dfserver Mon Sep 23 22:06:38 PDT 2002 + _________________________ version + ipsec --version Linux FreeS/WAN U1.96/K1.98b See `ipsec --copyright' for copyright information. + _________________________ proc/version + cat /proc/version Linux version 2.4.19-df1 (root@marek) (gcc version 2.95.2 20000220 (Debian GNU/Linux)) #1 SMP Fri Sep 20 20:12:24 UTC 2002 + _________________________ proc/net/ipsec_eroute + sort +3 /proc/net/ipsec_eroute 0 10.56.106.1/32 -> 10.56.103.1/32 => %trap + _________________________ proc/net/ipsec_spi + cat /proc/net/ipsec_spi + _________________________ proc/net/ipsec_spigrp + cat /proc/net/ipsec_spigrp + _________________________ netstart-rn + netstat -nr Kernel IP routing table Destination Gateway Genmask Flags MSS Window irtt Iface 10.56.103.1 10.56.106.254 255.255.255.255 UGH 40 0 0 ipsec0 10.56.106.0 0.0.0.0 255.255.255.0 U 40 0 0 eth0 10.56.106.0 0.0.0.0 255.255.255.0 U 40 0 0 ipsec0 10.56.102.0 0.0.0.0 255.255.255.0 U 40 0 0 eth1 0.0.0.0 10.56.106.254 0.0.0.0 UG 40 0 0 eth0 + _________________________ proc/net/ipsec_tncfg + cat /proc/net/ipsec_tncfg ipsec0 -> eth0 mtu=16260(1500) -> 1500 ipsec1 -> NULL mtu=0(0) -> 0 ipsec2 -> NULL mtu=0(0) -> 0 ipsec3 -> NULL mtu=0(0) -> 0 + _________________________ proc/net/pf_key + cat /proc/net/pf_key sock pid socket next prev e n p sndbf Flags Type St d577e920 7675 ccd95720 0 0 0 0 2 65535 00000000 3 1 + _________________________ proc/net/pf_key-star + cd /proc/net + egrep '^' pf_key_registered pf_key_supported pf_key_registered:satype socket pid sk pf_key_registered: 2 ccd95720 7675 d577e920 pf_key_registered: 3 ccd95720 7675 d577e920 pf_key_registered: 9 ccd95720 7675 d577e920 pf_key_registered: 10 ccd95720 7675 d577e920 pf_key_supported:satype exttype alg_id ivlen minbits maxbits pf_key_supported: 2 14 3 0 160 160 pf_key_supported: 2 14 2 0 128 128 pf_key_supported: 3 15 3 128 168 168 pf_key_supported: 3 14 3 0 160 160 pf_key_supported: 3 14 2 0 128 128 pf_key_supported: 9 15 1 0 32 32 + _________________________ proc/sys/net/ipsec-star + cd /proc/sys/net/ipsec + egrep '^' icmp inbound_policy_check tos icmp:1 inbound_policy_check:1 tos:1 + _________________________ ipsec/status + ipsec auto --status 000 interface ipsec0/eth0 10.56.106.1 000 000 algorithm ESP encrypt: id=3, name=ESP_3DES 000 algorithm ESP auth attr: id=1, name=AUTH_ALGORITHM_HMAC_MD5 000 algorithm ESP auth attr: id=2, name=AUTH_ALGORITHM_HMAC_SHA1 000 000 "sample": 10.56.106.1---10.56.106.254...10.56.103.1 000 "sample": ike_life: 3600s; ipsec_life: 28800s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 3 000 "sample": policy: PSK+ENCRYPT+PFS+DISABLEARRIVALCHECK; interface: eth0; trap erouted 000 "sample": newest ISAKMP SA: #0; newest IPsec SA: #0; eroute owner: #0 000 "sample": ESP algorithms wanted: 3/000-1/000, 3/000-2/000, 000 "sample": ESP algorithms loaded: 3/168-1/128, 3/168-2/160, 000 + _________________________ ifconfig-a + ifconfig -a eth0 Link encap:Ethernet HWaddr 00:02:A5:8A:35:2C inet addr:10.56.106.1 Bcast:10.56.106.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:9256 errors:0 dropped:0 overruns:0 frame:0 TX packets:3056 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 Interrupt:17 eth1 Link encap:Ethernet HWaddr 00:02:A5:8A:35:1D inet addr:10.56.102.1 Bcast:10.56.102.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:5019 errors:0 dropped:0 overruns:0 frame:0 TX packets:2 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 Interrupt:24 Base address:0x2000 ipsec0 Link encap:Ethernet HWaddr 00:02:A5:8A:35:2C inet addr:10.56.106.1 Mask:255.255.255.0 UP RUNNING NOARP MTU:16260 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:1843 errors:0 dropped:212 overruns:0 carrier:0 collisions:0 txqueuelen:10 ipsec1 Link encap:IPIP Tunnel HWaddr NOARP MTU:0 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:10 ipsec2 Link encap:IPIP Tunnel HWaddr NOARP MTU:0 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:10 ipsec3 Link encap:IPIP Tunnel HWaddr NOARP MTU:0 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:10 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:2699375 errors:0 dropped:0 overruns:0 frame:0 TX packets:2699375 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 + _________________________ ipsec/directory + ipsec --directory /usr/lib/ipsec + _________________________ hostname/fqdn + hostname --fqdn dfserver + _________________________ hostname/ipaddress + hostname --ip-address 127.0.0.1 + _________________________ uptime + uptime 10:06pm up 3 days, 1:56, 1 user, load average: 0.00, 0.07, 0.06 + _________________________ ps + ps alxw + egrep -i 'ppid|pluto|ipsec|klips' F UID PID PPID PRI NI VSZ RSS WCHAN STAT TTY TIME COMMAND 040 0 7670 1 9 0 1752 848 wait4 S ttyS0 0:00 /bin/bash /usr/lib/ipsec/_plutorun --debug all --uniqueids yes --dump --load %search --start %search --wait --pre --post --log daemon.error --pid /var/run/pluto.pid 000 0 7671 1 9 0 1000 436 pipe_w S ttyS0 0:00 logger -p daemon.error -t ipsec__plutorun 040 0 7672 7670 9 0 1752 848 wait4 S ttyS0 0:00 /bin/bash /usr/lib/ipsec/_plutorun --debug all --uniqueids yes --dump --load %search --start %search --wait --pre --post --log daemon.error --pid /var/run/pluto.pid 000 0 7673 7670 8 0 1744 848 pipe_w S ttyS0 0:00 /bin/sh /usr/lib/ipsec/_plutoload --load %search --start %search --wait --post 100 0 7675 7672 9 0 1596 832 select S ttyS0 0:00 /usr/lib/ipsec/pluto --nofork --debug-all --uniqueids 000 0 7778 508 9 0 1736 816 wait4 S ttyS0 0:00 /bin/sh /usr/sbin/ipsec barf 000 0 7779 7778 12 0 1768 868 wait4 S ttyS0 0:00 /bin/sh /usr/lib/ipsec/barf 000 0 7820 7779 12 0 1124 468 pipe_w S ttyS0 0:00 egrep -i ppid|pluto|ipsec|klips + _________________________ ipsec/showdefaults + ipsec showdefaults routephys=eth0 routephys=eth0 routevirt=ipsec0 routevirt=ipsec0 routeaddr=10.56.106.1 routeaddr=10.56.106.1 routenexthop=10.56.106.254 routenexthop=10.56.106.254 defaultroutephys=eth0 defaultroutevirt=ipsec0 defaultrouteaddr=10.56.106.1 defaultroutenexthop=10.56.106.254 + _________________________ ipsec/conf + ipsec _include /etc/ipsec.conf + ipsec _keycensor #< /etc/ipsec.conf 1 # /etc/ipsec.conf - FreeS/WAN IPsec configuration file # More elaborate and more varied sample configurations can be found # in FreeS/WAN's doc/examples file, and in the HTML documentation. # basic configuration config setup # THIS SETTING MUST BE CORRECT or almost nothing will work; # %defaultroute is okay for most simple cases. interfaces=%defaultroute # Debug-logging controls: "none" for (almost) none, "all" for lots. klipsdebug=none plutodebug=all # Use auto= parameters in conn descriptions to control startup actions. plutoload=%search plutostart=%search # Close down old connection when new one using same ID shows up. uniqueids=yes # sample VPN connection conn sample type=transport right=10.56.103.1 left=%defaultroute auto=start + _________________________ ipsec/secrets + ipsec _include /etc/ipsec.secrets + ipsec _secretcensor #< /etc/ipsec.secrets 1 # This file holds shared secrets or RSA private keys for inter-Pluto # authentication. See ipsec_pluto(8) manpage, and HTML documentation. # RSA private key for this host, authenticating it to any other host # which knows the public part. Suitable public keys, for ipsec.conf, DNS, # or configuration of other implementations, can be extracted conveniently # with "[sums to ef67...]". : RSA { # -- not filled in because