vpn01 charon: 05[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:56:13 vpn01 charon: 05[ENC] parsed INFORMATIONAL_V1 request 4169900904 [ HASH D ]
Aug  5 10:56:13 vpn01 charon: 05[IKE] received DELETE for ESP CHILD_SA with SPI 168c593e
Aug  5 10:56:13 vpn01 charon: 05[IKE] CHILD_SA not found, ignored
Aug  5 10:56:13 vpn01 charon: 08[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:56:13 vpn01 charon: 08[ENC] parsed INFORMATIONAL_V1 request 1959117379 [ HASH D ]
Aug  5 10:56:13 vpn01 charon: 08[IKE] received DELETE for ESP CHILD_SA with SPI 168c5941
Aug  5 10:56:13 vpn01 charon: 08[IKE] CHILD_SA not found, ignored
Aug  5 10:56:13 vpn01 charon: 15[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:56:13 vpn01 charon: 15[ENC] parsed INFORMATIONAL_V1 request 3774462377 [ HASH D ]
Aug  5 10:56:13 vpn01 charon: 15[IKE] received DELETE for ESP CHILD_SA with SPI 168c593f
Aug  5 10:56:13 vpn01 charon: 15[IKE] CHILD_SA not found, ignored
Aug  5 10:56:13 vpn01 charon: 07[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:56:13 vpn01 charon: 07[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:56:13 vpn01 charon: 07[ENC] could not decrypt payloads
Aug  5 10:56:13 vpn01 charon: 07[IKE] message parsing failed
Aug  5 10:56:13 vpn01 charon: 07[ENC] generating INFORMATIONAL_V1 request 966023252 [ HASH N(PLD_MAL) ]
Aug  5 10:56:13 vpn01 charon: 07[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:56:13 vpn01 charon: 07[IKE] QUICK_MODE response with message ID 4147030735 processing failed
Aug  5 10:56:15 vpn01 charon: 10[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:56:15 vpn01 charon: 10[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:56:15 vpn01 charon: 10[ENC] could not decrypt payloads
Aug  5 10:56:15 vpn01 charon: 10[IKE] message parsing failed
Aug  5 10:56:15 vpn01 charon: 10[ENC] generating INFORMATIONAL_V1 request 2627946961 [ HASH N(PLD_MAL) ]
Aug  5 10:56:15 vpn01 charon: 10[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:56:15 vpn01 charon: 10[IKE] QUICK_MODE response with message ID 4147030735 processing failed
Aug  5 10:56:17 vpn01 charon: 14[IKE] sending retransmit 1 of request message ID 4147030735, seq 4
Aug  5 10:56:17 vpn01 charon: 14[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (588 bytes)
Aug  5 10:56:17 vpn01 charon: 09[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:56:17 vpn01 charon: 09[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:56:17 vpn01 charon: 09[ENC] could not decrypt payloads
Aug  5 10:56:17 vpn01 charon: 09[IKE] message parsing failed
Aug  5 10:56:17 vpn01 charon: 09[ENC] generating INFORMATIONAL_V1 request 1457733642 [ HASH N(PLD_MAL) ]
Aug  5 10:56:17 vpn01 charon: 09[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:56:17 vpn01 charon: 09[IKE] QUICK_MODE response with message ID 4147030735 processing failed
Aug  5 10:56:18 vpn01 charon: 15[IKE] sending keep alive to unrelatedip2[4500]
Aug  5 10:56:19 vpn01 charon: 09[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:56:19 vpn01 charon: 09[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:56:19 vpn01 charon: 09[ENC] could not decrypt payloads
Aug  5 10:56:19 vpn01 charon: 09[IKE] message parsing failed
Aug  5 10:56:19 vpn01 charon: 09[ENC] generating INFORMATIONAL_V1 request 2944572246 [ HASH N(PLD_MAL) ]
Aug  5 10:56:19 vpn01 charon: 09[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:56:19 vpn01 charon: 09[IKE] QUICK_MODE response with message ID 4147030735 processing failed
