IPv6 readyNote: This archive passes through spamassassin. Every mail marked with the subject "*****SPAM*****" has exceed a certain threshold of spam-like behaviour.

Re: [Users] freeS/WAN <--> freeS/WAN via certificates

From: Andreas Steffen (andreas.steffen_at_strongsec.net)
Date: Sat Jul 27 2002 - 00:29:43 CEST

The initiator does not send its certificate mtinnemeyer_cert.pem
to the responder. Could it be that you mixed up leftcert and
rightcert? Could you send me the ipsec.conf of the initiator?

Regards

Andreas

Marc Tinnemeyer wrote:
> On Tue, 23 Jul 2002 08:34:13 +0200
> Andreas Steffen <andreas.steffen_at_strongsec.net> wrote:
>
>
>>No problem at all. FreeS/WAN to FreeS/WAN connections
>>have been running successfully with X.509 certificates for years.
>
>
> That sounds good :-)
>
>
>>If you could send me complete barfs from both ends after having
>>set
>>
>> plutodebug="crypt parsing emitting control"
>>
>>in both ipsec.conf files. Then restart IPsec with
>>
>> ipsec setup restart
>>
>>and try to negotiate a connection. Then generate the barfs:
>>
>> ipsec barf > barf.txt
>
>
> Here it goes, sorry for the big output, I already deleted several lines
> from the original result.
>
> thanx a lot
>
>
> ---
>
> barf from the initiator:
>
> Jul 23 18:59:50 mail ipsec__plutorun: Starting Pluto subsystem...
> Jul 23 18:59:51 mail Pluto[9818]: Starting Pluto (FreeS/WAN Version
> 1.96)
> Jul 23 18:59:51 mail Pluto[9818]: including X.509 patch (Version
> 0.9.9)
> Jul 23 18:59:51 mail Pluto[9818]: Could not change to directory
> '/etc/ipsec.d/cacerts'
> Jul 23 18:59:51 mail Pluto[9818]: Could not change to directory
> '/etc/ipsec.d/crls'
> Jul 23 18:59:51 mail Pluto[9818]: could not open my X.509 cert file
> '/etc/x509cert.der'
> Jul 23 18:59:51 mail Pluto[9818]: OpenPGP certificate file
> '/etc/pgpcert.pgp' not found
> Jul 23 18:59:52 mail Pluto[9818]: loaded host cert file
> '/etc/ipsec.d/mtinnemeyer_cert.pem' (1143 bytes)
> Jul 23 18:59:52 mail Pluto[9818]: added connection description
> "friedhelm_cert"
> Jul 23 18:59:52 mail Pluto[9818]: listening for IKE messages
> Jul 23 18:59:52 mail Pluto[9818]: adding interface ipsec0/ppp0
> 213.170.187.51
> Jul 23 18:59:52 mail Pluto[9818]: loading secrets from
> "/etc/ipsec.secrets"
> Jul 23 18:59:52 mail Pluto[9818]: loaded private key file
> '/etc/ipsec.d/private/mtinnemeyer_key.pem' (951 bytes)
> Jul 23 18:59:52 mail Pluto[9818]: "friedhelm_cert" #1: initiating Main
> Mode
> Jul 23 19:00:07 mail Pluto[9818]: "friedhelm_cert" #1: discarding
> duplicate packet; already STATE_MAIN_I3
> + _________________________ date
> + date
> Tue Jul 23 19:00:13 CEST 2002
>
>
>
> and here the "listener":
>
> Jul 23 18:59:35 vpn ipsec__plutorun: Starting Pluto subsystem...
> Jul 23 18:59:35 vpn pluto[4030]: Starting Pluto (FreeS/WAN Version
> 1.98b)
> Jul 23 18:59:35 vpn pluto[4030]: including X.509 patch (Version
> 0.9.14)
> Jul 23 18:59:35 vpn pluto[4030]: | inserting event EVENT_REINIT_SECRET,
> timeout in 3600 seconds
> Jul 23 18:59:35 vpn pluto[4030]: | inserting event EVENT_SHUNT_SCAN,
> timeout in 120 seconds
> Jul 23 18:59:35 vpn pluto[4030]: Changing to directory
> '/etc/ipsec.d/cacerts'
> Jul 23 18:59:35 vpn pluto[4030]: loaded cacert file 'cacert.pem' (1253
> bytes)
> Jul 23 18:59:35 vpn pluto[4030]: | file content is not binary ASN.1
> Jul 23 18:59:35 vpn pluto[4030]: | -----BEGIN CERTIFICATE-----
> Jul 23 18:59:35 vpn pluto[4030]: | -----END CERTIFICATE-----
> Jul 23 18:59:35 vpn pluto[4030]: | file coded in PEM format
> Jul 23 18:59:35 vpn pluto[4030]: | L0 - certificate:
> Jul 23 18:59:35 vpn pluto[4030]: | L1 - tbsCertificate:
> Jul 23 18:59:35 vpn pluto[4030]: | L2 - DEFAULT v1:
> Jul 23 18:59:35 vpn pluto[4030]: | L3 - version:
> Jul 23 18:59:35 vpn pluto[4030]: | v3
> Jul 23 18:59:35 vpn pluto[4030]: | L2 - serialNumber:
> Jul 23 18:59:35 vpn pluto[4030]: | L2 - signature:
> Jul 23 18:59:35 vpn pluto[4030]: | L3 - sigAlg:
> Jul 23 18:59:35 vpn pluto[4030]: | 'md5WithRSAEncryption'
> Jul 23 18:59:35 vpn pluto[4030]: | L2 - issuer:
> Jul 23 18:59:35 vpn pluto[4030]: | 'C=DE, O=EMG, CN=ca_at_emsnetz.de'
> Jul 23 18:59:35 vpn pluto[4030]: | L2 - validity:
> Jul 23 18:59:35 vpn pluto[4030]: | L3 - notBefore:
> Jul 23 18:59:36 vpn pluto[4030]: | 'Mar 28 11:54:36 UTC 2002'
> Jul 23 18:59:36 vpn pluto[4030]: | L3 - notAfter:
> Jul 23 18:59:36 vpn pluto[4030]: | 'Mar 27 11:54:36 UTC 2007'
> Jul 23 18:59:36 vpn pluto[4030]: | L2 - subject:
> Jul 23 18:59:36 vpn pluto[4030]: | 'C=DE, O=EMG, CN=ca_at_emsnetz.de'
> Jul 23 18:59:36 vpn pluto[4030]: | L2 - subjectPublicKeyInfo:
> Jul 23 18:59:36 vpn pluto[4030]: | L3 - algorithm:
> Jul 23 18:59:36 vpn pluto[4030]: | L4 - algorithm:
> Jul 23 18:59:37 vpn pluto[4030]: | 'rsaEncryption'
> Jul 23 18:59:37 vpn pluto[4030]: | L3 - subjectPublicKey:
> Jul 23 18:59:37 vpn pluto[4030]: | L4 - RSAPublicKey:
> Jul 23 18:59:37 vpn pluto[4030]: | L5 - modulus:
> Jul 23 18:59:37 vpn pluto[4030]: | L5 - publicExponent:
> Jul 23 18:59:37 vpn pluto[4030]: | L2 - optional extensions:
> Jul 23 18:59:37 vpn pluto[4030]: | L3 - extensions:
> Jul 23 18:59:37 vpn pluto[4030]: | L4 - extension:
> Jul 23 18:59:37 vpn pluto[4030]: | L5 - extnID:
> Jul 23 18:59:37 vpn pluto[4030]: | 'subjectKeyIdentifier'
> Jul 23 18:59:37 vpn pluto[4030]: | L5 - critical:
> Jul 23 18:59:37 vpn pluto[4030]: | FALSE
> Jul 23 18:59:37 vpn pluto[4030]: | L5 - extnValue:
> Jul 23 18:59:37 vpn pluto[4030]: | L4 - extension:
> Jul 23 18:59:37 vpn pluto[4030]: | L5 - extnID:
> Jul 23 18:59:37 vpn pluto[4030]: | 'authorityKeyIdentifier'
> Jul 23 18:59:37 vpn pluto[4030]: | L5 - critical:
> Jul 23 18:59:37 vpn pluto[4030]: | FALSE
> Jul 23 18:59:37 vpn pluto[4030]: | L5 - extnValue:
> Jul 23 18:59:37 vpn pluto[4030]: | L4 - extension:
> Jul 23 18:59:37 vpn pluto[4030]: | L5 - extnID:
> Jul 23 18:59:37 vpn pluto[4030]: | 'basicConstraints'
> Jul 23 18:59:37 vpn pluto[4030]: | L5 - critical:
> Jul 23 18:59:37 vpn pluto[4030]: | FALSE
> Jul 23 18:59:37 vpn pluto[4030]: | L5 - extnValue:
> Jul 23 18:59:37 vpn pluto[4030]: | L6 - basicConstraints:
> Jul 23 18:59:37 vpn pluto[4030]: | L7 - CA:
> Jul 23 18:59:37 vpn pluto[4030]: | TRUE
> Jul 23 18:59:37 vpn pluto[4030]: | L1 - signatureAlgorithm:
> Jul 23 18:59:37 vpn pluto[4030]: | L2 - algorithm:
> Jul 23 18:59:37 vpn pluto[4030]: | 'md5WithRSAEncryption'
> Jul 23 18:59:37 vpn pluto[4030]: | L1 - signature:
> Jul 23 18:59:38 vpn pluto[4030]: Changing to directory
> '/etc/ipsec.d/crls'
> Jul 23 18:59:38 vpn pluto[4030]: Warning: empty directory
> Jul 23 18:59:38 vpn pluto[4030]: could not open my default X.509 cert
> file '/etc/x509cert.der'
> Jul 23 18:59:38 vpn pluto[4030]: OpenPGP certificate file
> '/etc/pgpcert.pgp' not found
> Jul 23 18:59:38 vpn pluto[4030]: | next event EVENT_SHUNT_SCAN in 117
> seconds
> Jul 23 18:59:38 vpn pluto[4030]: |
> Jul 23 18:59:38 vpn pluto[4030]: | *received whack message
> Jul 23 18:59:38 vpn pluto[4030]: loaded host cert file
> '/etc/ipsec.d/falbers_cert.pem' (1139 bytes)
> Jul 23 18:59:38 vpn pluto[4030]: | file content is not binary ASN.1
> Jul 23 18:59:38 vpn pluto[4030]: | -----BEGIN CERTIFICATE-----
> Jul 23 18:59:38 vpn pluto[4030]: | -----END CERTIFICATE-----
> Jul 23 18:59:38 vpn pluto[4030]: | file coded in PEM format
> Jul 23 18:59:38 vpn pluto[4030]: | L0 - certificate:
> Jul 23 18:59:38 vpn pluto[4030]: | L1 - tbsCertificate:
> Jul 23 18:59:38 vpn pluto[4030]: | L2 - DEFAULT v1:
> Jul 23 18:59:38 vpn pluto[4030]: | L3 - version:
> Jul 23 18:59:38 vpn pluto[4030]: | v3
> Jul 23 18:59:38 vpn pluto[4030]: | L2 - serialNumber:
> Jul 23 18:59:38 vpn pluto[4030]: | L2 - signature:
> Jul 23 18:59:38 vpn pluto[4030]: | L3 - sigAlg:
> Jul 23 18:59:38 vpn pluto[4030]: | 'md5WithRSAEncryption'
> Jul 23 18:59:38 vpn pluto[4030]: | L2 - issuer:
> Jul 23 18:59:38 vpn pluto[4030]: | 'C=DE, O=EMG, CN=ca_at_emsnetz.de'
> Jul 23 18:59:38 vpn pluto[4030]: | L2 - validity:
> Jul 23 18:59:38 vpn pluto[4030]: | L3 - notBefore:
> Jul 23 18:59:39 vpn pluto[4030]: | 'Jul 23 16:34:34 UTC 2002'
> Jul 23 18:59:39 vpn pluto[4030]: | L3 - notAfter:
> Jul 23 18:59:39 vpn pluto[4030]: | 'Jul 22 16:34:34 UTC 2006'
> Jul 23 18:59:39 vpn pluto[4030]: | L2 - subject:
> Jul 23 18:59:39 vpn pluto[4030]: | 'C=DE, O=EMG,
> CN=falbers_at_emsnetz.de'
> Jul 23 18:59:39 vpn pluto[4030]: | L2 - subjectPublicKeyInfo:
> Jul 23 18:59:39 vpn pluto[4030]: | L3 - algorithm:
> Jul 23 18:59:39 vpn pluto[4030]: | L4 - algorithm:
> Jul 23 18:59:39 vpn pluto[4030]: | 'rsaEncryption'
> Jul 23 18:59:39 vpn pluto[4030]: | L3 - subjectPublicKey:
> Jul 23 18:59:39 vpn pluto[4030]: | L4 - RSAPublicKey:
> Jul 23 18:59:39 vpn pluto[4030]: | L5 - modulus:
> Jul 23 18:59:39 vpn pluto[4030]: | L5 - publicExponent:
> Jul 23 18:59:39 vpn pluto[4030]: | L2 - optional extensions:
> Jul 23 18:59:39 vpn pluto[4030]: | L3 - extensions:
> Jul 23 18:59:39 vpn pluto[4030]: | L4 - extension:
> Jul 23 18:59:39 vpn pluto[4030]: | L5 - extnID:
> Jul 23 18:59:39 vpn pluto[4030]: | 'basicConstraints'
> Jul 23 18:59:39 vpn pluto[4030]: | L5 - critical:
> Jul 23 18:59:40 vpn pluto[4030]: | FALSE
> Jul 23 18:59:40 vpn pluto[4030]: | L5 - extnValue:
> Jul 23 18:59:40 vpn pluto[4030]: | L6 - basicConstraints:
> Jul 23 18:59:40 vpn pluto[4030]: | L7 - CA:
> Jul 23 18:59:40 vpn pluto[4030]: | FALSE
> Jul 23 18:59:40 vpn pluto[4030]: | L4 - extension:
> Jul 23 18:59:40 vpn pluto[4030]: | L5 - extnID:
> Jul 23 18:59:40 vpn pluto[4030]: | 'nsComment'
> Jul 23 18:59:40 vpn pluto[4030]: | L5 - critical:
> Jul 23 18:59:40 vpn pluto[4030]: | FALSE
> Jul 23 18:59:40 vpn pluto[4030]: | L5 - extnValue:
> Jul 23 18:59:40 vpn pluto[4030]: | L4 - extension:
> Jul 23 18:59:40 vpn pluto[4030]: | L5 - extnID:
> Jul 23 18:59:40 vpn pluto[4030]: | 'subjectKeyIdentifier'
> Jul 23 18:59:40 vpn pluto[4030]: | L5 - critical:
> Jul 23 18:59:40 vpn pluto[4030]: | FALSE
> Jul 23 18:59:40 vpn pluto[4030]: | L5 - extnValue:
> Jul 23 18:59:40 vpn pluto[4030]: | L4 - extension:
> Jul 23 18:59:40 vpn pluto[4030]: | L5 - extnID:
> Jul 23 18:59:40 vpn pluto[4030]: | 'authorityKeyIdentifier'
> Jul 23 18:59:40 vpn pluto[4030]: | L5 - critical:
> Jul 23 18:59:40 vpn pluto[4030]: | FALSE
> Jul 23 18:59:40 vpn pluto[4030]: | L5 - extnValue:
> Jul 23 18:59:40 vpn pluto[4030]: | L1 - signatureAlgorithm:
> Jul 23 18:59:40 vpn pluto[4030]: | L2 - algorithm:
> Jul 23 18:59:40 vpn pluto[4030]: | 'md5WithRSAEncryption'
> Jul 23 18:59:40 vpn pluto[4030]: | L1 - signature:
> Jul 23 18:59:40 vpn pluto[4030]: | not before : Jul 23 16:34:34 UTC
> 2002
> Jul 23 18:59:40 vpn pluto[4030]: | current time: Jul 23 16:59:40 UTC
> 2002
> Jul 23 18:59:40 vpn pluto[4030]: | not after : Jul 22 16:34:34 UTC
> 2006
> Jul 23 18:59:41 vpn pluto[4030]: added connection description
> "marc_cert"
> Jul 23 18:59:41 vpn pluto[4030]: | 192.168.5.0/24===213.170.171.79[C=DE,
> O=EMG, CN=falbers_at_emsnetz.de]---212.6.119.158...%any[C=DE, O=EMG,
> CN=mtinnemeyer_at_emsnetz.de]===192.168.27.0/24
> Jul 23 18:59:41 vpn pluto[4030]: | ike_life: 3600s; ipsec_life: 28800s;
> rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 0; policy:
> RSASIG+ENCRYPT+TUNNEL+PFS
> Jul 23 18:59:41 vpn pluto[4030]: | next event EVENT_SHUNT_SCAN in 114
> seconds
> Jul 23 18:59:41 vpn pluto[4030]: |
> Jul 23 18:59:41 vpn pluto[4030]: | *received whack message
> Jul 23 18:59:41 vpn pluto[4030]: listening for IKE messages
> Jul 23 18:59:41 vpn pluto[4030]: | found lo with address 127.0.0.1
> Jul 23 18:59:41 vpn pluto[4030]: | found eth0 with address 192.168.5.254
> Jul 23 18:59:41 vpn pluto[4030]: | found ppp0 with address
> 213.170.171.79
> Jul 23 18:59:41 vpn pluto[4030]: | found ipsec0 with address
> 213.170.171.79
> Jul 23 18:59:41 vpn pluto[4030]: adding interface ipsec0/ppp0
> 213.170.171.79
> Jul 23 18:59:41 vpn pluto[4030]: | IP interface eth0 192.168.5.254 has
> no matching ipsec* interface -- ignored
> Jul 23 18:59:41 vpn pluto[4030]: | IP interface lo 127.0.0.1 has no
> matching ipsec* interface -- ignored
> Jul 23 18:59:41 vpn pluto[4030]: | could not open /proc/net/if_inet6
> Jul 23 18:59:41 vpn pluto[4030]: loading secrets from
> "/etc/ipsec.secrets"
> Jul 23 18:59:41 vpn pluto[4030]: loaded private key file
> '/etc/ipsec.d/private/falbers_key.pem' (963 bytes)
> Jul 23 18:59:41 vpn pluto[4030]: | file content is not binary ASN.1
> Jul 23 18:59:41 vpn pluto[4030]: | -----BEGIN RSA PRIVATE KEY-----
> Jul 23 18:59:41 vpn pluto[4030]: | Proc-Type: 4,ENCRYPTED
> Jul 23 18:59:41 vpn pluto[4030]: | DEK-Info:
> DES-EDE3-CBC,147876AB10C3B57D
> Jul 23 18:59:41 vpn pluto[4030]: | -----END RSA PRIVATE KEY-----
> Jul 23 18:59:41 vpn pluto[4030]: | decrypting file using