ipsec.secrets existed at build time -- } # do not change the indenting of that "[sums to 7d9d...]" 10.56.103.1: PSK "[sums to d5dd...]" + _________________________ ipsec/ls-dir + ls -l /usr/lib/ipsec total 812 -rwxr-xr-x 1 root root 11090 Aug 27 14:25 _confread -rwxr-xr-x 1 root root 4224 Aug 27 14:25 _copyright -rwxr-xr-x 1 root root 2164 Aug 27 14:25 _include -rwxr-xr-x 1 root root 1384 Aug 27 14:25 _keycensor -rwxr-xr-x 1 root root 3495 Aug 27 14:25 _plutoload -rwxr-xr-x 1 root root 3618 Aug 27 14:25 _plutorun -rwxr-xr-x 1 root root 7276 Aug 27 14:25 _realsetup -rwxr-xr-x 1 root root 1905 Aug 27 14:25 _secretcensor -rwxr-xr-x 1 root root 6050 Aug 27 14:25 _startklips -rwxr-xr-x 1 root root 5262 Aug 27 14:25 _updown -rwxr-xr-x 1 root root 12335 Aug 27 14:25 auto -rwxr-xr-x 1 root root 7013 Aug 27 14:25 barf -rwxr-xr-x 1 root root 61468 Aug 27 14:25 eroute -rwxr-xr-x 1 root root 2822 Aug 27 14:25 ipsec -rw-r--r-- 1 root root 1950 Aug 27 14:25 ipsec_pr.template -rwxr-xr-x 1 root root 43516 Aug 27 14:25 klipsdebug -rwxr-xr-x 1 root root 2438 Aug 27 14:25 look -rwxr-xr-x 1 root root 16174 Aug 27 14:25 manual -rwxr-xr-x 1 root root 2004 Aug 27 14:25 mkx509cert -rwxr-xr-x 1 root root 1691 Aug 27 14:25 newhostkey -rwxr-xr-x 1 root root 35852 Aug 27 14:25 pf_key -rwxr-xr-x 1 root root 307868 Aug 27 14:25 pluto -rwxr-xr-x 1 root root 6396 Aug 27 14:25 ranbits -rwxr-xr-x 1 root root 16412 Aug 27 14:25 rsasigkey -rwxr-xr-x 1 root root 16657 Aug 27 14:25 send-pr lrwxrwxrwx 1 root root 17 Sep 20 20:44 setup -> /etc/init.d/ipsec -rwxr-xr-x 1 root root 1041 Aug 27 14:25 showdefaults -rwxr-xr-x 1 root root 3485 Aug 27 14:25 showhostkey -rwxr-xr-x 1 root root 70428 Aug 27 14:25 spi -rwxr-xr-x 1 root root 52796 Aug 27 14:25 spigrp -rwxr-xr-x 1 root root 9424 Aug 27 14:25 tncfg -rwxr-xr-x 1 root root 31484 Aug 27 14:25 whack + _________________________ ipsec/updowns ++ ls /usr/lib/ipsec ++ egrep updown + cat /usr/lib/ipsec/_updown #! /bin/sh # default updown script # Copyright (C) 2000, 2001 D. Hugh Redelmeier, Henry Spencer # # This program is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by the # Free Software Foundation; either version 2 of the License, or (at your # option) any later version. See . # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License # for more details. # # RCSID $Id: _updown,v 1.18 2001/11/09 04:12:19 henry Exp $ # CAUTION: Installing a new version of FreeS/WAN will install a new # copy of this script, wiping out any custom changes you make. If # you need changes, make a copy of this under another name, and customize # that, and use the (left/right)updown parameters in ipsec.conf to make # FreeS/WAN use yours instead of this default one. # check interface version case "$PLUTO_VERSION" in 1.[0]) # Older Pluto?!? Play it safe, script may be using new features. echo "$0: obsolete interface version \`$PLUTO_VERSION'," >&2 echo "$0: called by obsolete Pluto?" >&2 exit 2 ;; 1.*) ;; *) echo "$0: unknown interface version \`$PLUTO_VERSION'" >&2 exit 2 ;; esac # check parameter(s) case "$1:$*" in ':') # no parameters ;; ipfwadm:ipfwadm) # due to (left/right)firewall; for default script only ;; custom:*) # custom parameters (see above CAUTION comment) ;; *) echo "$0: unknown parameters \`$*'" >&2 exit 2 ;; esac # utility functions for route manipulation # Meddling with this stuff should not be necessary and requires great care. uproute() { doroute add } downroute() { doroute del } doroute() { parms="-net $PLUTO_PEER_CLIENT_NET netmask $PLUTO_PEER_CLIENT_MASK" parms2="dev $PLUTO_INTERFACE gw $PLUTO_NEXT_HOP" case "$PLUTO_PEER_CLIENT_NET/$PLUTO_PEER_CLIENT_MASK" in "0.0.0.0/0.0.0.0") # horrible kludge for obscure routing bug with opportunistic it="route $1 -net 0.0.0.0 netmask 128.0.0.0 $parms2 &&" it="$it route $1 -net 128.0.0.0 netmask 128.0.0.0 $parms2" route $1 -net 0.0.0.0 netmask 128.0.0.0 $parms2 && route $1 -net 128.0.0.0 netmask 128.0.0.0 $parms2 ;; *) it="route $1 $parms $parms2" route $1 $parms $parms2 ;; esac st=$? if test $st -ne 0 then # route has already given its own cryptic message echo "$0: \`$it' failed" >&2 if test " $1 $st" = " add 7" then # another totally undocumented interface -- 7 and # "SIOCADDRT: Network is unreachable" means that # the gateway isn't reachable. echo "$0: (incorrect or missing nexthop setting??)" >&2 fi fi return $st } # the big choice case "$PLUTO_VERB:$1" in prepare-host:*|prepare-client:*) # delete possibly-existing route (preliminary to adding a route) case "$PLUTO_PEER_CLIENT_NET/$PLUTO_PEER_CLIENT_MASK" in "0.0.0.0/0.0.0.0") # horrible kludge for obscure routing bug with opportunistic parms1="-net 0.0.0.0 netmask 128.0.0.0" parms2="-net 128.0.0.0 netmask 128.0.0.0" it="route del $parms1 2>&1 ; route del $parms2 2>&1" oops="`route del $parms1 2>&1 ; route del $parms2 2>&1`" ;; *) parms="-net $PLUTO_PEER_CLIENT_NET netmask $PLUTO_PEER_CLIENT_MASK" it="route del $parms 2>&1" oops="`route del $parms 2>&1`" ;; esac status="$?" if test " $oops" = " " -a " $status" != " 0" then oops="silent error, exit status $status" fi case "$oops" in 'SIOCDELRT: No such process'*) # This is what route (currently -- not documented!) gives # for "could not find such a route". oops= status=0 ;; esac if test " $oops" != " " -o " $status" != " 0" then echo "$0: \`$it' failed ($oops)" >&2 fi exit $status ;; route-host:*|route-client:*) # connection to me or my client subnet being routed uproute ;; unroute-host:*|unroute-client:*) # connection to me or my client subnet being unrouted downroute ;; up-host:*) # connection to me coming up # If you are doing a custom version, firewall commands go here. ;; down-host:*) # connection to me going down # If you are doing a custom version, firewall commands go here. ;; up-client:) # connection to my client subnet coming up # If you are doing a custom version, firewall commands go here. ;; down-client:) # connection to my client subnet going down # If you are doing a custom version, firewall commands go here. ;; up-client:ipfwadm) # connection to client subnet, with (left/right)firewall=yes, coming up # This is used only by the default updown script, not by your custom # ones, so do not mess with it; see CAUTION comment up at top. ipfwadm -F -i accept -b -S $PLUTO_MY_CLIENT_NET/$PLUTO_MY_CLIENT_MASK \ -D $PLUTO_PEER_CLIENT_NET/$PLUTO_PEER_CLIENT_MASK ;; down-client:ipfwadm) # connection to client subnet, with (left/right)firewall=yes, going down # This is used only by the default updown script, not by your custom # ones, so do not mess with it; see CAUTION comment up at top. ipfwadm -F -d accept -b -S $PLUTO_MY_CLIENT_NET/$PLUTO_MY_CLIENT_MASK \ -D $PLUTO_PEER_CLIENT_NET/$PLUTO_PEER_CLIENT_MASK ;; *) echo "$0: unknown verb \`$PLUTO_VERB' or parameter \`$1'" >&2 exit 1 ;; esac + _________________________ proc/net/dev + cat /proc/net/dev Inter-| Receive | Transmit face |bytes packets errs drop fifo frame compressed multicast|bytes packets errs drop fifo colls carrier compressed lo:150184166 2699379 0 0 0 0 0 0 150184166 2699379 0 0 0 0 0 0 eth0: 3112638 9256 0 0 0 0 0 0 553984 3056 0 0 0 0 0 0 eth1: 301292 5019 0 0 0 0 0 0 84 2 0 0 0 0 0 0 ipsec0: 0 0 0 0 0 0 0 0 475074 1843 0 212 0 0 0 0 ipsec1: 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ipsec2: 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 ipsec3: 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 + _________________________ proc/net/route + cat /proc/net/route Iface Destination Gateway Flags RefCnt Use Metric Mask MTU Window IRTT ipsec0 0167380A FE6A380A 0007 0 0 0 FFFFFFFF 40 0 0 eth0 006A380A 00000000 0001 0 0 0 00FFFFFF 40 0 0 ipsec0 006A380A 00000000 0001 0 0 0 00FFFFFF 40 0 0 eth1 0066380A 00000000 0001 0 0 0 00FFFFFF 40 0 0 eth0 00000000 FE6A380A 0003 0 0 0 00000000 40 0 0 + _________________________ proc/sys/net/ipv4/ip_forward + cat /proc/sys/net/ipv4/ip_forward 0 + _________________________ proc/sys/net/ipv4/conf/star-rp_filter + cd /proc/sys/net/ipv4/conf + egrep '^' all/rp_filter default/rp_filter eth0/rp_filter eth1/rp_filter ipsec0/rp_filter lo/rp_filter all/rp_filter:0 default/rp_filter:0 eth0/rp_filter:0 eth1/rp_filter:0 ipsec0/rp_filter:0 lo/rp_filter:0 + _________________________ uname-a + uname -a Linux dfserver 2.4.19-df1 #1 SMP Fri Sep 20 20:12:24 UTC 2002 i686 unknown + _________________________ redhat-release + test -r /etc/redhat-release + _________________________ proc/net/ipsec_version + cat /proc/net/ipsec_version FreeS/WAN version: 1.98b + _________________________ iptables/list + iptables -L -v -n Chain INPUT (policy ACCEPT 10298 packets, 314K bytes) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- hydra+ * 0.0.0.0/0 0.0.0.0/0 2699K 150M ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0 0 0 REJECT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:4951 reject-with icmp-port-unreachable 0 0 REJECT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:2058 reject-with icmp-port-unreachable 0 0 REJECT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:111 reject-with icmp-port-unreachable 1 60 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 reject-with icmp-port-unreachable 0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:25 reject-with icmp-port-unreachable 0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:5432 reject-with icmp-port-unreachable 0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8007 reject-with icmp-port-unreachable 0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:8080 reject-with icmp-port-unreachable 0 0 REJECT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:111 reject-with icmp-port-unreachable 0 0 REJECT udp -- eth1 * 0.0.0.0/0 0.0.0.0/0 udp dpt:123 reject-with icmp-port-unreachable 0 0 REJECT udp -- eth1 * 0.0.0.0/0 0.0.0.0/0 udp dpt:161 reject-with icmp-port-unreachable 0 0 REJECT tcp -- eth1 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 reject-with icmp-port-unreachable 0 0 REJECT tcp -- eth1 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 reject-with icmp-port-unreachable 1863 451K ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 1531 2247K ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination Chain OUTPUT (policy ACCEPT 2704K packets, 151M bytes) pkts bytes target prot opt in out source destination + _________________________ ipchains/list + ipchains -L -v -n ipchains: Incompatible with this kernel + _________________________ ipfwadm/forward + ipfwadm -F -l -n -e Generic IP Firewall Chains not in this kernel + _________________________ ipfwadm/input + ipfwadm -I -l -n -e Generic IP Firewall Chains not in this kernel + _________________________ ipfwadm/output + ipfwadm -O -l -n -e Generic IP Firewall Chains not in this kernel + _________________________ iptables/nat + iptables -t nat -L -v -n Chain PREROUTING (policy ACCEPT 422 packets, 31464 bytes) pkts bytes target prot opt in out source destination Chain POSTROUTING (policy ACCEPT 1060K packets, 64M bytes) pkts bytes target prot opt in out source destination Chain OUTPUT (policy ACCEPT 1060K packets, 64M bytes) pkts bytes target prot opt in out source destination + _________________________ ipchains/masq + ipchains -M -L -v -n ipchains: cannot open file `/proc/net/ip_masquerade' + _________________________ ipfwadm/masq + ipfwadm -M -l -n -e Generic IP Firewall Chains not in this kernel + _________________________ iptables/mangle + iptables -t mangle -L -v -n Chain PREROUTING (policy ACCEPT 2688K packets, 150M bytes) pkts bytes target prot opt in out source destination Chain INPUT (policy ACCEPT 2687K packets, 150M bytes) pkts bytes target prot opt in out source destination Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination Chain OUTPUT (policy ACCEPT 2679K packets, 150M bytes) pkts bytes target prot opt in out source destination Chain POSTROUTING (policy ACCEPT 2679K packets, 150M bytes) pkts bytes target prot opt in out source destination + _________________________ proc/modules + cat /proc/modules iptable_mangle 2128 0 (autoclean) (unused) iptable_nat 13584 0 (autoclean) (unused) ip_conntrack 14688 1 (autoclean) [iptable_nat] ipt_REJECT 2752 13 (autoclean) iptable_filter 1696 1 (autoclean) ip_tables 10880 6 [iptable_mangle iptable_nat ipt_REJECT iptable_filter] + _________________________ proc/meminfo + cat /proc/meminfo total: used: free: shared: buffers: cached: Mem: 526696448 334327808 192368640 0 7057408 170094592 Swap: 0 0 0 MemTotal: 514352 kB MemFree: 187860 kB MemShared: 0 kB Buffers: 6892 kB Cached: 166108 kB SwapCached: 0 kB Active: 231844 kB Inact_dirty: 43756 kB Inact_clean: 3184 kB Inact_target: 55756 kB HighTotal: 0 kB HighFree: 0 kB LowTotal: 514352 kB LowFree: 187860 kB SwapTotal: 0 kB SwapFree: 0 kB + _________________________ dev/ipsec-ls + ls -l /dev/ipsec c-w------- 1 root root 36, 10 Sep 20 20:46 /dev/ipsec + _________________________ proc/net/ipsec-ls + ls -l /proc/net/ipsec_eroute /proc/net/ipsec_spi /proc/net/ipsec_spigrp /proc/net/ipsec_tncfg /proc/net/ipsec_version -r--r--r-- 1 root root 0 Sep 23 22:06 /proc/net/ipsec_eroute -r--r--r-- 1 root root 0 Sep 23 22:06 /proc/net/ipsec_spi -r--r--r-- 1 root root 0 Sep 23 22:06 /proc/net/ipsec_spigrp -r--r--r-- 1 root root 0 Sep 23 22:06 /proc/net/ipsec_tncfg -r--r--r-- 1 root root 0 Sep 23 22:06 /proc/net/ipsec_version + _________________________ usr/src/linux/.config + test -f /usr/src/linux/.config + _________________________ etc/syslog.conf + cat /etc/syslog.conf # /etc/syslog.conf Configuration file for syslogd. # # For more information see syslog.conf(5) # manpage. # # First some standard logfiles. Log by facility. # auth,authpriv.* /var/log/auth.log *.*;auth,authpriv.none -/var/log/syslog #cron.* /var/log/cron.log daemon.* -/var/log/daemon.log kern.* -/var/log/kern.log lpr.* -/var/log/lpr.log mail.* /var/log/mail.log user.* -/var/log/user.log uucp.* -/var/log/uucp.log # # Logging for the mail system. Split it up so that # it is easy to write scripts to parse these files. # mail.info -/var/log/mail.info mail.warn -/var/log/mail.warn mail.err /var/log/mail.err # Logging for INN news system # news.crit /var/log/news/news.crit news.err /var/log/news/news.err news.notice -/var/log/news/news.notice # # Some `catch-all' logfiles. # *.=debug;\ auth,authpriv.none;\ news.none;mail.none -/var/log/debug *.=info;*.=notice;*.=warn;\ auth,authpriv.none;\ cron,daemon.none;\ mail,news.none -/var/log/messages # # Emergencies are sent to everybody logged in. # *.emerg * # # I like to have messages displayed on the console, but only on a virtual # console I usually leave idle. # #daemon,mail.*;\ # news.=crit;news.=err;news.=notice;\ # *.=debug;*.=info;\ # *.=notice;*.=warn /dev/tty8 # The named pipe /dev/xconsole is for the `xconsole' utility. To use it, # you must invoke `xconsole' with the `-file' option: # # $ xconsole -file /dev/xconsole [...] # # NOTE: adjust the list below, or you'll go crazy if you have a reasonably # busy site.. # daemon.