9-19: 13:51:47:264 flush(isakmp): 433ff147-b2f7-4d9d-b343e94d5433c068 9-19: 13:51:47:264 Oakley group 2 from UI 9-19: 13:51:47:264 Isakmp policy (4 total): 22ea3776-13a4-4c28-8b8bdc64064416d2 PFS=1 9-19: 13:51:47:264 #0: C.Id = 3, H.ID= 2, A.ID = 0, Group = 2 LT=28800 QMs=0 9-19: 13:51:47:264 #1: C.Id = 3, H.ID= 1, A.ID = 0, Group = 2 LT=28800 QMs=0 9-19: 13:51:47:264 #2: C.Id = 1, H.ID= 2, A.ID = 0, Group = 1 LT=28800 QMs=0 9-19: 13:51:47:264 #3: C.Id = 1, H.ID= 1, A.ID = 0, Group = 1 LT=28800 QMs=0 9-19: 13:51:47:264 flush guid(isakmp): 22ea3776-13a4-4c28-8b8bdc64064416d2 9-19: 13:51:47:264 isadb_schedule_kill_oldPolicy_sas: 22ea3776-13a4-4c28-8b8bdc64064416d2 1 9-19: 13:51:47:264 Added Timeout 10de18 9-19: 13:51:47:594 entered kill_old_policy_sas 9-19: 13:51:47:264 Adding policy guid(ipsec): 9f54fa71-9eb0-4d4d-a077331c638df396 9-19: 13:51:47:264 Authentication Method[0] from UI 5 9-19: 13:51:47:264 Auth[0]: 5 Authinfosize: 0 9-19: 13:51:47:264 Flags from UI 0 9-19: 13:51:47:264 Ipsec policy (6 total): 9f54fa71-9eb0-4d4d-a077331c638df396 PFS=10747868 9-19: 13:51:47:264 #0: Encrypt C.Id = 3, C.KeyLen = 64, I.ID = 2, 9-19: 13:51:47:264 #1: Encrypt C.Id = 3, C.KeyLen = 64, I.ID = 1, 9-19: 13:51:47:264 #2: Encrypt C.Id = 1, C.KeyLen = 64, I.ID = 2, 9-19: 13:51:47:264 #3: Encrypt C.Id = 1, C.KeyLen = 64, I.ID = 1, 9-19: 13:51:47:264 #4: Auth C.Id = 2, C.KeyLen = 64, I.ID = 0, 9-19: 13:51:47:264 #5: Auth C.Id = 1, C.KeyLen = 64, I.ID = 0, 9-19: 13:51:47:264 flush guid(ipsec): 9f54fa71-9eb0-4d4d-a077331c638df396 9-19: 13:51:47:264 Adding policy guid(ipsec): 27afb15f-342d-4712-9ee53086c4858892 9-19: 13:51:47:264 Authentication Method[0] from UI 3 9-19: 13:51:48:264 Auth[0]: 3 Authinfosize: 149 9-19: 13:51:48:264 Flags from UI 2 9-19: 13:51:48:264 Ipsec policy (1 total): 27afb15f-342d-4712-9ee53086c4858892 PFS=10747868 9-19: 13:51:48:264 #0: Encrypt C.Id = 3, C.KeyLen = 0, I.ID = 1, 9-19: 13:51:48:264 flush guid(ipsec): 27afb15f-342d-4712-9ee53086c4858892 9-19: 13:51:48:264 Adding policy guid(ipsec): 2e931ddd-cb0c-408a-9014575941420d66 9-19: 13:51:48:264 Authentication Method[0] from UI 3 9-19: 13:51:48:264 Auth[0]: 3 Authinfosize: 149 9-19: 13:51:48:264 Flags from UI 2 9-19: 13:51:48:264 Ipsec policy (1 total): 2e931ddd-cb0c-408a-9014575941420d66 PFS=10747868 9-19: 13:51:48:264 #0: Encrypt C.Id = 3, C.KeyLen = 0, I.ID = 1, 9-19: 13:51:48:264 flush guid(ipsec): 2e931ddd-cb0c-408a-9014575941420d66 9-19: 13:52:03:370 Posting acquire: op=8131EB48 src=10.0.1.53.0 dst=10.0.2.2.0 proto = 0, SrcMask=255.255.255.255, DstMask=255.255.255.0, Tunnel 1, TunnelEndpt=10.0.1.66 Inbound TunnelEndpt=10.0.1.53 9-19: 13:52:03:370 Acquire thread waiting 9-19: 