Aug  5 10:56:20 vpn01 charon: 12[IKE] sending retransmit 2 of request message ID 3000267538, seq 8
Aug  5 10:56:20 vpn01 charon: 12[NET] sending packet: from vpnserver_ip[4500] to unrelatedip4[4500] (588 bytes)
Aug  5 10:56:25 vpn01 charon: 12[IKE] sending retransmit 2 of request message ID 4147030735, seq 4
Aug  5 10:56:25 vpn01 charon: 12[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (588 bytes)
Aug  5 10:56:25 vpn01 charon: 10[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:56:25 vpn01 charon: 10[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:56:25 vpn01 charon: 10[ENC] could not decrypt payloads
Aug  5 10:56:25 vpn01 charon: 10[IKE] message parsing failed
Aug  5 10:56:25 vpn01 charon: 10[ENC] generating INFORMATIONAL_V1 request 3337969381 [ HASH N(PLD_MAL) ]
Aug  5 10:56:25 vpn01 charon: 10[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:56:25 vpn01 charon: 10[IKE] QUICK_MODE response with message ID 4147030735 processing failed
Aug  5 10:56:27 vpn01 charon: 07[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:56:27 vpn01 charon: 07[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:56:27 vpn01 charon: 07[ENC] could not decrypt payloads
Aug  5 10:56:27 vpn01 charon: 07[IKE] message parsing failed
Aug  5 10:56:27 vpn01 charon: 07[ENC] generating INFORMATIONAL_V1 request 2694053469 [ HASH N(PLD_MAL) ]
Aug  5 10:56:27 vpn01 charon: 07[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:56:27 vpn01 charon: 07[IKE] QUICK_MODE response with message ID 4147030735 processing failed
Aug  5 10:56:30 vpn01 charon: 07[IKE] sending retransmit 4 of request message ID 191803783, seq 4
Aug  5 10:56:30 vpn01 charon: 07[NET] sending packet: from vpnserver_ip[4500] to unrelatedip5[4500] (588 bytes)
Aug  5 10:56:33 vpn01 charon: 15[IKE] sending retransmit 3 of request message ID 3000267538, seq 8
Aug  5 10:56:33 vpn01 charon: 15[NET] sending packet: from vpnserver_ip[4500] to unrelatedip4[4500] (588 bytes)
Aug  5 10:56:33 vpn01 charon: 07[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (108 bytes)
Aug  5 10:56:33 vpn01 charon: 07[ENC] parsed INFORMATIONAL_V1 request 1813708191 [ HASH N(DPD) ]
Aug  5 10:56:34 vpn01 charon: 11[KNL] creating delete job for CHILD_SA ESP/0xcc409f0c/vpnserver_ip
Aug  5 10:56:34 vpn01 charon: 11[JOB] CHILD_SA ESP/0xcc409f0c/vpnserver_ip not found for delete
Aug  5 10:56:34 vpn01 charon: 14[IKE] giving up after 5 retransmits
Aug  5 10:56:34 vpn01 charon: 14[IKE] restarting CHILD_SA cometa-lan1
Aug  5 10:56:34 vpn01 charon: 14[IKE] initiating Main Mode IKE_SA cometa-base[155165] to unrelatedip2
Aug  5 10:56:34 vpn01 charon: 14[ENC] generating ID_PROT request 0 [ SA V V V V V ]
Aug  5 10:56:34 vpn01 charon: 14[NET] sending packet: from vpnserver_ip[500] to unrelatedip2[500] (240 bytes)
Aug  5 10:56:34 vpn01 charon: 12[NET] received packet: from unrelatedip2[500] to vpnserver_ip[500] (188 bytes)
Aug  5 10:56:34 vpn01 charon: 12[ENC] parsed ID_PROT response 0 [ SA V V V V V ]
Aug  5 10:56:34 vpn01 charon: 12[IKE] received NAT-T (RFC 3947) vendor ID
Aug  5 10:56:34 vpn01 charon: 12[IKE] received DPD vendor ID
Aug  5 10:56:34 vpn01 charon: 12[ENC] received unknown vendor ID: 82:99:03:17:57:a3:60:82:c6:a6:21:de:00:00:00:00
Aug  5 10:56:34 vpn01 charon: 12[IKE] received FRAGMENTATION vendor ID
Aug  5 10:56:34 vpn01 charon: 12[IKE] received FRAGMENTATION vendor ID
Aug  5 10:56:34 vpn01 charon: 12[CFG] selected proposal: IKE:AES_CBC_256/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_3072