*;mail.*;\ news.crit;news.err;news.notice;\ *.=debug;*.=info;\ *.=notice;*.=warn |/dev/xconsole # Digital Fountain log configuration auth,authpriv.* |/var/tmp/auth.fifo # Digital Fountain end configuration + _________________________ lib/modules-ls + ls -ltr /lib/modules total 8 drwxr-xr-x 5 root root 4096 Sep 20 12:49 2.4.19-pre6-df1 drwxr-xr-x 4 root root 4096 Sep 20 20:08 2.4.19-df1 + _________________________ proc/ksyms-netif_rx + egrep netif_rx /proc/ksyms c01fc86c netif_rx + _________________________ lib/modules-netif_rx + modulegoo kernel/net/ipv4/ipip.o netif_rx + set +x 2.4.19-df1: 2.4.19-pre6-df1: + _________________________ kern.debug + test -f /var/log/kern.debug + _________________________ klog + sed -n '617,$p' /var/log/syslog + egrep -i 'ipsec|klips|pluto' + cat Sep 23 22:00:37 dfserver ipsec_setup: Starting FreeS/WAN IPsec U1.96/K1.98b... Sep 23 22:00:38 dfserver ipsec_setup: KLIPS ipsec0 on eth0 10.56.106.1/255.255.255.0 broadcast 10.56.106.255 Sep 23 22:00:38 dfserver ipsec_setup: ...FreeS/WAN IPsec started Sep 23 22:00:38 dfserver ipsec__plutorun: 003 "/etc/ipsec.secrets" line 10: Modulus keyword not found where expected in RSA key Sep 23 22:01:50 dfserver ipsec__plutorun: 104 "sample" #1: STATE_MAIN_I1: initiate Sep 23 22:01:50 dfserver ipsec__plutorun: 010 "sample" #1: STATE_MAIN_I1: retransmission; will wait 20s for response Sep 23 22:01:50 dfserver ipsec__plutorun: 010 "sample" #1: STATE_MAIN_I1: retransmission; will wait 40s for response Sep 23 22:01:50 dfserver ipsec__plutorun: 031 "sample" #1: max number of retransmissions (2) reached STATE_MAIN_I1. No acceptable response to our first IKE message Sep 23 22:01:50 dfserver ipsec__plutorun: 000 "sample" #1: starting keying attempt 2 of at most 3, but releasing whack Sep 23 22:01:50 dfserver ipsec__plutorun: ...could not start conn "sample" + _________________________ plog + sed -n '17162,$p' /var/log/auth.log + egrep -i pluto + cat Sep 23 22:00:38 dfserver ipsec__plutorun: Starting Pluto subsystem... Sep 23 22:00:38 dfserver Pluto[7675]: Starting Pluto (FreeS/WAN Version 1.96) Sep 23 22:00:38 dfserver Pluto[7675]: including X.509 patch (Version 0.9.9) Sep 23 22:00:38 dfserver Pluto[7675]: | opening /dev/urandom Sep 23 22:00:38 dfserver Pluto[7675]: | inserting event EVENT_REINIT_SECRET, timeout in 3600 seconds Sep 23 22:00:38 dfserver Pluto[7675]: | process 7675 listening for PF_KEY_V2 on file descriptor 6 Sep 23 22:00:38 dfserver Pluto[7675]: | finish_pfkey_msg: SADB_REGISTER message 1 for AH Sep 23 22:00:38 dfserver Pluto[7675]: | 02 07 00 02 02 00 00 00 01 00 00 00 fb 1d 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | pfkey_get: SADB_REGISTER message 1 Sep 23 22:00:38 dfserver Pluto[7675]: | AH registered with kernel. Sep 23 22:00:38 dfserver Pluto[7675]: | finish_pfkey_msg: SADB_REGISTER message 2 for ESP Sep 23 22:00:38 dfserver Pluto[7675]: | 02 07 00 03 02 00 00 00 02 00 00 00 fb 1d 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | pfkey_get: SADB_REGISTER message 2 Sep 23 22:00:38 dfserver Pluto[7675]: | alg_init():memset(0x8094040, 0, 128) memset(0x80940c0, 0, 2048) Sep 23 22:00:38 dfserver Pluto[7675]: | kernel_alg_register_pfkey(): SADB_SATYPE_ESP: sadb_msg_len=7 sadb_supported_len=24 Sep 23 22:00:38 dfserver Pluto[7675]: | kernel_alg_add():satype=3, exttype=14, alg_id=3 Sep 23 22:00:38 dfserver Pluto[7675]: | kernel_alg_add(): assign *0x8094058=*0xbfffeb38 Sep 23 22:00:38 dfserver Pluto[7675]: | kernel_alg_register_pfkey(): SADB_SATYPE_ESP: alg[0], exttype=14, satype=3, alg_id=3, alg_ivlen=0, alg_minbits=160, alg_maxbits=160, res=0, ret=1 Sep 23 22:00:38 dfserver Pluto[7675]: | kernel_alg_add():satype=3, exttype=14, alg_id=2 Sep 23 22:00:38 dfserver Pluto[7675]: | kernel_alg_add(): assign *0x8094050=*0xbfffeb40 Sep 23 22:00:38 dfserver Pluto[7675]: | kernel_alg_register_pfkey(): SADB_SATYPE_ESP: alg[1], exttype=14, satype=3, alg_id=2, alg_ivlen=0, alg_minbits=128, alg_maxbits=128, res=0, ret=1 Sep 23 22:00:38 dfserver Pluto[7675]: | kernel_alg_register_pfkey(): SADB_SATYPE_ESP: sadb_msg_len=7 sadb_supported_len=16 Sep 23 22:00:38 dfserver Pluto[7675]: | kernel_alg_add():satype=3, exttype=15, alg_id=3 Sep 23 22:00:38 dfserver Pluto[7675]: | kernel_alg_add(): assign *0x80940d8=*0xbfffeb50 Sep 23 22:00:38 dfserver Pluto[7675]: | kernel_alg_register_pfkey(): SADB_SATYPE_ESP: alg[2], exttype=15, satype=3, alg_id=3, alg_ivlen=128, alg_minbits=168, alg_maxbits=168, res=0, ret=1 Sep 23 22:00:38 dfserver Pluto[7675]: | ESP registered with kernel. Sep 23 22:00:38 dfserver Pluto[7675]: | finish_pfkey_msg: SADB_REGISTER message 3 for IPCOMP Sep 23 22:00:38 dfserver Pluto[7675]: | 02 07 00 0a 02 00 00 00 03 00 00 00 fb 1d 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | pfkey_get: SADB_REGISTER message 3 Sep 23 22:00:38 dfserver Pluto[7675]: | IPCOMP registered with kernel. Sep 23 22:00:38 dfserver Pluto[7675]: | finish_pfkey_msg: SADB_REGISTER message 4 for IPIP Sep 23 22:00:38 dfserver Pluto[7675]: | 02 07 00 09 02 00 00 00 04 00 00 00 fb 1d 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | pfkey_get: SADB_REGISTER message 4 Sep 23 22:00:38 dfserver Pluto[7675]: | IPIP registered with kernel. Sep 23 22:00:38 dfserver Pluto[7675]: | inserting event EVENT_SHUNT_SCAN, timeout in 120 seconds Sep 23 22:00:38 dfserver Pluto[7675]: Changing to directory '/etc/ipsec.d/cacerts' Sep 23 22:00:38 dfserver Pluto[7675]: Warning: empty directory Sep 23 22:00:38 dfserver Pluto[7675]: Changing to directory '/etc/ipsec.d/crls' Sep 23 22:00:38 dfserver Pluto[7675]: Warning: empty directory Sep 23 22:00:38 dfserver Pluto[7675]: loaded my X.509 cert file '/etc/x509cert.der' (749 bytes) Sep 23 22:00:38 dfserver Pluto[7675]: | file coded in DER format Sep 23 22:00:38 dfserver Pluto[7675]: | L0 - certificate: Sep 23 22:00:38 dfserver Pluto[7675]: | 30 82 02 e9 30 82 02 52 a0 03 02 01 02 02 01 00 Sep 23 22:00:38 dfserver Pluto[7675]: | 30 0d 06 09 2a 86 48 86 f7 0d 01 01 04 05 00 30 Sep 23 22:00:38 dfserver Pluto[7675]: | 5d 31 0b 30 09 06 03 55 04 06 13 02 55 53 31 0b Sep 23 22:00:38 dfserver Pluto[7675]: | 30 09 06 03 55 04 08 13 02 55 53 31 0b 30 09 06 Sep 23 22:00:38 dfserver Pluto[7675]: | 03 55 04 0a 13 02 44 46 31 0e 30 0c 06 03 55 04 Sep 23 22:00:38 dfserver Pluto[7675]: | 0b 13 05 31 30 32 34 30 31 0e 30 0c 06 03 55 04 Sep 23 22:00:38 dfserver Pluto[7675]: | 03 13 05 31 30 32 34 31 31 14 30 12 06 09 2a 86 Sep 23 22:00:38 dfserver Pluto[7675]: | 48 86 f7 0d 01 09 01 16 05 31 30 32 34 32 30 1e Sep 23 22:00:38 dfserver Pluto[7675]: | 17 0d 30 32 30 39 32 31 30 33 34 36 31 34 5a 17 Sep 23 22:00:38 dfserver Pluto[7675]: | 0d 30 36 31 30 33 30 30 33 34 36 31 34 5a 30 5d Sep 23 22:00:38 dfserver Pluto[7675]: | 31 0b 30 09 06 03 55 04 06 13 02 55 53 31 0b 30 Sep 23 22:00:38 dfserver Pluto[7675]: | 09 06 03 55 04 08 13 02 55 53 31 0b 30 09 06 03 Sep 23 22:00:38 dfserver Pluto[7675]: | 55 04 0a 13 02 44 46 31 0e 30 0c 06 03 55 04 0b Sep 23 22:00:38 dfserver Pluto[7675]: | 13 05 31 30 32 34 30 31 0e 30 0c 06 03 55 04 03 Sep 23 22:00:38 dfserver Pluto[7675]: | 13 05 31 30 32 34 31 31 14 30 12 06 09 2a 86 48 Sep 23 22:00:38 dfserver Pluto[7675]: | 86 f7 0d 01 09 01 16 05 31 30 32 34 32 30 81 9f Sep 23 22:00:38 dfserver Pluto[7675]: | 30 0d 06 09 2a 86 48 86 f7 0d 01 01 01 05 00 03 Sep 23 22:00:38 dfserver Pluto[7675]: | 81 8d 00 30 81 89 02 81 81 