> 'DES-EDE3-CBC'
> Jul 23 18:59:41 vpn pluto[4030]: | file coded in PEM format
> Jul 23 18:59:41 vpn pluto[4030]: | L0 - RSAPrivateKey:
> Jul 23 18:59:41 vpn pluto[4030]: | L1 - version:
> Jul 23 18:59:41 vpn pluto[4030]: | L1 - modulus:
> Jul 23 18:59:41 vpn pluto[4030]: | L1 - publicExponent:
> Jul 23 18:59:41 vpn pluto[4030]: | L1 - privateExponent:
> Jul 23 18:59:41 vpn pluto[4030]: | L1 - prime1:
> Jul 23 18:59:42 vpn pluto[4030]: | L1 - prime2:
> Jul 23 18:59:42 vpn pluto[4030]: | L1 - exponent1:
> Jul 23 18:59:42 vpn pluto[4030]: | L1 - exponent2:
> Jul 23 18:59:42 vpn pluto[4030]: | L1 - coefficient:
> Jul 23 18:59:42 vpn pluto[4030]: | next event EVENT_SHUNT_SCAN in 113
> seconds
> Jul 23 18:59:59 vpn pluto[4030]: |
> Jul 23 18:59:59 vpn pluto[4030]: | *received 176 bytes from
> 213.170.187.51:500 on ppp0
> Jul 23 18:59:59 vpn pluto[4030]: | **parse ISAKMP Message:
> Jul 23 18:59:59 vpn pluto[4030]: | initiator cookie:
> Jul 23 18:59:59 vpn pluto[4030]: | 74 d4 df 7f 80 32 e3 07
> Jul 23 18:59:59 vpn pluto[4030]: | responder cookie:
> Jul 23 18:59:59 vpn pluto[4030]: | 00 00 00 00 00 00 00 00
> Jul 23 18:59:59 vpn pluto[4030]: | next payload type: ISAKMP_NEXT_SA
> Jul 23 18:59:59 vpn pluto[4030]: | ISAKMP version: ISAKMP Version 1.0
> Jul 23 18:59:59 vpn pluto[4030]: | exchange type: ISAKMP_XCHG_IDPROT
> Jul 23 18:59:59 vpn pluto[4030]: | flags: none
> Jul 23 18:59:59 vpn pluto[4030]: | message ID: 00 00 00 00
> Jul 23 18:59:59 vpn pluto[4030]: | length: 176
> Jul 23 18:59:59 vpn pluto[4030]: | ***parse ISAKMP Security Association
> Payload:
> Jul 23 18:59:59 vpn pluto[4030]: | next payload type:
> ISAKMP_NEXT_NONE
> Jul 23 18:59:59 vpn pluto[4030]: | length: 148
> Jul 23 18:59:59 vpn pluto[4030]: | DOI: ISAKMP_DOI_IPSEC
> Jul 23 18:59:59 vpn pluto[4030]: | instantiated "marc_cert" for
> 213.170.187.51
> Jul 23 18:59:59 vpn pluto[4030]: | creating state object #1 at 0x80a80f0
> Jul 23 18:59:59 vpn pluto[4030]: | ICOOKIE: 74 d4 df 7f 80 32 e3 07
> Jul 23 18:59:59 vpn pluto[4030]: | RCOOKIE: e8 7c 3c e4 75 9b 3f 0e
> Jul 23 18:59:59 vpn pluto[4030]: | peer: d5 aa bb 33
> Jul 23 18:59:59 vpn pluto[4030]: | state hash entry 28
> Jul 23 18:59:59 vpn pluto[4030]: | inserting event EVENT_SO_DISCARD,
> timeout in 0 seconds for #1
> Jul 23 18:59:59 vpn pluto[4030]: "marc_cert"[1] 213.170.187.51 #1:
> responding to Main Mode from unknown peer 213.170.187.51
> Jul 23 18:59:59 vpn pluto[4030]: | **emit ISAKMP Message:
> Jul 23 18:59:59 vpn pluto[4030]: | initiator cookie:
> Jul 23 18:59:59 vpn pluto[4030]: | 74 d4 df 7f 80 32 e3 07
> Jul 23 18:59:59 vpn pluto[4030]: | responder cookie:
> Jul 23 18:59:59 vpn pluto[4030]: | e8 7c 3c e4 75 9b 3f 0e
> Jul 23 18:59:59 vpn pluto[4030]: | next payload type: ISAKMP_NEXT_SA
> Jul 23 18:59:59 vpn pluto[4030]: | ISAKMP version: ISAKMP Version 1.0
> Jul 23 19:00:00 vpn pluto[4030]: | exchange type: ISAKMP_XCHG_IDPROT
> Jul 23 19:00:00 vpn pluto[4030]: | flags: none
> Jul 23 19:00:00 vpn pluto[4030]: | message ID: 00 00 00 00
> Jul 23 19:00:00 vpn pluto[4030]: | ***emit ISAKMP Security Association
> Payload:
> Jul 23 19:00:00 vpn pluto[4030]: | next payload type:
> ISAKMP_NEXT_NONE
> Jul 23 19:00:00 vpn pluto[4030]: | DOI: ISAKMP_DOI_IPSEC
> Jul 23 19:00:00 vpn pluto[4030]: | ****parse IPsec DOI SIT:
> Jul 23 19:00:00 vpn pluto[4030]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
> Jul 23 19:00:00 vpn pluto[4030]: | ****parse ISAKMP Proposal Payload:
> Jul 23 19:00:00 vpn pluto[4030]: | next payload type:
> ISAKMP_NEXT_NONE
> Jul 23 19:00:00 vpn pluto[4030]: | length: 136
> Jul 23 19:00:00 vpn pluto[4030]: | proposal number: 0
> Jul 23 19:00:00 vpn pluto[4030]: | protocol ID: PROTO_ISAKMP
> Jul 23 19:00:00 vpn pluto[4030]: | SPI size: 0
> Jul 23 19:00:00 vpn pluto[4030]: | number of transforms: 4
> Jul 23 19:00:00 vpn pluto[4030]: | *****parse ISAKMP Transform Payload
> (ISAKMP):
> Jul 23 19:00:00 vpn pluto[4030]: | next payload type: ISAKMP_NEXT_T
> Jul 23 19:00:00 vpn pluto[4030]: | length: 32
> Jul 23 19:00:00 vpn pluto[4030]: | transform number: 0
> Jul 23 19:00:00 vpn pluto[4030]: | transform ID: KEY_IKE
> Jul 23 19:00:00 vpn pluto[4030]: | ******parse ISAKMP Oakley attribute:
> Jul 23 19:00:00 vpn pluto[4030]: | af+type: OAKLEY_LIFE_TYPE
> Jul 23 19:00:00 vpn pluto[4030]: | length/value: 1
> Jul 23 19:00:00 vpn pluto[4030]: | [1 is OAKLEY_LIFE_SECONDS]
> Jul 23 19:00:00 vpn pluto[4030]: | ******parse ISAKMP Oakley attribute:
> Jul 23 19:00:00 vpn pluto[4030]: | af+type: OAKLEY_LIFE_DURATION
> Jul 23 19:00:00 vpn pluto[4030]: | length/value: 3600
> Jul 23 19:00:00 vpn pluto[4030]: | ******parse ISAKMP Oakley attribute:
> Jul 23 19:00:00 vpn pluto[4030]: | af+type:
> OAKLEY_ENCRYPTION_ALGORITHM
> Jul 23 19:00:00 vpn pluto[4030]: | length/value: 5
> Jul 23 19:00:00 vpn pluto[4030]: | [5 is OAKLEY_3DES_CBC]
> Jul 23 19:00:00 vpn pluto[4030]: | ******parse ISAKMP Oakley attribute:
> Jul 23 19:00:00 vpn pluto[4030]: | af+type: OAKLEY_HASH_ALGORITHM
> Jul 23 19:00:00 vpn pluto[4030]: | length/value: 1
> Jul 23 19:00:00 vpn pluto[4030]: | [1 is OAKLEY_MD5]
> Jul 23 19:00:00 vpn pluto[4030]: | ******parse ISAKMP Oakley attribute:
> Jul 23 19:00:00 vpn pluto[4030]: | af+type:
> OAKLEY_AUTHENTICATION_METHOD
> Jul 23 19:00:00 vpn pluto[4030]: | length/value: 3
> Jul 23 19:00:00 vpn pluto[4030]: | [3 is OAKLEY_RSA_SIG]
> Jul 23 19:00:00 vpn pluto[4030]: | ******parse ISAKMP Oakley attribute:
> Jul 23 19:00:00 vpn pluto[4030]: | af+type: OAKLEY_GROUP_DESCRIPTION
> Jul 23 19:00:00 vpn pluto[4030]: | length/value: 5
> Jul 23 19:00:01 vpn pluto[4030]: | [5 is OAKLEY_GROUP_MODP1536
> (extension)]
> Jul 23 19:00:01 vpn pluto[4030]: | Oakley Transform 0 accepted
> Jul 23 19:00:01 vpn pluto[4030]: | ****emit IPsec DOI SIT:
> Jul 23 19:00:01 vpn pluto[4030]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
> Jul 23 19:00:01 vpn pluto[4030]: | ****emit ISAKMP Proposal Payload:
> Jul 23 19:00:01 vpn pluto[4030]: | next payload type:
> ISAKMP_NEXT_NONE
> Jul 23 19:00:01 vpn pluto[4030]: | proposal number: 0
> Jul 23 19:00:01 vpn pluto[4030]: | protocol ID: PROTO_ISAKMP
> Jul 23 19:00:01 vpn pluto[4030]: | SPI size: 0
> Jul 23 19:00:01 vpn pluto[4030]: | number of transforms: 1
> Jul 23 19:00:01 vpn pluto[4030]: | *****emit ISAKMP Transform Payload
> (ISAKMP):
> Jul 23 19:00:01 vpn pluto[4030]: | next payload type:
> ISAKMP_NEXT_NONE
> Jul 23 19:00:01 vpn pluto[4030]: | transform number: 0
> Jul 23 19:00:01 vpn pluto[4030]: | transform ID: KEY_IKE
> Jul 23 19:00:01 vpn pluto[4030]: | emitting 24 raw bytes of attributes
> into ISAKMP Transform Payload (ISAKMP)
> Jul 23 19:00:01 vpn pluto[4030]: | attributes 80 0b 00 01 80 0c 0e 10
> 80 01 00 05 80 02 00 01
> Jul 23 19:00:01 vpn pluto[4030]: | 80 03 00 03 80 04 00 05
> Jul 23 19:00:01 vpn pluto[4030]: | emitting length of ISAKMP Transform
> Payload (ISAKMP): 32
> Jul 23 19:00:01 vpn pluto[4030]: | emitting length of ISAKMP Proposal
> Payload: 40
> Jul 23 19:00:01 vpn pluto[4030]: | emitting length of ISAKMP Security
> Association Payload: 52
> Jul 23 19:00:01 vpn pluto[4030]: | emitting length of ISAKMP Message: 80
> Jul 23 19:00:01 vpn pluto[4030]: | inserting event EVENT_RETRANSMIT,
> timeout in 10 seconds for #1
> Jul 23 19:00:01 vpn pluto[4030]: | next event EVENT_RETRANSMIT in 10
> seconds for #1
> Jul 23 19:00:01 vpn pluto[4030]: |
> Jul 23 19:00:01 vpn pluto[4030]: | *received 244 bytes from
> 213.170.187.51:500 on ppp0
> Jul 23 19:00:01 vpn pluto[4030]: | **parse ISAKMP Message:
> Jul 23 19:00:01 vpn pluto[4030]: | initiator cookie:
> Jul 23 19:00:01 vpn pluto[4030]: | 74 d4 df 7f 80 32 e3 07
> Jul 23 19:00:01 vpn pluto[4030]: | responder cookie:
> Jul 23 19:00:01 vpn pluto[4030]: | e8 7c 3c e4 75 9b 3f 0e
> Jul 23 19:00:01 vpn pluto[4030]: | next payload type: ISAKMP_NEXT_KE
> Jul 23 19:00:01 vpn pluto[4030]: | ISAKMP version: ISAKMP Version 1.0
> Jul 23 19:00:01 vpn pluto[4030]: | exchange type: ISAKMP_XCHG_IDPROT
> Jul 23 19:00:01 vpn pluto[4030]: | flags: none
> Jul 23 19:00:01 vpn pluto[4030]: | message ID: 00 00 00 00
> Jul 23 19:00:01 vpn pluto[4030]: | length: 244
> Jul 23 19:00:01 vpn pluto[4030]: | ICOOKIE: 74 d4 df 7f 80 32 e3 07
> Jul 23 19:00:01 vpn pluto[4030]: | RCOOKIE: e8 7c 3c e4 75 9b 3f 0e
> Jul 23 19:00:01 vpn pluto[4030]: | peer: d5 aa bb 33
> Jul 23 19:00:01 vpn pluto[4030]: | state hash entry 28
> Jul 23 19:00:01 vpn pluto[4030]: | state object #1 found, in
> STATE_MAIN_R1