Aug  5 10:56:34 vpn01 charon: 12[ENC] generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
Aug  5 10:56:34 vpn01 charon: 12[NET] sending packet: from vpnserver_ip[500] to unrelatedip2[500] (524 bytes)
Aug  5 10:56:34 vpn01 charon: 10[NET] received packet: from unrelatedip2[500] to vpnserver_ip[500] (508 bytes)
Aug  5 10:56:34 vpn01 charon: 10[ENC] parsed ID_PROT response 0 [ KE No NAT-D NAT-D ]
Aug  5 10:56:34 vpn01 charon: 10[IKE] local host is behind NAT, sending keep alives
Aug  5 10:56:34 vpn01 charon: 10[IKE] remote host is behind NAT
Aug  5 10:56:34 vpn01 charon: 10[ENC] generating ID_PROT request 0 [ ID HASH N(INITIAL_CONTACT) ]
Aug  5 10:56:34 vpn01 charon: 10[NET] sending packet: from vpnserver_ip[4500] to unrelatedip2[4500] (108 bytes)
Aug  5 10:56:34 vpn01 charon: 05[NET] received packet: from unrelatedip2[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:56:34 vpn01 charon: 05[ENC] parsed ID_PROT response 0 [ ID HASH ]
Aug  5 10:56:34 vpn01 charon: 05[IKE] IKE_SA cometa-base[155165] established between vpnserver_ip[vpnserver_ip]...unrelatedip2[Cometa]
Aug  5 10:56:34 vpn01 charon: 05[IKE] scheduling reauthentication in 9855s
Aug  5 10:56:34 vpn01 charon: 05[IKE] maximum IKE_SA lifetime 10395s
Aug  5 10:56:34 vpn01 charon: 05[ENC] generating QUICK_MODE request 27109891 [ HASH SA No KE ID ID ]
Aug  5 10:56:34 vpn01 charon: 05[NET] sending packet: from vpnserver_ip[4500] to unrelatedip2[4500] (588 bytes)
Aug  5 10:56:34 vpn01 charon: 08[NET] received packet: from unrelatedip2[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:56:34 vpn01 charon: 08[ENC] parsed INFORMATIONAL_V1 request 3299226513 [ HASH D ]
Aug  5 10:56:34 vpn01 charon: 08[IKE] received DELETE for ESP CHILD_SA with SPI 4048197a
Aug  5 10:56:34 vpn01 charon: 08[IKE] CHILD_SA not found, ignored
Aug  5 10:56:34 vpn01 charon: 06[NET] received packet: from unrelatedip2[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:56:34 vpn01 charon: 06[ENC] parsed QUICK_MODE response 27109891 [ HASH SA No KE ID ID N((24576)) ]
Aug  5 10:56:34 vpn01 charon: 06[CFG] selected proposal: ESP:AES_CBC_256/HMAC_SHA2_256_128/MODP_3072/NO_EXT_SEQ
Aug  5 10:56:34 vpn01 charon: 06[IKE] CHILD_SA cometa-lan1{357048} established with SPIs c7bac38c_i 4048197b_o and TS 172.32.1.0/24 === 192.168.3.0/24
Aug  5 10:56:34 vpn01 charon: 06[ENC] generating QUICK_MODE request 27109891 [ HASH ]
Aug  5 10:56:34 vpn01 charon: 06[NET] sending packet: from vpnserver_ip[4500] to unrelatedip2[4500] (76 bytes)
Aug  5 10:56:34 vpn01 charon: 06[ENC] generating QUICK_MODE request 520047576 [ HASH SA No KE ID ID ]
Aug  5 10:56:34 vpn01 charon: 06[NET] sending packet: from vpnserver_ip[4500] to unrelatedip2[4500] (588 bytes)
Aug  5 10:56:37 vpn01 charon: 08[IKE] sending retransmit 5 of request message ID 3737876608, seq 6
Aug  5 10:56:37 vpn01 charon: 08[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (588 bytes)
Aug  5 10:56:38 vpn01 charon: 09[IKE] sending retransmit 3 of request message ID 4147030735, seq 4
Aug  5 10:56:38 vpn01 charon: 09[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (588 bytes)
Aug  5 10:56:38 vpn01 charon: 12[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:56:38 vpn01 charon: 12[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:56:38 vpn01 charon: 12[ENC] could not decrypt payloads
Aug  5 10:56:38 vpn01 charon: 12[IKE] message parsing failed