00 ca 39 aa 0f 2a 30 Sep 23 22:00:38 dfserver Pluto[7675]: | ce 5f be 1f 3c 90 c6 03 0e 34 be 2b 0d 2c 30 dc Sep 23 22:00:38 dfserver Pluto[7675]: | 9c 19 0e af 2f 71 94 f4 25 68 80 35 91 c0 a0 53 Sep 23 22:00:38 dfserver Pluto[7675]: | 16 1b 42 b2 09 63 08 e1 f2 a4 fd 83 54 b9 93 50 Sep 23 22:00:38 dfserver Pluto[7675]: | 3f 1e 11 09 73 f6 76 40 18 a2 9f 76 71 ff 37 33 Sep 23 22:00:38 dfserver Pluto[7675]: | a4 13 8c 18 c4 5b 00 e5 01 18 e4 e8 cd bd 24 eb Sep 23 22:00:38 dfserver Pluto[7675]: | 28 45 16 90 f6 60 98 50 54 ee 9a ae 15 fd f1 ad Sep 23 22:00:38 dfserver Pluto[7675]: | 37 2f 6e a3 1c c6 d3 bc 86 d2 f0 fe 13 bc f9 2e Sep 23 22:00:38 dfserver Pluto[7675]: | d5 4b 16 24 3a 74 7d a1 65 9f 02 03 01 00 01 a3 Sep 23 22:00:38 dfserver Pluto[7675]: | 81 b8 30 81 b5 30 1d 06 03 55 1d 0e 04 16 04 14 Sep 23 22:00:38 dfserver Pluto[7675]: | 00 0d a2 2f 1b 98 1a 14 ce ba f2 86 9e b2 c0 12 Sep 23 22:00:38 dfserver Pluto[7675]: | 38 c8 ef e3 30 81 85 06 03 55 1d 23 04 7e 30 7c Sep 23 22:00:38 dfserver Pluto[7675]: | 80 14 00 0d a2 2f 1b 98 1a 14 ce ba f2 86 9e b2 Sep 23 22:00:38 dfserver Pluto[7675]: | c0 12 38 c8 ef e3 a1 61 a4 5f 30 5d 31 0b 30 09 Sep 23 22:00:38 dfserver Pluto[7675]: | 06 03 55 04 06 13 02 55 53 31 0b 30 09 06 03 55 Sep 23 22:00:38 dfserver Pluto[7675]: | 04 08 13 02 55 53 31 0b 30 09 06 03 55 04 0a 13 Sep 23 22:00:38 dfserver Pluto[7675]: | 02 44 46 31 0e 30 0c 06 03 55 04 0b 13 05 31 30 Sep 23 22:00:38 dfserver Pluto[7675]: | 32 34 30 31 0e 30 0c 06 03 55 04 03 13 05 31 30 Sep 23 22:00:38 dfserver Pluto[7675]: | 32 34 31 31 14 30 12 06 09 2a 86 48 86 f7 0d 01 Sep 23 22:00:38 dfserver Pluto[7675]: | 09 01 16 05 31 30 32 34 32 82 01 00 30 0c 06 03 Sep 23 22:00:38 dfserver Pluto[7675]: | 55 1d 13 04 05 30 03 01 01 ff 30 0d 06 09 2a 86 Sep 23 22:00:38 dfserver Pluto[7675]: | 48 86 f7 0d 01 01 04 05 00 03 81 81 00 5f 4a ff Sep 23 22:00:38 dfserver Pluto[7675]: | 7b 10 71 a1 0c 02 44 25 c0 86 e8 c4 4a 4b f0 f0 Sep 23 22:00:38 dfserver Pluto[7675]: | bd 6c 82 6c a3 b4 3d 52 da d2 6f 2f 63 18 c4 30 Sep 23 22:00:38 dfserver Pluto[7675]: | 23 11 48 22 4e ee 1e ae 01 a3 2c 56 f4 8f d5 75 Sep 23 22:00:38 dfserver Pluto[7675]: | 54 ab f3 eb 49 7a 0e f2 54 c2 14 5e 03 04 ef c0 Sep 23 22:00:38 dfserver Pluto[7675]: | ff 6a c8 80 b7 a7 ff dc ea 07 79 9f 65 43 df b4 Sep 23 22:00:38 dfserver Pluto[7675]: | c4 64 6b 54 17 41 40 b8 a6 f7 8f 56 aa c1 2e d5 Sep 23 22:00:38 dfserver Pluto[7675]: | 88 7b 32 6e b9 b3 b1 b1 bc b4 79 c9 16 79 b8 1f Sep 23 22:00:38 dfserver Pluto[7675]: | 7a 2f a8 0e a9 50 9b 57 97 cb cc f9 fc Sep 23 22:00:38 dfserver Pluto[7675]: | L1 - tbsCertificate: Sep 23 22:00:38 dfserver Pluto[7675]: | 30 82 02 52 a0 03 02 01 02 02 01 00 30 0d 06 09 Sep 23 22:00:38 dfserver Pluto[7675]: | 2a 86 48 86 f7 0d 01 01 04 05 00 30 5d 31 0b 30 Sep 23 22:00:38 dfserver Pluto[7675]: | 09 06 03 55 04 06 13 02 55 53 31 0b 30 09 06 03 Sep 23 22:00:38 dfserver Pluto[7675]: | 55 04 08 13 02 55 53 31 0b 30 09 06 03 55 04 0a Sep 23 22:00:38 dfserver Pluto[7675]: | 13 02 44 46 31 0e 30 0c 06 03 55 04 0b 13 05 31 Sep 23 22:00:38 dfserver Pluto[7675]: | 30 32 34 30 31 0e 30 0c 06 03 55 04 03 13 05 31 Sep 23 22:00:38 dfserver Pluto[7675]: | 30 32 34 31 31 14 30 12 06 09 2a 86 48 86 f7 0d Sep 23 22:00:38 dfserver Pluto[7675]: | 01 09 01 16 05 31 30 32 34 32 30 1e 17 0d 30 32 Sep 23 22:00:38 dfserver Pluto[7675]: | 30 39 32 31 30 33 34 36 31 34 5a 17 0d 30 36 31 Sep 23 22:00:38 dfserver Pluto[7675]: | 30 33 30 30 33 34 36 31 34 5a 30 5d 31 0b 30 09 Sep 23 22:00:38 dfserver Pluto[7675]: | 06 03 55 04 06 13 02 55 53 31 0b 30 09 06 03 55 Sep 23 22:00:38 dfserver Pluto[7675]: | 04 08 13 02 55 53 31 0b 30 09 06 03 55 04 0a 13 Sep 23 22:00:38 dfserver Pluto[7675]: | 02 44 46 31 0e 30 0c 06 03 55 04 0b 13 05 31 30 Sep 23 22:00:38 dfserver Pluto[7675]: | 32 34 30 31 0e 30 0c 06 03 55 04 03 13 05 31 30 Sep 23 22:00:38 dfserver Pluto[7675]: | 32 34 31 31 14 30 12 06 09 2a 86 48 86 f7 0d 01 Sep 23 22:00:38 dfserver Pluto[7675]: | 09 01 16 05 31 30 32 34 32 30 81 9f 30 0d 06 09 Sep 23 22:00:38 dfserver Pluto[7675]: | 2a 86 48 86 f7 0d 01 01 01 05 00 03 81 8d 00 30 Sep 23 22:00:38 dfserver Pluto[7675]: | 81 89 02 81 81 00 ca 39 aa 0f 2a 30 ce 5f be 1f Sep 23 22:00:38 dfserver Pluto[7675]: | 3c 90 c6 03 0e 34 be 2b 0d 2c 30 dc 9c 19 0e af Sep 23 22:00:38 dfserver Pluto[7675]: | 2f 71 94 f4 25 68 80 35 91 c0 a0 53 16 1b 42 b2 Sep 23 22:00:38 dfserver Pluto[7675]: | 09 63 08 e1 f2 a4 fd 83 54 b9 93 50 3f 1e 11 09 Sep 23 22:00:38 dfserver Pluto[7675]: | 73 f6 76 40 18 a2 9f 76 71 ff 37 33 a4 13 8c 18 Sep 23 22:00:38 dfserver Pluto[7675]: | c4 5b 00 e5 01 18 e4 e8 cd bd 24 eb 28 45 16 90 Sep 23 22:00:38 dfserver Pluto[7675]: | f6 60 98 50 54 ee 9a ae 15 fd f1 ad 37 2f 6e a3 Sep 23 22:00:38 dfserver Pluto[7675]: | 1c c6 d3 bc 86 d2 f0 fe 13 bc f9 2e d5 4b 16 24 Sep 23 22:00:38 dfserver Pluto[7675]: | 3a 74 7d a1 65 9f 02 03 01 00 01 a3 81 b8 30 81 Sep 23 22:00:38 dfserver Pluto[7675]: | b5 30 1d 06 03 55 1d 0e 04 16 04 14 00 0d a2 2f Sep 23 22:00:38 dfserver Pluto[7675]: | 1b 98 1a 14 ce ba f2 86 9e b2 c0 12 38 c8 ef e3 Sep 23 22:00:38 dfserver Pluto[7675]: | 30 81 85 06 03 55 1d 23 04 7e 30 7c 80 14 00 0d Sep 23 22:00:38 dfserver Pluto[7675]: | a2 2f 1b 98 1a 14 ce ba f2 86 9e b2 c0 12 38 c8 Sep 23 22:00:38 dfserver Pluto[7675]: | ef e3 a1 61 a4 5f 30 5d 31 0b 30 09 06 03 55 04 Sep 23 22:00:38 dfserver Pluto[7675]: | 06 13 02 55 53 31 0b 30 09 06 03 55 04 08 13 02 Sep 23 22:00:38 dfserver Pluto[7675]: | 55 53 31 0b 30 09 06 03 55 04 0a 13 02 44 46 31 Sep 23 22:00:38 dfserver Pluto[7675]: | 0e 30 0c 06 03 55 04 0b 13 05 31 30 32 34 30 31 Sep 23 22:00:38 dfserver Pluto[7675]: | 0e 30 0c 06 03 55 04 03 13 05 31 30 32 34 31 31 Sep 23 22:00:38 dfserver Pluto[7675]: | 14 30 12 06 09 2a 86 48 86 f7 0d 01 09 01 16 05 Sep 23 22:00:38 dfserver Pluto[7675]: | 31 30 32 34 32 82 01 00 30 0c 06 03 55 1d 13 04 Sep 23 22:00:38 dfserver Pluto[7675]: | 05 30 03 01 01 ff Sep 23 22:00:38 dfserver Pluto[7675]: | L2 - DEFAULT v1: Sep 23 22:00:38 dfserver Pluto[7675]: | L3 - version: Sep 23 22:00:38 dfserver Pluto[7675]: | 02 Sep 23 22:00:38 dfserver Pluto[7675]: | v3 Sep 23 22:00:38 dfserver Pluto[7675]: | L2 - serialNumber: Sep 23 22:00:38 dfserver Pluto[7675]: | 00 Sep 23 22:00:38 dfserver Pluto[7675]: | L2 - signature: Sep 23 22:00:38 dfserver Pluto[7675]: | L3 - sigAlg: Sep 23 22:00:38 dfserver Pluto[7675]: | 'md5WithRSAEncryption' Sep 23 22:00:38 dfserver Pluto[7675]: | L2 - issuer: Sep 23 22:00:38 dfserver Pluto[7675]: | 30 5d 31 0b 30 09 06 03 55 04 06 13 02 55 53 31 Sep 23 22:00:38 dfserver Pluto[7675]: | 0b 30 09 06 03 55 04 08 13 02 55 53 31 0b 30 09 Sep 23 22:00:38 dfserver Pluto[7675]: | 06 03 55 04 0a 13 02 44 46 31 0e 30 0c 06 03 55 Sep 23 22:00:38 dfserver Pluto[7675]: | 04 0b 13 05 31 30 32 34 30 31 0e 30 0c 06 03 55 Sep 23 22:00:38 dfserver Pluto[7675]: | 04 03 13 05 31 30 32 34 31 31 14 30 12 06 09 2a Sep 23 22:00:38 dfserver Pluto[7675]: | 86 48 86 f7 0d 01 09 01 16 05 31 30 32 34 32 Sep 23 22:00:38 dfserver Pluto[7675]: | 'C=US, ST=US, O=DF, OU=10240, CN=10241, E=10242' Sep 23 22:00:38 dfserver Pluto[7675]: | L2 - validity: Sep 23 22:00:38 dfserver Pluto[7675]: | L3 - notBefore: Sep 23 22:00:38 dfserver Pluto[7675]: | 'Sep 21 03:46:14 UTC 2002' Sep 23 22:00:38 dfserver Pluto[7675]: | L3 - notAfter: Sep 23 22:00:38 dfserver Pluto[7675]: | 'Oct 30 03:46:14 UTC 2006' Sep 23 22:00:38 dfserver Pluto[7675]: | L2 - subject: Sep 23 22:00:38 dfserver Pluto[7675]: | 30 5d 31 0b 30 09 06 03 55 04 06 13 02 55 53 31 Sep 23 22:00:38 dfserver Pluto[7675]: | 0b 30 09 06 03 55 04 08 13 02 55 53 31 0b 30 09 Sep 23 22:00:38 dfserver Pluto[7675]: | 06 03 55 04 0a 13 02 44 46 31 0e 30 0c 06 03 55 Sep 23 22:00:38 dfserver Pluto[7675]: | 04 0b 13 05 31 30 32 34 30 31 0e 30 0c 06 03 55 Sep 23 22:00:38 dfserver Pluto[7675]: | 04 03 13 05 31 30 32 34 31 31 14 30 12 06 09 2a Sep 23 22:00:38 dfserver Pluto[7675]: | 86 48 86 f7 0d 01 09 01 16 05 31 30 32 34 32 Sep 23 22:00:38 dfserver Pluto[7675]: | 'C=US, ST=US, O=DF, OU=10240, CN=10241, E=10242' Sep 23 22:00:38 dfserver Pluto[7675]: | L2 - subjectPublicKeyInfo: Sep 23 22:00:38 dfserver Pluto[7675]: | L3 - algorithm: Sep 23 22:00:38 dfserver Pluto[7675]: | L4 - algorithm: Sep 23 22:00:38 dfserver Pluto[7675]: | 'rsaEncryption' Sep 23 22:00:38 dfserver Pluto[7675]: | L3 - subjectPublicKey: Sep 23 22:00:38 dfserver Pluto[7675]: | L4 - RSAPublicKey: Sep 23 22:00:38 dfserver Pluto[7675]: | L5 - modulus: Sep 23 22:00:38 dfserver Pluto[7675]: | 00 ca 39 aa 0f 2a 30 ce 5f be 1f 3c 90 c6 03 0e Sep 23 22:00:38 dfserver Pluto[7675]: | 34 be 2b 0d 2c 30 dc 9c 19 0e af 2f 71 94 f4 25 Sep 23 22:00:38 dfserver Pluto[7675]: | 68 80 35 91 c0 a0 53 16 1b 42 b2 09 63 08 e1 f2 Sep 23 22:00:38 dfserver Pluto[7675]: | a4 fd 83 54 b9 93 50 3f 1e 11 09 73 f6 76 40 18 Sep 23 22:00:38 dfserver Pluto[7675]: | a2 9f 76 71 ff 37 33 a4 13 8c 18 c4 5b 00 e5 01 Sep 23 22:00:38 dfserver Pluto[7675]: | 18 e4 e8 cd bd 24 eb 28 45 16 90 f6 60 98 50 54 Sep 23 22:00:38 dfserver Pluto[7675]: | ee 9a ae 15 fd f1 ad 37 2f 6e a3 1c c6 d3 bc 86 Sep 23 22:00:38 dfserver Pluto[7675]: | d2 f0 fe 13 bc f9 2e d5 4b 16 24 3a 74 7d a1 65 Sep 23 22:00:38 dfserver Pluto[7675]: | 9f Sep 23 22:00:38 dfserver Pluto[7675]: | L5 - publicExponent: Sep 23 22:00:38 dfserver Pluto[7675]: | 01 00 01 Sep 23 22:00:38 dfserver Pluto[7675]: | L2 - optional extensions: Sep 23 22:00:38 dfserver Pluto[7675]: | L3 - extensions: Sep 23 22:00:38 dfserver Pluto[7675]: | L4 - extension: Sep 23 22:00:38 dfserver Pluto[7675]: | L5 - extnID: Sep 23 22:00:38 dfserver Pluto[7675]: | 'subjectKeyIdentifier' Sep 23 22:00:38 dfserver Pluto[7675]: | L5 - critical: Sep 23 22:00:38 dfserver Pluto[7675]: | FALSE Sep 23 22:00:38 dfserver Pluto[7675]: | L5 - extnValue: Sep 23 22:00:38 dfserver Pluto[7675]: | 04 14 00 0d a2 2f 1b 98 1a 14 ce ba f2 86 9e b2 Sep 23 22:00:38 dfserver Pluto[7675]: | c0 12 38 c8 ef e3 Sep 23 22:00:38 dfserver Pluto[7675]: | L4 - extension: Sep 23 22:00:38 dfserver Pluto[7675]: | L5 - extnID: Sep 23 22:00:38 dfserver Pluto[7675]: | 'authorityKeyIdentifier' Sep 23 22:00:38 dfserver Pluto[7675]: | L5 - critical: Sep 23 22:00:38 dfserver Pluto[7675]: | FALSE Sep 23 22:00:38 dfserver Pluto[7675]: | L5 - extnValue: Sep 23 22:00:38 dfserver Pluto[7675]: | 30 7c 80 14 00 0d a2 2f 1b 98 1a 14 ce ba f2 86 Sep 23 22:00:38 dfserver Pluto[7675]: | 9e b2 c0 12 38 c8 ef e3 a1 61 a4 5f 30 5d 31 0b Sep 23 22:00:38 dfserver Pluto[7675]: | 30 09 06 03 55 04 06 13 02 55 53 31 0b 30 09 06 Sep 23 22:00:38 dfserver Pluto[7675]: | 03 55 04 08 13 02 55 53 31 0b 30 09 06 03 55 04 Sep 23 22:00:38 dfserver Pluto[7675]: | 0a 13 02 44 46 31 0e 30 0c 06 03 55 04 0b 13 05 Sep 23 22:00:38 dfserver Pluto[7675]: | 31 30 32 34 30 31 0e 30 0c 06 03 55 04 03 13 05 Sep 23 22:00:38 dfserver Pluto[7675]: | 31 30 32 34 31 31 14 30 12 06 09 2a 86 48 86 f7 Sep 23 22:00:38 dfserver Pluto[7675]: | 0d 01 09 01 16 05 31 30 32 34 32 82 01 00 Sep 23 22:00:38 dfserver Pluto[7675]: | L4 - extension: Sep 23 22:00:38 dfserver Pluto[7675]: | L5 - extnID: Sep 23 22:00:38 dfserver Pluto[7675]: | 'basicConstraints' Sep 23 22:00:38 dfserver Pluto[7675]: | L5 - critical: Sep 23 22:00:38 dfserver Pluto[7675]: | FALSE Sep 23 22:00:38 dfserver Pluto[7675]: | L5 - extnValue: Sep 23 22:00:38 dfserver Pluto[7675]: | 30 03 01 01 ff Sep 23 22:00:38 dfserver Pluto[7675]: | L1 - signatureAlgorithm: Sep 23 22:00:38 dfserver Pluto[7675]: | L2 - algorithm: Sep 23 22:00:38 dfserver Pluto[7675]: | 'md5WithRSAEncryption' Sep 23 22:00:38 dfserver Pluto[7675]: | L1 - signature: Sep 23 22:00:38 dfserver Pluto[7675]: | 00 5f 4a ff 7b 10 71 a1 0c 02 44 25 c0 86 e8 c4 Sep 23 22:00:38 dfserver Pluto[7675]: | 4a 4b f0 f0 bd 6c 82 6c a3 b4 3d 52 da d2 6f 2f Sep 23 22:00:38 dfserver Pluto[7675]: | 63 18 c4 30 23 11 48 22 4e ee 1e ae 01 a3 2c 56 Sep 23 22:00:38 dfserver Pluto[7675]: | f4 8f d5 75 54 ab f3 eb 49 7a 0e f2 54 c2 14 5e Sep 23 22:00:38 dfserver Pluto[7675]: | 03 04 ef c0 ff 6a c8 80 b7 a7 ff dc ea 07 79 9f Sep 23 22:00:38 dfserver Pluto[7675]: | 65 43 df b4 c4 64 6b 54 17 41 40 b8 a6 f7 8f 56 Sep 23 22:00:38 dfserver Pluto[7675]: | aa c1 2e d5 88 7b 32 6e b9 b3 b1 b1 bc b4 79 c9 Sep 23 22:00:38 dfserver Pluto[7675]: | 16 79 b8 1f 7a 2f a8 0e a9 50 9b 57 97 cb cc f9 Sep 23 22:00:38 dfserver Pluto[7675]: | fc Sep 23 22:00:38 dfserver Pluto[7675]: | next event EVENT_SHUNT_SCAN in 120 seconds Sep 23 22:00:38 dfserver Pluto[7675]: | Sep 23 22:00:38 dfserver Pluto[7675]: | *received whack message Sep 23 22:00:38 dfserver Pluto[7675]: | from whack: got --esp=3des Sep 23 22:00:38 dfserver Pluto[7675]: | alg_info_create_from_str() ealg_buf=3des aalg_buf=eklen=0 aklen=0 Sep 23 22:00:38 dfserver Pluto[7675]: | enum_search_prefix() calling enum_search(0x807cba4, "ESP_3DES") Sep 23 22:00:38 dfserver Pluto[7675]: | parser_alg_info_add() esp_ealg_getbyname("3des")=3 Sep 23 22:00:38 dfserver Pluto[7675]: | __alg_info_esp_add() ealg=3 aalg=1 cnt=1 Sep 23 22:00:38 dfserver Pluto[7675]: | __alg_info_esp_add() ealg=3 aalg=2 cnt=2 Sep 23 22:00:38 dfserver Pluto[7675]: | esp string values: 3/000-1/000, 3/000-2/000, Sep 23 22:00:38 dfserver Pluto[7675]: | alg_info_addref() alg_info->ref_cnt=1 Sep 23 22:00:38 dfserver Pluto[7675]: added connection description "sample" Sep 23 22:00:38 dfserver Pluto[7675]: | 10.56.106.1---10.56.106.254...10.56.103.1 Sep 23 22:00:38 dfserver Pluto[7675]: | ike_life: 3600s; ipsec_life: 28800s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 3; policy: PSK+ENCRYPT+PFS+DISABLEARRIVALCHECK Sep 23 22:00:38 dfserver Pluto[7675]: | next event EVENT_SHUNT_SCAN in 120 seconds Sep 23 22:00:38 dfserver Pluto[7675]: | Sep 23 22:00:38 dfserver Pluto[7675]: | *received whack message Sep 23 22:00:38 dfserver Pluto[7675]: listening for IKE messages Sep 23 22:00:38 dfserver Pluto[7675]: | found lo with address 127.0.0.1 Sep 23 22:00:38 dfserver Pluto[7675]: | found eth0 with address 10.56.106.1 Sep 23 22:00:38 dfserver Pluto[7675]: | found eth1 with address 10.56.102.1 Sep 23 22:00:38 dfserver Pluto[7675]: | found ipsec0 with address 10.56.106.1 Sep 23 22:00:38 dfserver Pluto[7675]: | IP interface eth1 10.56.102.1 has no matching ipsec* interface -- ignored Sep 23 22:00:38 dfserver Pluto[7675]: adding interface ipsec0/eth0 10.56.106.1 Sep 23 22:00:38 dfserver Pluto[7675]: | IP interface lo 127.0.0.1 has no matching ipsec* interface -- ignored Sep 23 22:00:38 dfserver Pluto[7675]: | could not open /proc/net/if_inet6 Sep 23 22:00:38 dfserver Pluto[7675]: loading secrets from "/etc/ipsec.secrets" Sep 23 22:00:38 dfserver Pluto[7675]: "/etc/ipsec.secrets" line 10: Modulus keyword not found where expected in RSA key Sep 23 22:00:38 dfserver Pluto[7675]: | next event EVENT_SHUNT_SCAN in 120 seconds Sep 23 22:00:38 dfserver Pluto[7675]: | Sep 23 22:00:38 dfserver Pluto[7675]: | *received whack message Sep 