> Jul 23 19:00:01 vpn pluto[4030]: | ***parse ISAKMP Key Exchange Payload:
> Jul 23 19:00:01 vpn pluto[4030]: | next payload type:
> ISAKMP_NEXT_NONCE
> Jul 23 19:00:02 vpn pluto[4030]: | length: 196
> Jul 23 19:00:02 vpn pluto[4030]: | ***parse ISAKMP Nonce Payload:
> Jul 23 19:00:02 vpn pluto[4030]: | next payload type:
> ISAKMP_NEXT_NONE
> Jul 23 19:00:02 vpn pluto[4030]: | length: 20
> Jul 23 19:00:02 vpn pluto[4030]: | **emit ISAKMP Message:
> Jul 23 19:00:02 vpn pluto[4030]: | initiator cookie:
> Jul 23 19:00:02 vpn pluto[4030]: | 74 d4 df 7f 80 32 e3 07
> Jul 23 19:00:02 vpn pluto[4030]: | responder cookie:
> Jul 23 19:00:02 vpn pluto[4030]: | e8 7c 3c e4 75 9b 3f 0e
> Jul 23 19:00:02 vpn pluto[4030]: | next payload type: ISAKMP_NEXT_KE
> Jul 23 19:00:02 vpn pluto[4030]: | ISAKMP version: ISAKMP Version 1.0
> Jul 23 19:00:02 vpn pluto[4030]: | exchange type: ISAKMP_XCHG_IDPROT
> Jul 23 19:00:02 vpn pluto[4030]: | flags: none
> Jul 23 19:00:02 vpn pluto[4030]: | message ID: 00 00 00 00
> Jul 23 19:00:02 vpn pluto[4030]: | DH public value received:
> Jul 23 19:00:02 vpn pluto[4030]: | 71 29 fc f8 2c 23 7a 62 23 60 55
> 19 2c 36 d4 7d
> Jul 23 19:00:02 vpn pluto[4030]: | e1 99 3b 9a fc 83 3b 22 c7 04 a3
> 71 28 f3 35 49
> Jul 23 19:00:03 vpn pluto[4030]: | 27 17 ff a1 c0 5e d5 84 e2 27 e0
> f4 22 2b 71 47
> Jul 23 19:00:03 vpn pluto[4030]: | 74 8b 13 e3 2f 15 65 09 cd 95 21
> a8 9d 7a 7c 8f
> Jul 23 19:00:03 vpn pluto[4030]: | f5 60 08 b0 0a 46 d3 2e fd b5 a6
> a1 ef e4 da 17
> Jul 23 19:00:03 vpn pluto[4030]: | ca bf 3f 52 87 5f f7 5d 76 0a 22
> e8 51 b4 15 32
> Jul 23 19:00:03 vpn pluto[4030]: | 04 e1 a9 5a 3c b8 45 d5 79 8a 81
> 09 39 d1 22 af
> Jul 23 19:00:03 vpn pluto[4030]: | 5e cb fe 7b 88 bd 46 47 2d 89 45
> c5 e4 ea 42 37
> Jul 23 19:00:03 vpn pluto[4030]: | a9 25 3e 28 92 7a 44 d4 18 02 8d
> 60 17 a1 85 b6
> Jul 23 19:00:03 vpn pluto[4030]: | 21 bc 51 6e cc 31 11 aa 6a f5 a3
> 0d 8f b2 44 ab
> Jul 23 19:00:03 vpn pluto[4030]: | 19 ee 53 10 11 e9 43 65 58 91 f7
> eb 27 6b db 38
> Jul 23 19:00:03 vpn pluto[4030]: | f3 79 48 39 72 a5 01 95 cd ac d6
> 11 dc 74 38 22
> Jul 23 19:00:03 vpn pluto[4030]: | Local DH secret:
> Jul 23 19:00:03 vpn pluto[4030]: | 45 14 6f 93 3f ad eb 23 66 58 a8
> 38 a7 cf 68 53
> Jul 23 19:00:03 vpn pluto[4030]: | 79 01 65 a3 21 14 6c 95 2d b9 1d
> 46 1b ca 79 3d
> Jul 23 19:00:03 vpn pluto[4030]: | Public DH value sent:
> Jul 23 19:00:03 vpn pluto[4030]: | 9a 92 b1 67 9d 04 c4 3f 5d a0 c1
> 52 01 96 cf b1
> Jul 23 19:00:03 vpn pluto[4030]: | fc 74 29 88 83 a8 6a 1e 6b 49 7d
> 81 1a 02 59 2b
> Jul 23 19:00:03 vpn pluto[4030]: | f9 d2 45 e0 db 59 79 e8 f1 8a 00
> 53 af 46 0e bc
> Jul 23 19:00:03 vpn pluto[4030]: | f1 d5 49 1d fe 40 4d 50 a1 e0 c0
> 64 35 f7 4d 8a
> Jul 23 19:00:03 vpn pluto[4030]: | ac 32 b7 15 84 60 f7 61 9b b2 76
> f8 fb ef d7 df
> Jul 23 19:00:03 vpn pluto[4030]: | 71 04 6a c8 7d a3 aa 07 43 e9 16
> d9 7d a9 39 33
> Jul 23 19:00:03 vpn pluto[4030]: | e0 e6 e2 ec 69 99 d2 60 6c 87 fb
> 5f 11 82 e5 fb
> Jul 23 19:00:03 vpn pluto[4030]: | 06 6f 85 23 d3 e8 8f 2d f0 f7 e5
> b4 18 b8 99 11
> Jul 23 19:00:03 vpn pluto[4030]: | 44 d2 9e 4d 66 db db e7 b1 ed e3
> 62 be 50 22 95
> Jul 23 19:00:03 vpn pluto[4030]: | c6 db 33 0a cd c6 a7 72 4f d8 cb
> 62 6b d7 4e 33
> Jul 23 19:00:03 vpn pluto[4030]: | e9 77 e5 4a 89 ba b6 d2 a3 78 f5
> 62 40 c8 70 ab
> Jul 23 19:00:03 vpn pluto[4030]: | 82 a6 c8 9e 96 08 91 c5 d1 c1 d7
> 92 e7 e9 1a 8c
> Jul 23 19:00:03 vpn pluto[4030]: | ***emit ISAKMP Key Exchange Payload:
> Jul 23 19:00:03 vpn pluto[4030]: | next payload type:
> ISAKMP_NEXT_NONCE
> Jul 23 19:00:03 vpn pluto[4030]: | emitting 192 raw bytes of keyex value
> into ISAKMP Key Exchange Payload
> Jul 23 19:00:03 vpn pluto[4030]: | keyex value 9a 92 b1 67 9d 04 c4 3f
> 5d a0 c1 52 01 96 cf b1
> Jul 23 19:00:03 vpn pluto[4030]: | fc 74 29 88 83 a8 6a 1e 6b 49 7d
> 81 1a 02 59 2b
> Jul 23 19:00:03 vpn pluto[4030]: | f9 d2 45 e0 db 59 79 e8 f1 8a 00
> 53 af 46 0e bc
> Jul 23 19:00:03 vpn pluto[4030]: | f1 d5 49 1d fe 40 4d 50 a1 e0 c0
> 64 35 f7 4d 8a
> Jul 23 19:00:03 vpn pluto[4030]: | ac 32 b7 15 84 60 f7 61 9b b2 76
> f8 fb ef d7 df
> Jul 23 19:00:03 vpn pluto[4030]: | 71 04 6a c8 7d a3 aa 07 43 e9 16