Aug  5 10:56:38 vpn01 charon: 12[ENC] generating INFORMATIONAL_V1 request 1525255498 [ HASH N(PLD_MAL) ]
Aug  5 10:56:38 vpn01 charon: 12[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:56:38 vpn01 charon: 12[IKE] QUICK_MODE response with message ID 4147030735 processing failed
Aug  5 10:56:38 vpn01 charon: 05[IKE] sending retransmit 1 of request message ID 520047576, seq 6
Aug  5 10:56:38 vpn01 charon: 05[NET] sending packet: from vpnserver_ip[4500] to unrelatedip2[4500] (588 bytes)
Aug  5 10:56:38 vpn01 charon: 06[IKE] sending DPD request
Aug  5 10:56:38 vpn01 charon: 06[ENC] generating INFORMATIONAL request 197 [ ]
Aug  5 10:56:38 vpn01 charon: 06[NET] sending packet: from vpnserver_ip[4500] to unrelatedip3[4500] (57 bytes)
Aug  5 10:56:38 vpn01 charon: 16[NET] received packet: from unrelatedip3[4500] to vpnserver_ip[4500] (57 bytes)
Aug  5 10:56:38 vpn01 charon: 16[ENC] parsed INFORMATIONAL response 197 [ ]
Aug  5 10:56:43 vpn01 charon: 08[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:56:43 vpn01 charon: 08[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:56:43 vpn01 charon: 08[ENC] could not decrypt payloads
Aug  5 10:56:43 vpn01 charon: 08[IKE] message parsing failed
Aug  5 10:56:43 vpn01 charon: 08[ENC] generating INFORMATIONAL_V1 request 3899600958 [ HASH N(PLD_MAL) ]
Aug  5 10:56:43 vpn01 charon: 08[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:56:43 vpn01 charon: 08[IKE] QUICK_MODE response with message ID 4147030735 processing failed
Aug  5 10:56:45 vpn01 charon: 16[IKE] sending retransmit 2 of request message ID 520047576, seq 6
Aug  5 10:56:45 vpn01 charon: 16[NET] sending packet: from vpnserver_ip[4500] to unrelatedip2[4500] (588 bytes)
Aug  5 10:56:53 vpn01 charon: 12[IKE] sending retransmit 5 of request message ID 2143319012, seq 12
Aug  5 10:56:53 vpn01 charon: 12[NET] sending packet: from vpnserver_ip[4500] to unrelatedip6[4500] (588 bytes)
Aug  5 10:56:53 vpn01 charon: 07[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (108 bytes)
Aug  5 10:56:53 vpn01 charon: 07[ENC] parsed INFORMATIONAL_V1 request 3449090618 [ HASH N(DPD) ]
Aug  5 10:56:56 vpn01 charon: 09[IKE] sending retransmit 4 of request message ID 3000267538, seq 8
Aug  5 10:56:56 vpn01 charon: 09[NET] sending packet: from vpnserver_ip[4500] to unrelatedip4[4500] (588 bytes)
Aug  5 10:56:58 vpn01 charon: 11[IKE] sending retransmit 3 of request message ID 520047576, seq 6
Aug  5 10:56:58 vpn01 charon: 11[NET] sending packet: from vpnserver_ip[4500] to unrelatedip2[4500] (588 bytes)
Aug  5 10:57:01 vpn01 charon: 11[IKE] sending retransmit 4 of request message ID 4147030735, seq 4
Aug  5 10:57:01 vpn01 charon: 11[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (588 bytes)
Aug  5 10:57:01 vpn01 charon: 06[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:57:01 vpn01 charon: 06[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:57:01 vpn01 charon: 06[ENC] could not decrypt payloads
Aug  5 10:57:01 vpn01 charon: 06[IKE] message parsing failed
Aug  5 10:57:01 vpn01 charon: 06[ENC] generating INFORMATIONAL_V1 request 2625402647 [ HASH N(PLD_MAL) ]
Aug  5 10:57:01 vpn01 charon: 06[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:57:01 vpn01 charon: 06[IKE] QUICK_MODE response with message ID 4147030735 processing failed
Aug  5 10:57:12 vpn01 charon: 07[IKE] sending retransmit 5 of request message ID 191803783, seq 4
Aug  5 10:57:12 vpn01 charon: 07[NET] sending packet: from vpnserver_ip[4500] to unrelatedip5[4500] (588 bytes)