13:52:03:594 find(ipsec): 27afb15f-342d-4712-9ee53086c4858892 9-19: 13:52:03:594 outstanding_kernel_req returned 0 9-19: 13:52:03:594 Created new SA 28ae00 9-19: 13:52:03:594 Acquire: src = 10.0.1.53.0000, dst = 10.0.1.66.62465, proto = 00, context = 8131EB48, ProxySrc = 10.0.1.53.0000, ProxyDst = 10.0.2.0.0000 SrcMask = 0.0.0.0 DstMask = 255.255.255.0 9-19: 13:52:03:594 constructing ISAKMP Header 9-19: 13:52:03:594 constructing SA (ISAKMP) 9-19: 13:52:03:594 find(isakmp): 27afb15f-342d-4712-9ee53086c4858892 9-19: 13:52:03:594 Setting group desc 9-19: 13:52:03:594 Setting group desc 9-19: 13:52:03:594 Setting group desc 9-19: 13:52:03:594 Setting group desc 9-19: 13:52:03:594 Constructing Vendor 9-19: 13:52:03:594 Throw: State mask=1 9-19: 13:52:03:594 Added Timeout 10de18 9-19: 13:52:03:594 Setting Retransmit: sa 28ae00 handle 10de18 context 28a6d8 9-19: 13:52:03:594 9-19: 13:52:03:594 Sending: SA = 0x0028AE00 to 10.0.1.66 9-19: 13:52:03:594 ISAKMP Header: (V1.0), len = 216 9-19: 13:52:03:594 I-COOKIE 2ec9e8310ccd1875 9-19: 13:52:03:594 R-COOKIE 0000000000000000 9-19: 13:52:03:594 exchange: Oakley Main Mode 9-19: 13:52:03:594 flags: 0 9-19: 13:52:03:594 next payload: SA 9-19: 13:52:03:594 message ID: 00000000 9-19: 13:52:03:594 9-19: 13:52:03:594 Resume: (get) SA = 0x0028ae00 from 10.0.1.66 9-19: 13:52:03:594 ISAKMP Header: (V1.0), len = 84 9-19: 13:52:03:594 I-COOKIE 2ec9e8310ccd1875 9-19: 13:52:03:594 R-COOKIE ce9d1c251a6ba76f 9-19: 13:52:03:594 exchange: Oakley Main Mode 9-19: 13:52:03:594 flags: 0 9-19: 13:52:03:594 next payload: SA 9-19: 13:52:03:594 message ID: 00000000 9-19: 13:52:03:594 Stopping RetransTimer sa:0028AE00 centry:00000000 handle:0010DE18 9-19: 13:52:03:594 processing payload SA 9-19: 13:52:03:594 Received Phase 1 Transform 1 9-19: 13:52:03:594 Encryption Alg Triple DES CBC(5) 9-19: 13:52:03:594 Hash Alg SHA(2) 9-19: 13:52:03:594 Oakley Group 2 9-19: 13:52:03:594 Auth Method RSA Signature with Certificates(3) 9-19: 13:52:03:594 Life type in Seconds 9-19: 13:52:03:594 Life duration of 28800 9-19: 13:52:03:594 Phase 1 SA accepted: transform=1 9-19: 13:52:03:594 SA - Oakley proposal accepted 9-19: 13:52:03:594 In state OAK_MM_SA_SETUP 9-19: 13:52:03:594 constructing ISAKMP Header 9-19: 13:52:03:594 constructing KE 9-19: 13:52:03:594 constructing NONCE (ISAKMP) 9-19: 13:52:03:594 Throw: State mask=7 9-19: 13:52:03:594 9-19: 13:52:03:594 Sending: SA = 0x0028AE00 to 10.0.1.66 9-19: 13:52:03:594 ISAKMP Header: (V1.0), len = 184 9-19: 13:52:03:594 I-COOKIE 2ec9e8310ccd1875 9-19: 13:52:03:594 R-COOKIE ce9d1c251a6ba76f 9-19: 13:52:03:594 exchange: Oakley Main Mode 9-19: 13:52:03:594 flags: 0 9-19: 13:52:03:594 next payload: KE 9-19: 