23 22:00:38 dfserver Pluto[7675]: | route owner of "sample" CK_PERMANENT unrouted: NULL; eroute owner: NULL Sep 23 22:00:38 dfserver Pluto[7675]: | route owner of "sample" CK_PERMANENT unrouted: NULL; eroute owner: NULL Sep 23 22:00:38 dfserver Pluto[7675]: | add eroute 10.56.106.1/32 -> 10.56.103.1/32 => %trap Sep 23 22:00:38 dfserver Pluto[7675]: | finish_pfkey_msg: SADB_X_ADDFLOW message 5 for flow %trap Sep 23 22:00:38 dfserver Pluto[7675]: | 02 0e 00 0b 16 00 00 00 05 00 00 00 fb 1d 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | 02 00 01 00 00 00 01 04 00 00 00 00 00 00 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | 03 00 05 00 00 00 00 00 02 00 00 00 0a 38 6a 01 Sep 23 22:00:38 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 03 00 06 00 00 00 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | 03 00 15 00 00 00 00 00 02 00 00 00 0a 38 6a 01 Sep 23 22:00:38 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 03 00 16 00 00 00 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | 02 00 00 00 0a 38 67 01 00 00 00 00 00 00 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | 03 00 17 00 00 00 00 00 02 00 00 00 ff ff ff ff Sep 23 22:00:38 dfserver Pluto[7675]: | 38 90 04 08 78 f6 ff bf 03 00 18 00 00 00 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | 02 00 00 00 ff ff ff ff 1f 00 00 00 52 8b 08 40 Sep 23 22:00:38 dfserver Pluto[7675]: | pfkey_get: SADB_X_ADDFLOW message 5 Sep 23 22:00:38 dfserver Pluto[7675]: | executing prepare-host: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='prepare-host' PLUTO_CONNECTION='sample' PLUTO_NEXT_HOP='10.56.106.254' PLUTO_INTERFACE='ipsec0' PLUTO_ME='10.56.106.1' PLUTO_MY_ID='10.56.106.1' PLUTO_MY_CLIENT='10.56.106.1/32' PLUTO_MY_CLIENT_NET='10.56.106.1' PLUTO_MY_CLIENT_MASK='255.255.255.255' PLUTO_PEER='10.56.103.1' PLUTO_PEER_ID='10.56.103.1' PLUTO_PEER_CLIENT='10.56.103.1/32' PLUTO_PEER_CLIENT_NET='10.56.103.1' PLUTO_PEER_CLIENT_MASK='255.255.255.255' ipsec _updown Sep 23 22:00:38 dfserver Pluto[7675]: | executing route-host: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='route-host' PLUTO_CONNECTION='sample' PLUTO_NEXT_HOP='10.56.106.254' PLUTO_INTERFACE='ipsec0' PLUTO_ME='10.56.106.1' PLUTO_MY_ID='10.56.106.1' PLUTO_MY_CLIENT='10.56.106.1/32' PLUTO_MY_CLIENT_NET='10.56.106.1' PLUTO_MY_CLIENT_MASK='255.255.255.255' PLUTO_PEER='10.56.103.1' PLUTO_PEER_ID='10.56.103.1' PLUTO_PEER_CLIENT='10.56.103.1/32' PLUTO_PEER_CLIENT_NET='10.56.103.1' PLUTO_PEER_CLIENT_MASK='255.255.255.255' ipsec _updown Sep 23 22:00:38 dfserver Pluto[7675]: | next event EVENT_SHUNT_SCAN in 120 seconds Sep 23 22:00:38 dfserver Pluto[7675]: | Sep 23 22:00:38 dfserver Pluto[7675]: | *received whack message Sep 23 22:00:38 dfserver Pluto[7675]: | creating state object #1 at 0x80a6db0 Sep 23 22:00:38 dfserver Pluto[7675]: | ICOOKIE: ad 19 8a 93 52 f3 54 6e Sep 23 22:00:38 dfserver Pluto[7675]: | RCOOKIE: 00 00 00 00 00 00 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:00:38 dfserver Pluto[7675]: | state hash entry 22 Sep 23 22:00:38 dfserver Pluto[7675]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #1 Sep 23 22:00:38 dfserver Pluto[7675]: | Queuing pending Quick Mode with 10.56.103.1 "sample" Sep 23 22:00:38 dfserver Pluto[7675]: "sample" #1: initiating Main Mode Sep 23 22:00:38 dfserver Pluto[7675]: | **emit ISAKMP Message: Sep 23 22:00:38 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:00:38 dfserver Pluto[7675]: | ad 19 8a 93 52 f3 54 6e Sep 23 22:00:38 dfserver Pluto[7675]: | responder cookie: Sep 23 22:00:38 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:00:38 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:00:38 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:00:38 dfserver Pluto[7675]: | flags: none Sep 23 22:00:38 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:00:38 dfserver Pluto[7675]: | ***emit ISAKMP Security Association Payload: Sep 23 22:00:38 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:00:38 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:00:38 dfserver Pluto[7675]: | ****emit IPsec DOI SIT: Sep 23 22:00:38 dfserver Pluto[7675]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Sep 23 22:00:38 dfserver Pluto[7675]: | ****emit ISAKMP Proposal Payload: Sep 23 22:00:38 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:00:38 dfserver Pluto[7675]: | proposal number: 0 Sep 23 22:00:38 dfserver Pluto[7675]: | protocol ID: PROTO_ISAKMP Sep 23 22:00:38 dfserver Pluto[7675]: | SPI size: 0 Sep 23 22:00:38 dfserver Pluto[7675]: | number of transforms: 4 Sep 23 22:00:40 dfserver Pluto[7675]: | *****emit ISAKMP Transform Payload (ISAKMP): Sep 23 22:00:40 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:00:40 dfserver Pluto[7675]: | transform number: 0 Sep 23 22:00:40 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:40 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:40 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:40 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:40 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_GROUP_DESCRIPTION Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:40 dfserver Pluto[7675]: | [5 is OAKLEY_GROUP_MODP1536 (extension)] Sep 23 22:00:40 dfserver Pluto[7675]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Sep 23 22:00:40 dfserver Pluto[7675]: | *****emit ISAKMP Transform Payload (ISAKMP): Sep 23 22:00:40 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:00:40 dfserver Pluto[7675]: | transform number: 1 Sep 23 22:00:40 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:40 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:40 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:00:40 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:40 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_GROUP_DESCRIPTION Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:40 dfserver Pluto[7675]: | [5 is OAKLEY_GROUP_MODP1536 (extension)] Sep 23 22:00:40 dfserver Pluto[7675]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Sep 23 22:00:40 dfserver Pluto[7675]: | *****emit ISAKMP Transform Payload (ISAKMP): Sep 23 22:00:40 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:00:40 dfserver Pluto[7675]: | transform number: 2 Sep 23 22:00:40 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:40 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:40 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:00:40 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:40 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_GROUP_DESCRIPTION Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:00:40 dfserver Pluto[7675]: | [2 is OAKLEY_GROUP_MODP1024] Sep 23 22:00:40 dfserver Pluto[7675]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Sep 23 22:00:40 dfserver Pluto[7675]: | *****emit ISAKMP Transform Payload (ISAKMP): Sep 23 22:00:40 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:00:40 dfserver Pluto[7675]: | transform number: 3 Sep 23 22:00:40 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:40 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:40 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:40 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:40 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:00:40 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:00:40 dfserver Pluto[7675]: | af+type: OAKLEY_GROUP_DESCRIPTION Sep 23 22:00:40 