Aug  5 10:57:13 vpn01 charon: 07[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (108 bytes)
Aug  5 10:57:13 vpn01 charon: 07[ENC] parsed INFORMATIONAL_V1 request 332775496 [ HASH N(DPD) ]
Aug  5 10:57:16 vpn01 charon: 13[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (572 bytes)
Aug  5 10:57:16 vpn01 charon: 13[ENC] parsed QUICK_MODE request 3303243498 [ HASH SA No KE ID ID ]
Aug  5 10:57:16 vpn01 charon: 13[CFG] selected proposal: ESP:AES_CBC_256/HMAC_SHA2_256_128/MODP_3072/NO_EXT_SEQ
Aug  5 10:57:16 vpn01 charon: 13[IKE] received 3600s lifetime, configured 86400s
Aug  5 10:57:16 vpn01 charon: 13[ENC] generating QUICK_MODE response 3303243498 [ HASH SA No KE ID ID ]
Aug  5 10:57:16 vpn01 charon: 13[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (588 bytes)
Aug  5 10:57:17 vpn01 charon: 15[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (76 bytes)
Aug  5 10:57:17 vpn01 charon: 15[ENC] parsed QUICK_MODE request 3303243498 [ HASH ]
Aug  5 10:57:17 vpn01 charon: 15[IKE] CHILD_SA exme-lan{357050} established with SPIs c25c3dab_i 168c5943_o and TS 172.32.1.0/24 === 192.168.2.0/24
Aug  5 10:57:18 vpn01 charon: 06[IKE] sending keep alive to unrelatedip2[4500]
Aug  5 10:57:21 vpn01 charon: 05[IKE] sending retransmit 4 of request message ID 520047576, seq 6
Aug  5 10:57:21 vpn01 charon: 05[NET] sending packet: from vpnserver_ip[4500] to unrelatedip2[4500] (588 bytes)
Aug  5 10:57:32 vpn01 charon: 11[IKE] sending DPD request
Aug  5 10:57:32 vpn01 charon: 11[ENC] generating INFORMATIONAL request 198 [ ]
Aug  5 10:57:32 vpn01 charon: 11[NET] sending packet: from vpnserver_ip[4500] to unrelatedip3[4500] (57 bytes)
Aug  5 10:57:32 vpn01 charon: 06[NET] received packet: from unrelatedip3[4500] to vpnserver_ip[4500] (57 bytes)
Aug  5 10:57:32 vpn01 charon: 06[ENC] parsed INFORMATIONAL response 198 [ ]
Aug  5 10:57:38 vpn01 charon: 05[IKE] sending retransmit 5 of request message ID 3000267538, seq 8
Aug  5 10:57:38 vpn01 charon: 05[NET] sending packet: from vpnserver_ip[4500] to unrelatedip4[4500] (588 bytes)
Aug  5 10:57:41 vpn01 charon: 05[IKE] sending keep alive to unrelatedip2[4500]
Aug  5 10:57:43 vpn01 charon: 15[IKE] sending retransmit 5 of request message ID 4147030735, seq 4
Aug  5 10:57:43 vpn01 charon: 15[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (588 bytes)
Aug  5 10:57:43 vpn01 charon: 05[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:57:43 vpn01 charon: 05[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:57:43 vpn01 charon: 05[ENC] could not decrypt payloads
Aug  5 10:57:43 vpn01 charon: 05[IKE] message parsing failed
Aug  5 10:57:43 vpn01 charon: 05[ENC] generating INFORMATIONAL_V1 request 891829967 [ HASH N(PLD_MAL) ]
Aug  5 10:57:43 vpn01 charon: 05[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:57:43 vpn01 charon: 05[IKE] QUICK_MODE response with message ID 4147030735 processing failed
Aug  5 10:57:45 vpn01 charon: 14[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:57:45 vpn01 charon: 14[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:57:45 vpn01 charon: 14[ENC] could not decrypt payloads
Aug  5 10:57:45 vpn01 charon: 14[IKE] message parsing failed
Aug  5 10:57:45 vpn01 charon: 14[ENC] generating INFORMATIONAL_V1 request 1191698202 [ HASH N(PLD_MAL) ]
Aug  5 10:57:45 vpn01 charon: 14[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:57:45 vpn01 charon: 14[IKE] QUICK_MODE response with message ID 4147030735 processing failed