13:52:03:594 message ID: 00000000 9-19: 13:52:03:594 9-19: 13:52:03:594 Resume: (get) SA = 0x0028ae00 from 10.0.1.66 9-19: 13:52:03:594 ISAKMP Header: (V1.0), len = 188 9-19: 13:52:03:594 I-COOKIE 2ec9e8310ccd1875 9-19: 13:52:03:594 R-COOKIE ce9d1c251a6ba76f 9-19: 13:52:03:594 exchange: Oakley Main Mode 9-19: 13:52:03:594 flags: 0 9-19: 13:52:03:594 next payload: KE 9-19: 13:52:03:594 message ID: 00000000 9-19: 13:52:03:594 Stopping RetransTimer sa:0028AE00 centry:00000000 handle:0010DE18 9-19: 13:52:03:594 processing payload KE 9-19: 13:52:03:594 Generated 128 byte Shared Secret 9-19: 13:52:03:594 KE processed; DH shared secret computed 9-19: 13:52:03:594 processing payload NONCE 9-19: 13:52:03:594 processing payload CR 9-19: 13:52:03:594 Processing Cert request 9-19: 13:52:03:594 In state OAK_MM_Key_EXCH 9-19: 13:52:03:594 skeyid generated; crypto enabled (initiator) 9-19: 13:52:03:594 constructing ISAKMP Header 9-19: 13:52:03:594 constructing ID 9-19: 13:52:03:594 Received no valid CRPs. Using all configured 9-19: 13:52:03:594 Cert Trustes. 0 0 9-19: 13:52:03:594 Key Contained Name 9-19: 13:52:03:594 {5B0403B4-C9EC-4ED0-9BDD-9F27E27A48C0} 9-19: 13:52:03:594 Found try 1 9-19: 13:52:03:594 constructing CERT 9-19: 13:52:03:594 constructing SIG 9-19: 13:52:03:594 Construct SIG 9-19: 13:52:03:594 Hash algo 2 9-19: 13:52:03:594 Initiator ID 0900000030818b310b30090603550406 9-19: 13:52:03:594 130254523110300e060355040813074d 9-19: 13:52:03:594 61726d617261311c301a060355040a13 9-19: 13:52:03:594 1349686c61732046696e616e73204b75 9-19: 13:52:03:594 72756d7531173015060355040b130e43 9-19: 13:52:03:594 6f6d707574657243656e746572310f30 9-19: 13:52:03:594 0d060355040313064672436c6e743122 9-19: 13:52:03:594 302006092a864886f70d010901161363 9-19: 13:52:03:594 6c69656e7440667265657377616e2e6f 9-19: 13:52:03:594 7267 9-19: 13:52:03:594 Error 80090016 during CryptSignHash1! 9-19: 13:52:03:594 Trying KE key 9-19: 13:52:03:594 Signature Created Successfully 9-19: 13:52:03:594 Sig LE: 4b44f0c3577696e1b6878570ad741fcf 9-19: 13:52:03:594 9203fac01e623531765b6701c7b5e0fb 9-19: 13:52:03:594 8c77e1f37e9f255c39ea1a049a2c804d 9-19: 13:52:03:594 ef537f13dc7393361ce415be3148ea13 9-19: 13:52:03:594 4c934646425c1041947b40b689e5123e 9-19: 13:52:03:594 fce5ccb69810ea8a105bd40100438191 9-19: 13:52:03:594 3359c193d7af471d8e4f6c24a2041b27 9-19: 13:52:03:594 50e6803ae0479664102880111983d4b3 9-19: 13:52:03:594 9-19: 13:52:03:594 SIG BE: b3d4831911802810649647e03a80e650 9-19: 13:52:03:594 271b04a2246c4f8e1d47afd793c15933 9-19: 13:52:03:594 9181430001d45b108aea1098b6cce5fc 9-19: 13:52:03:594 3e12e589b6407b9441105c424646934c 9-19: 13:52:03:594 13ea4831be15e41c369373dc137f53ef 