> d9 7d a9 39 33
> Jul 23 19:00:03 vpn pluto[4030]: | e0 e6 e2 ec 69 99 d2 60 6c 87 fb
> 5f 11 82 e5 fb
> Jul 23 19:00:03 vpn pluto[4030]: | 06 6f 85 23 d3 e8 8f 2d f0 f7 e5
> b4 18 b8 99 11
> Jul 23 19:00:03 vpn pluto[4030]: | 44 d2 9e 4d 66 db db e7 b1 ed e3
> 62 be 50 22 95
> Jul 23 19:00:04 vpn pluto[4030]: | c6 db 33 0a cd c6 a7 72 4f d8 cb
> 62 6b d7 4e 33
> Jul 23 19:00:04 vpn pluto[4030]: | e9 77 e5 4a 89 ba b6 d2 a3 78 f5
> 62 40 c8 70 ab
> Jul 23 19:00:04 vpn pluto[4030]: | 82 a6 c8 9e 96 08 91 c5 d1 c1 d7
> 92 e7 e9 1a 8c
> Jul 23 19:00:04 vpn pluto[4030]: | emitting length of ISAKMP Key
> Exchange Payload: 196
> Jul 23 19:00:04 vpn pluto[4030]: | ***emit ISAKMP Nonce Payload:
> Jul 23 19:00:04 vpn pluto[4030]: | next payload type: ISAKMP_NEXT_CR
> Jul 23 19:00:04 vpn pluto[4030]: | emitting 16 raw bytes of Nr into
> ISAKMP Nonce Payload
> Jul 23 19:00:04 vpn pluto[4030]: | Nr eb f8 f7 00 cc 08 94 de 09 32
> b9 98 a8 c4 ba 3c
> Jul 23 19:00:04 vpn pluto[4030]: | emitting length of ISAKMP Nonce
> Payload: 20
> Jul 23 19:00:04 vpn pluto[4030]: | ***emit ISAKMP Certificate
> RequestPayload:
> Jul 23 19:00:04 vpn pluto[4030]: | next payload type:
> ISAKMP_NEXT_NONE
> Jul 23 19:00:04 vpn pluto[4030]: | cert type: CERT_X509_SIGNATURE
> Jul 23 19:00:04 vpn pluto[4030]: | emitting length of ISAKMP Certificate
> RequestPayload: 5
> Jul 23 19:00:04 vpn pluto[4030]: | emitting 3 zero bytes of message
> padding into ISAKMP Message
> Jul 23 19:00:04 vpn pluto[4030]: | emitting length of ISAKMP Message:
> 252
> Jul 23 19:00:04 vpn pluto[4030]: | DH shared secret:
> Jul 23 19:00:04 vpn pluto[4030]: | a8 fc e6 93 a9 6c d7 87 26 22 46
> c1 81 3f e0 b7
> Jul 23 19:00:04 vpn pluto[4030]: | f7 0b 27 1d 21 47 1e 1a ac 8c f8
> 95 bc 6e 5c ae
> Jul 23 19:00:04 vpn pluto[4030]: | 66 a1 9c a3 ea 34 b5 ec 4a 60 fa
> 70 02 04 34 85
> Jul 23 19:00:04 vpn pluto[4030]: | ef 0e d9 7f 67 67 81 d0 a6 fa 9b
> 84 61 6a d5 77
> Jul 23 19:00:04 vpn pluto[4030]: | 67 88 e1 8c 69 ce c6 cf 7d a6 d5
> 51 c9 07 09 18
> Jul 23 19:00:04 vpn pluto[4030]: | 33 f6 35 fd 6f de 8f 70 3c 4a af
> 01 ef 92 1e 61
> Jul 23 19:00:04 vpn pluto[4030]: | 31 4a c1 24 14 db d6 30 f8 b6 23
> d7 29 24 47 9b
> Jul 23 19:00:04 vpn pluto[4030]: | 3e 68 48 dc dc e0 a5 6b da c7 5e
> a4 b8 e7 4a 20
> Jul 23 19:00:04 vpn pluto[4030]: | c0 9c c7 e8 b7 5c f1 82 43 f3 b7
> ad 40 a3 33 e9
> Jul 23 19:00:04 vpn pluto[4030]: | dc db a1 77 73 97 ac f9 f1 b1 86
> 92 c3 ab 29 db
> Jul 23 19:00:04 vpn pluto[4030]: | a3 eb e4 af 52 d5 5a 57 01 a5 47
> 6a 3b bf 40 08
> Jul 23 19:00:04 vpn pluto[4030]: | d5 6c 0d ff 53 a9 fe c3 76 f3 32
> 77 1e e2 82 66
> Jul 23 19:00:04 vpn pluto[4030]: | Skeyid: ff dc cd 31 31 88 a2 29
> 0d ab e5 d0 c8 66 c4 1c
> Jul 23 19:00:04 vpn pluto[4030]: | Skeyid_d: d9 e1 07 bc a2 ec b9 60
> 8f 78 62 93 05 ee b0 38
> Jul 23 19:00:04 vpn pluto[4030]: | Skeyid_a: b7 9a 5d 5f fe 0b 59 22
> a7 e8 4a 5d 78 5e 5c 93
> Jul 23 19:00:04 vpn pluto[4030]: | Skeyid_e: e6 36 3a 9a b9 04 6c e7
> 44 73 eb 78 3c aa 6f b1
> Jul 23 19:00:04 vpn pluto[4030]: | enc key: ff c4 45 e5 51 b2 91 90
> 29 bc 4d 63 37 6b 1d 9c
> Jul 23 19:00:04 vpn pluto[4030]: | dc c3 35 d2 ec 53 ec af
> Jul 23 19:00:04 vpn pluto[4030]: | IV: e2 60 53 5b 1e 03 bd db ab 11
> d0 ca 5e 3a 00 66
> Jul 23 19:00:04 vpn pluto[4030]: | inserting event EVENT_RETRANSMIT,
> timeout in 10 seconds for #1
> Jul 23 19:00:04 vpn pluto[4030]: | next event EVENT_RETRANSMIT in 10
> seconds for #1
> Jul 23 19:00:05 vpn pluto[4030]: |
> Jul 23 19:00:05 vpn pluto[4030]: | *received 236 bytes from
> 213.170.187.51:500 on ppp0
> Jul 23 19:00:05 vpn pluto[4030]: | **parse ISAKMP Message:
> Jul 23 19:00:05 vpn pluto[4030]: | initiator cookie:
> Jul 23 19:00:05 vpn pluto[4030]: | 74 d4 df 7f 80 32 e3 07
> Jul 23 19:00:05 vpn pluto[4030]: | responder cookie:
> Jul 23 19:00:05 vpn pluto[4030]: | e8 7c 3c e4 75 9b 3f 0e
> Jul 23 19:00:05 vpn pluto[4030]: | next payload type: ISAKMP_NEXT_ID
> Jul 23 19:00:05 vpn pluto[4030]: | ISAKMP version: ISAKMP Version 1.0
> Jul 23 19:00:05 vpn pluto[4030]: | exchange type: ISAKMP_XCHG_IDPROT
> Jul 23 19:00:05 vpn pluto[4030]: | flags: ISAKMP_FLAG_ENCRYPTION
> Jul 23 19:00:05 vpn pluto[4030]: | message ID: 00 00 00 00