Aug  5 10:57:49 vpn01 charon: 11[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:57:49 vpn01 charon: 11[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:57:49 vpn01 charon: 11[ENC] could not decrypt payloads
Aug  5 10:57:49 vpn01 charon: 11[IKE] message parsing failed
Aug  5 10:57:49 vpn01 charon: 11[ENC] generating INFORMATIONAL_V1 request 3241750479 [ HASH N(PLD_MAL) ]
Aug  5 10:57:49 vpn01 charon: 11[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:57:49 vpn01 charon: 11[IKE] QUICK_MODE response with message ID 4147030735 processing failed
Aug  5 10:57:52 vpn01 charon: 08[KNL] creating delete job for CHILD_SA ESP/0xc3835bbd/vpnserver_ip
Aug  5 10:57:52 vpn01 charon: 08[JOB] CHILD_SA ESP/0xc3835bbd/vpnserver_ip not found for delete
Aug  5 10:57:52 vpn01 charon: 05[IKE] giving up after 5 retransmits
Aug  5 10:57:52 vpn01 charon: 05[IKE] restarting CHILD_SA coco-lan2
Aug  5 10:57:52 vpn01 charon: 05[IKE] initiating Main Mode IKE_SA coco-base[155166] to unrelatedip1
Aug  5 10:57:52 vpn01 charon: 05[ENC] generating ID_PROT request 0 [ SA V V V V V ]
Aug  5 10:57:52 vpn01 charon: 05[NET] sending packet: from vpnserver_ip[500] to unrelatedip1[500] (240 bytes)
Aug  5 10:57:52 vpn01 charon: 11[NET] received packet: from unrelatedip1[500] to vpnserver_ip[500] (188 bytes)
Aug  5 10:57:52 vpn01 charon: 11[ENC] parsed ID_PROT response 0 [ SA V V V V V ]
Aug  5 10:57:52 vpn01 charon: 11[IKE] received NAT-T (RFC 3947) vendor ID
Aug  5 10:57:52 vpn01 charon: 11[IKE] received DPD vendor ID
Aug  5 10:57:52 vpn01 charon: 11[ENC] received unknown vendor ID: 82:99:03:17:57:a3:60:82:c6:a6:21:de:00:00:00:00
Aug  5 10:57:52 vpn01 charon: 11[IKE] received FRAGMENTATION vendor ID
Aug  5 10:57:52 vpn01 charon: 11[IKE] received FRAGMENTATION vendor ID
Aug  5 10:57:52 vpn01 charon: 11[CFG] selected proposal: IKE:AES_CBC_256/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_3072
Aug  5 10:57:52 vpn01 charon: 11[ENC] generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
Aug  5 10:57:52 vpn01 charon: 11[NET] sending packet: from vpnserver_ip[500] to unrelatedip1[500] (524 bytes)
Aug  5 10:57:52 vpn01 charon: 06[NET] received packet: from unrelatedip1[500] to vpnserver_ip[500] (508 bytes)
Aug  5 10:57:52 vpn01 charon: 06[ENC] parsed ID_PROT response 0 [ KE No NAT-D NAT-D ]
Aug  5 10:57:52 vpn01 charon: 06[IKE] remote host is behind NAT
Aug  5 10:57:52 vpn01 charon: 06[ENC] generating ID_PROT request 0 [ ID HASH N(INITIAL_CONTACT) ]
Aug  5 10:57:52 vpn01 charon: 06[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (108 bytes)
Aug  5 10:57:52 vpn01 charon: 16[NET] received packet: from unrelatedip1[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:57:52 vpn01 charon: 16[ENC] parsed ID_PROT response 0 [ ID HASH ]
Aug  5 10:57:52 vpn01 charon: 16[IKE] IKE_SA coco-base[155166] established between vpnserver_ip[vpnserver_ip]...unrelatedip1[Coco]
Aug  5 10:57:52 vpn01 charon: 16[IKE] scheduling reauthentication in 10042s
Aug  5 10:57:52 vpn01 charon: 16[IKE] maximum IKE_SA lifetime 10582s
Aug  5 10:57:52 vpn01 charon: 16[ENC] generating QUICK_MODE request 1653789334 [ HASH SA No KE ID ID ]
Aug  5 10:57:52 vpn01 charon: 16[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (588 bytes)
Aug  5 10:57:52 vpn01 charon: 14[NET] received packet: from unrelatedip1[4500] to vpnserver_ip[4500] (92 bytes)
Aug  5 10:57:52 vpn01 charon: 14[ENC] parsed INFORMATIONAL_V1 request 2669426766 [ HASH D ]