9-19: 13:52:03:594 4d802c9a041aea395c259f7ef3e1778c 9-19: 13:52:03:594 fbe0b5c701675b763135621ec0fa0392 9-19: 13:52:03:594 cf1f74ad708587b6e1967657c3f0444b 9-19: 13:52:03:594 9-19: 13:52:03:594 AuthCount 1 9-19: 13:52:03:594 Constructing Cert Request 9-19: 13:52:03:594 Setting CertReq type 9-19: 13:52:03:594 Throw: State mask=111f 9-19: 13:52:03:594 Doing tripleDES 9-19: 13:52:03:594 9-19: 13:52:03:594 Sending: SA = 0x0028AE00 to 10.0.1.66 9-19: 13:52:03:594 ISAKMP Header: (V1.0), len = 1428 9-19: 13:52:03:594 I-COOKIE 2ec9e8310ccd1875 9-19: 13:52:03:594 R-COOKIE ce9d1c251a6ba76f 9-19: 13:52:03:594 exchange: Oakley Main Mode 9-19: 13:52:03:594 flags: 1 ( encrypted ) 9-19: 13:52:03:594 next payload: ID 9-19: 13:52:03:594 message ID: 00000000 9-19: 13:52:04:594 9-19: 13:52:04:594 Resume: (get) SA = 0x0028ae00 from 10.0.1.66 9-19: 13:52:04:594 ISAKMP Header: (V1.0), len = 1428 9-19: 13:52:04:594 I-COOKIE 2ec9e8310ccd1875 9-19: 13:52:04:594 R-COOKIE ce9d1c251a6ba76f 9-19: 13:52:04:594 exchange: Oakley Main Mode 9-19: 13:52:04:594 flags: 1 ( encrypted ) 9-19: 13:52:04:594 next payload: ID 9-19: 13:52:04:594 message ID: 00000000 9-19: 13:52:04:594 Doing tripleDES 9-19: 13:52:04:594 Stopping RetransTimer sa:0028AE00 centry:00000000 handle:0010DE18 9-19: 13:52:04:594 processing payload ID 9-19: 13:52:04:594 Process Id 9-19: 13:52:04:594 Got Cert ID 9-19: 13:52:04:594 processing payload CERT 9-19: 13:52:04:594 Processing Cert 9-19: 13:52:04:594 ProcessingCert 9-19: 13:52:04:594 processing payload SIG 9-19: 13:52:04:594 Process SIG 9-19: 13:52:04:594 Verifying CertStore 9-19: 13:52:04:594 Cert Trustes. 0 0 9-19: 13:52:04:594 Subject names match 9-19: 13:52:04:594 Cert lifetime in seconds low 315183942, high 0 9-19: 13:52:04:594 Responder ID 09000000308192310b30090603550406 9-19: 13:52:04:594 130254523110300e060355040813074d 9-19: 13:52:04:594 61726d617261311c301a060355040a13 9-19: 13:52:04:594 1349686c61732046696e616e73204b75 9-19: 13:52:04:594 72756d7531173015060355040b130e43 9-19: 13:52:04:594 6f6d707574657243656e746572311930 9-19: 13:52:04:594 1706035504031310467265655357414e 9-19: 13:52:04:594 2047617465776179311f301d06092a86 9-19: 13:52:04:594 4886f70d010901161061646d696e4069 9-19: 13:52:04:594 666b2e636f6d2e7472 9-19: 13:52:04:594 Sig to Verify 94825a197526f450503a152fb9dc9946 9-19: 13:52:04:594 b211d54746f8a67aa236440244de22ac 9-19: 13:52:04:594 82f5a22aa38255b8c753b20359f2ab58 9-19: 13:52:04:594 a4f99e078ce1d1a4ffe6e45dead77b43 9-19: 13:52:04:594 1b2dedcfb4ee1cd43a956d58d9ee864b 9-19: 13:52:04:594 2f2c45ae503e4b65043e3457fd9b74a7 9-19: 13:52:04:594 5460e9545a1f7e526a9a8e81584e54ea 9-19: 13:52:04:594 fda2a650ab3ee4947f14f2cef0d2c6dc 9-19: 