> Jul 23 19:00:05 vpn pluto[4030]: | length: 236
> Jul 23 19:00:05 vpn pluto[4030]: | ICOOKIE: 74 d4 df 7f 80 32 e3 07
> Jul 23 19:00:05 vpn pluto[4030]: | RCOOKIE: e8 7c 3c e4 75 9b 3f 0e
> Jul 23 19:00:05 vpn pluto[4030]: | peer: d5 aa bb 33
> Jul 23 19:00:05 vpn pluto[4030]: | state hash entry 28
> Jul 23 19:00:05 vpn pluto[4030]: | state object #1 found, in
> STATE_MAIN_R2
> Jul 23 19:00:05 vpn pluto[4030]: | received encrypted packet from
> 213.170.187.51:500
> Jul 23 19:00:05 vpn pluto[4030]: | decrypting 208 bytes using algorithm
> OAKLEY_3DES_CBC
> Jul 23 19:00:05 vpn pluto[4030]: | decrypted:
> Jul 23 19:00:05 vpn pluto[4030]: | 09 00 00 46 09 00 00 00 30 3c 31
> 0b 30 09 06 03
> Jul 23 19:00:05 vpn pluto[4030]: | 55 04 06 13 02 44 45 31 0c 30 0a
> 06 03 55 04 0a
> Jul 23 19:00:05 vpn pluto[4030]: | 13 03 45 4d 47 31 1f 30 1d 06 03
> 55 04 03 14 16
> Jul 23 19:00:05 vpn pluto[4030]: | 6d 74 69 6e 6e 65 6d 65 79 65 72
> 40 65 6d 73 6e
> Jul 23 19:00:05 vpn pluto[4030]: | 65 74 7a 2e 64 65 00 00 00 84 95
> bb de 41 fc c0
> Jul 23 19:00:05 vpn pluto[4030]: | c0 e1 3d 88 0d 38 f8 14 d0 c1 98
> 20 2c df 72 09
> Jul 23 19:00:05 vpn pluto[4030]: | 68 65 73 16 d7 fe 88 bb 23 2a 17
> 88 f9 e8 23 4d
> Jul 23 19:00:05 vpn pluto[4030]: | 37 c1 15 ac 51 4d b7 0d bd 4b e9
> 0b 4d 21 b5 44
> Jul 23 19:00:05 vpn pluto[4030]: | 4f 51 02 1f a4 77 82 06 02 5e 8c
> be 12 5b 97 4b
> Jul 23 19:00:05 vpn pluto[4030]: | df df 6a 69 29 f6 db 41 e4 20 a0
> 28 21 f1 e9 ca
> Jul 23 19:00:05 vpn pluto[4030]: | 20 45 8e 1a 51 bc 8c ef b7 0d 48
> 56 ab 0f 93 1a
> Jul 23 19:00:05 vpn pluto[4030]: | 24 75 14 e8 01 f7 53 9d 03 69 02
> a9 4a f4 b0 2e
> Jul 23 19:00:05 vpn pluto[4030]: | 82 34 7b be 9f 0e 70 ed b2 39 00
> 00 00 00 00 00
> Jul 23 19:00:05 vpn pluto[4030]: | next IV: ff 49 bc fe 49 3c 70 f0
> Jul 23 19:00:05 vpn pluto[4030]: | ***parse ISAKMP Identification
> Payload:
> Jul 23 19:00:06 vpn pluto[4030]: | next payload type: ISAKMP_NEXT_SIG
> Jul 23 19:00:06 vpn pluto[4030]: | length: 70
> Jul 23 19:00:06 vpn pluto[4030]: | ID type: ID_DER_ASN1_DN
> Jul 23 19:00:06 vpn pluto[4030]: | DOI specific A: 0
> Jul 23 19:00:06 vpn pluto[4030]: | DOI specific B: 0
> Jul 23 19:00:06 vpn pluto[4030]: | ***parse ISAKMP Signature Payload:
> Jul 23 19:00:06 vpn pluto[4030]: | next payload type:
> ISAKMP_NEXT_NONE
> Jul 23 19:00:06 vpn pluto[4030]: | length: 132
> Jul 23 19:00:06 vpn pluto[4030]: | removing 6 bytes of padding
> Jul 23 19:00:06 vpn pluto[4030]: | DER ASN1 DN: 30 3c 31 0b 30 09 06
> 03 55 04 06 13 02 44 45 31
> Jul 23 19:00:06 vpn pluto[4030]: | 0c 30 0a 06 03 55 04 0a 13 03 45
> 4d 47 31 1f 30
> Jul 23 19:00:06 vpn pluto[4030]: | 1d 06 03 55 04 03 14 16 6d 74 69
> 6e 6e 65 6d 65
> Jul 23 19:00:06 vpn pluto[4030]: | 79 65 72 40 65 6d 73 6e 65 74 7a
> 2e 64 65
> Jul 23 19:00:06 vpn pluto[4030]: "marc_cert"[1] 213.170.187.51 #1: Peer
> ID is ID_DER_ASN1_DN: 'C=DE, O=EMG, CN=mtinnemeyer_at_emsnetz.de'
> Jul 23 19:00:06 vpn pluto[4030]: | hashing 144 bytes of SA
> Jul 23 19:00:06 vpn pluto[4030]: "marc_cert"[1] 213.170.187.51 #1: no
> RSA public key known for 'C=DE, O=EMG, CN=mtinnemeyer_at_emsnetz.de'
> Jul 23 19:00:06 vpn pluto[4030]: | state transition function for
> STATE_MAIN_R2 failed: INVALID_KEY_INFORMATION
> Jul 23 19:00:06 vpn pluto[4030]: | next event EVENT_RETRANSMIT in 8
> seconds for #1
> Jul 23 19:00:12 vpn pluto[4030]: |
> Jul 23 19:00:12 vpn pluto[4030]: | *received whack message
> Jul 23 19:00:12 vpn pluto[4030]: | next event EVENT_RETRANSMIT in 2
> seconds for #1
> + _________________________ date
> + date
> Tue Jul 23 19:00:12 CEST 2002
>
>
>
> _______________________________________________
> Users mailing list
> Users_at_lists.freeswan.org
> http://lists.freeswan.org/mailman/listinfo/users 

-- 
======================================================================
Andreas Steffen                 e-mail: andreas.steffen_at_strongsec.com
strongSec GmbH                  phone:  +41 76 340 25 56
Alter Zürichweg 20              home:   http://www.strongsec.com
CH-8952 Schlieren (Switzerland)
==========================================[strong internet security]==

_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:20:28 CEST