Aug  5 10:57:52 vpn01 charon: 14[IKE] received DELETE for ESP CHILD_SA with SPI b7bd509c
Aug  5 10:57:52 vpn01 charon: 14[IKE] CHILD_SA not found, ignored
Aug  5 10:57:52 vpn01 charon: 13[NET] received packet: from unrelatedip1[4500] to vpnserver_ip[4500] (572 bytes)
Aug  5 10:57:52 vpn01 charon: 13[ENC] parsed QUICK_MODE response 1653789334 [ HASH SA No KE ID ID ]
Aug  5 10:57:52 vpn01 charon: 13[CFG] selected proposal: ESP:AES_CBC_256/HMAC_SHA2_256_128/MODP_3072/NO_EXT_SEQ
Aug  5 10:57:52 vpn01 charon: 13[IKE] CHILD_SA coco-lan2{357051} established with SPIs c326417e_i b7bd509d_o and TS 172.32.1.0/24 === 192.168.14.0/25
Aug  5 10:57:52 vpn01 charon: 13[ENC] generating QUICK_MODE request 1653789334 [ HASH ]
Aug  5 10:57:52 vpn01 charon: 13[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (76 bytes)
Aug  5 10:57:52 vpn01 charon: 13[ENC] generating QUICK_MODE request 505925992 [ HASH SA No KE ID ID ]
Aug  5 10:57:52 vpn01 charon: 13[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (588 bytes)
Aug  5 10:57:56 vpn01 charon: 06[IKE] sending retransmit 1 of request message ID 505925992, seq 6
Aug  5 10:57:56 vpn01 charon: 06[NET] sending packet: from vpnserver_ip[4500] to unrelatedip1[4500] (588 bytes)
Aug  5 10:57:57 vpn01 charon: 09[NET] received packet: from FORTIGATE_IP[4500] to vpnserver_ip[4500] (604 bytes)
Aug  5 10:57:57 vpn01 charon: 09[ENC] invalid HASH_V1 payload length, decryption failed?
Aug  5 10:57:57 vpn01 charon: 09[ENC] could not decrypt payloads
Aug  5 10:57:57 vpn01 charon: 09[IKE] message parsing failed
Aug  5 10:57:57 vpn01 charon: 09[ENC] generating INFORMATIONAL_V1 request 818986360 [ HASH N(PLD_MAL) ]
Aug  5 10:57:57 vpn01 charon: 09[NET] sending packet: from vpnserver_ip[4500] to FORTIGATE_IP[4500] (92 bytes)
Aug  5 10:57:57 vpn01 charon: 09[IKE] QUICK_MODE response with message ID 4147030735 processing failed

-- 
Lorenzo Milesi - lorenzo.milesi at yetopen.com 
CTO @ YetOpen Srl

YetOpen - https://www.yetopen.com/

Via Salerno 18 - 23900 Lecco - ITALY -      | 4801 Glenwood Avenue - Suite 200 - Raleigh, NC 27612 - USA -
Tel +39 0341 220 205 - info.it at yetopen.com  | Phone +1 919-817-8106 - info.us at yetopen.com

Think green - Non stampare questa e-mail se non necessario / Don't print this email unless necessary

-------- D.Lgs. 196/2003 e GDPR 679/2016 --------
Tutte le informazioni contenute in questo messaggio sono riservate ed a uso esclusivo del destinatario.
Tutte le informazioni ivi contenute, compresi eventuali allegati, sono da ritenere confidenziali e riservate secondo i termini
del vigente D.Lgs. 196/2003 in materia di privacy e del Regolamento europeo 679/2016 - GDPR - e quindi ne e' proibita l'utilizzazione ulteriore non autorizzata.
Nel caso in cui questo messaggio Le fosse pervenuto per errore, La invitiamo ad eliminarlo senza copiarlo, stamparlo, a non inoltrarlo a terzi e ad avvertirci non appena possibile.
Grazie.

Confidentiality notice: this email message including any attachment is for the sole use of the intended recipient and may contain confidential and privileged information;
pursuant to Legislative Decree 196/2003 and the European General Data Protection Regulation 679/2016 - GDPR - any unauthorized review, use, disclosure or distribution
is prohibited. If you are not the intended recepient please delete this message without copying, printing or forwarding it to others, and alert us as soon as possible.
Thank you.



More information about the Users mailing list