13:52:04:594 fa29dd1699f1ce540a63a4b4f020a4a3 9-19: 13:52:04:594 376cb9f7eee633be9fcf793b52f0c9a0 9-19: 13:52:04:594 7ab311d46cd45705ae825979c5e79166 9-19: 13:52:04:594 2759680cfb56261679bc6a6466a8fa45 9-19: 13:52:04:594 83d2f5f990d82367ab544cbdebd16cf5 9-19: 13:52:04:594 af44056511c7538b351fd72242be3cf5 9-19: 13:52:04:594 4b05b8a7c72da18257449497f9a81936 9-19: 13:52:04:594 a72b628db9ea72a806f5400f2ff9fab6 9-19: 13:52:04:594 ffb70bf33e5eb67dbd179bd42c2e3e76 9-19: 13:52:04:594 a54b 9-19: 13:52:04:594 Error 80090006 during CryptVerifySignature! 9-19: 13:52:04:594 Certificate based Identity. Subject TR, Marmara, Ihlas Finans Kurumu, ComputerCenter, FreeSWAN Gateway, admin@ifk.com.tr Issuing Certificate Authority TR, Marmara, Ihlas Finans Kurumu, ComputerCenter, Ihsan Turkmen, iturkmen@ifk.com.tr Root Certificate Authority TR, Marmara, Ihlas Finans Kurumu, ComputerCenter, Ihsan Turkmen, iturkmen@ifk.com.tr Peer IP Address: 10.0.1.66 9-19: 13:52:04:594 Source IP Address 10.0.1.53 Source IP Address Mask 255.255.255.255 Destination IP Address 10.0.1.66 Destination IP Address Mask 255.255.255.255 Protocol 0 Source Port 0 Destination Port 0 9-19: 13:52:04:594 constructing ISAKMP Header 9-19: 13:52:04:594 constructing HASH (null) 9-19: 13:52:04:594 constructing NOTIFY 24 9-19: 13:52:04:594 constructing HASH (ND) 9-19: 13:52:04:594 Construct ND hash message len = 28 pcklen=80 hashlen=20 9-19: 13:52:04:594 Construct ND Hash mess ID 215b7ff5 9-19: 13:52:04:594 ND Hash skeyid_a f99f12e572092c20e5bc41c166012c06 9-19: 13:52:04:594 fc6f80b5 9-19: 13:52:04:594 ND Hash message 0000001c00000001011000182ec9e831 9-19: 13:52:04:594 0ccd1875ce9d1c251a6ba76f 9-19: 13:52:04:594 isadb_set_status sa:0028AE00 centry:00000000 status cbad033a 9-19: 13:52:04:594 Key Exchange Mode (Main Mode) 9-19: 13:52:04:594 Source IP Address 10.0.1.53 Source IP Address Mask 255.255.255.255 Destination IP Address 10.0.1.66 Destination IP Address Mask 255.255.255.255 Protocol 0 Source Port 0 Destination Port 0 9-19: 13:52:04:594 Me 9-19: 13:52:04:594 Failed to verify signature 9-19: 13:52:04:594 ProcessFailure: sa:0028AE00 centry:00000000 status:cbad033a 9-19: 13:52:04:594 Notify already constructed. Ignoring. Sa 0028AE00 9-19: 13:52:04:594 Throw: State mask=200111f 9-19: 13:52:04:594 Doing tripleDES 9-19: 13:52:04:594 9-19: 13:52:04:594 Sending: SA = 0x0028AE00 to 10.0.1.66 9-19: 13:52:04:594 ISAKMP Header: (V1.0), len = 84 9-19: 13:52:04:594 I-COOKIE 2ec9e8310ccd1875 9-19: 13:52:04:594 R-COOKIE ce9d1c251a6ba76f 9-19: 13:52:04:594 exchange: ISAKMP Informational Exchange 9-19: 13:52:04:594 flags: 1 ( encrypted ) 9-19: 13:52:04:594 next payload: HASH 9-19: 13:52:04:594 message ID: 215b7ff5