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:00:40 dfserver Pluto[7675]: | [2 is OAKLEY_GROUP_MODP1024] Sep 23 22:00:40 dfserver Pluto[7675]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Sep 23 22:00:40 dfserver Pluto[7675]: | emitting length of ISAKMP Proposal Payload: 136 Sep 23 22:00:40 dfserver Pluto[7675]: | emitting length of ISAKMP Security Association Payload: 148 Sep 23 22:00:40 dfserver Pluto[7675]: | emitting length of ISAKMP Message: 176 Sep 23 22:00:40 dfserver Pluto[7675]: | sending 176 bytes for main_outI1 through eth0 to 10.56.103.1:500: Sep 23 22:00:40 dfserver Pluto[7675]: | ad 19 8a 93 52 f3 54 6e 00 00 00 00 00 00 00 00 Sep 23 22:00:40 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:00:40 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:00:40 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:40 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:00:40 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:40 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:00:40 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:40 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:00:40 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:40 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:00:40 dfserver Pluto[7675]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #1 Sep 23 22:00:40 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 10 seconds for #1 Sep 23 22:00:41 dfserver Pluto[7675]: | Sep 23 22:00:41 dfserver Pluto[7675]: | *received 176 bytes from 10.56.103.1:500 on eth0 Sep 23 22:00:41 dfserver Pluto[7675]: | 34 ae 81 ec c7 68 ed 32 00 00 00 00 00 00 00 00 Sep 23 22:00:41 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:00:41 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:00:41 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:41 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:00:41 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:41 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:00:41 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:41 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:00:41 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:41 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:00:41 dfserver Pluto[7675]: | **parse ISAKMP Message: Sep 23 22:00:41 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:00:41 dfserver Pluto[7675]: | 34 ae 81 ec c7 68 ed 32 Sep 23 22:00:41 dfserver Pluto[7675]: | responder cookie: Sep 23 22:00:41 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 Sep 23 22:00:41 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:00:41 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:00:41 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:00:41 dfserver Pluto[7675]: | flags: none Sep 23 22:00:41 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:00:41 dfserver Pluto[7675]: | length: 176 Sep 23 22:00:41 dfserver Pluto[7675]: | ***parse ISAKMP Security Association Payload: Sep 23 22:00:41 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:00:41 dfserver Pluto[7675]: | length: 148 Sep 23 22:00:41 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:00:41 dfserver Pluto[7675]: | creating state object #2 at 0x80a75c0 Sep 23 22:00:41 dfserver Pluto[7675]: | ICOOKIE: 34 ae 81 ec c7 68 ed 32 Sep 23 22:00:41 dfserver Pluto[7675]: | RCOOKIE: b0 f0 57 a4 f3 fa 07 75 Sep 23 22:00:41 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:00:41 dfserver Pluto[7675]: | state hash entry 11 Sep 23 22:00:41 dfserver Pluto[7675]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #2 Sep 23 22:00:41 dfserver Pluto[7675]: "sample" #2: responding to Main Mode Sep 23 22:00:41 dfserver Pluto[7675]: | **emit ISAKMP Message: Sep 23 22:00:41 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:00:41 dfserver Pluto[7675]: | 34 ae 81 ec c7 68 ed 32 Sep 23 22:00:41 dfserver Pluto[7675]: | responder cookie: Sep 23 22:00:41 dfserver Pluto[7675]: | b0 f0 57 a4 f3 fa 07 75 Sep 23 22:00:41 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:00:41 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:00:41 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:00:41 dfserver Pluto[7675]: | flags: none Sep 23 22:00:41 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:00:41 dfserver Pluto[7675]: | ***emit ISAKMP Security Association Payload: Sep 23 22:00:41 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:00:41 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:00:41 dfserver Pluto[7675]: | ****parse IPsec DOI SIT: Sep 23 22:00:41 dfserver Pluto[7675]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Sep 23 22:00:41 dfserver Pluto[7675]: | ****parse ISAKMP Proposal Payload: Sep 23 22:00:41 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:00:41 dfserver Pluto[7675]: | length: 136 Sep 23 22:00:41 dfserver Pluto[7675]: | proposal number: 0 Sep 23 22:00:41 dfserver Pluto[7675]: | protocol ID: PROTO_ISAKMP Sep 23 22:00:41 dfserver Pluto[7675]: | SPI size: 0 Sep 23 22:00:41 dfserver Pluto[7675]: | number of transforms: 4 Sep 23 22:00:41 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:00:41 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:00:41 dfserver Pluto[7675]: | length: 32 Sep 23 22:00:41 dfserver Pluto[7675]: | transform number: 0 Sep 23 22:00:41 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:00:41 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:41 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:00:41 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:41 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:00:41 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:41 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:00:41 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:00:41 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:41 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:00:41 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:41 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:00:41 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:41 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:00:41 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:41 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:00:41 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:41 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:41 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:41 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:00:41 dfserver Pluto[7675]: "sample" #2: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:41 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:00:41 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:00:41 dfserver Pluto[7675]: | length: 32 Sep 23 22:00:41 dfserver Pluto[7675]: | transform number: 1 Sep 23 22:00:41 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:00:41 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:43 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:43 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:00:43 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:43 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:00:43 dfserver Pluto[7675]: "sample" #2: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:43 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:00:43 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:00:43 dfserver Pluto[7675]: | length: 32 Sep 23 22:00:43 dfserver Pluto[7675]: | transform number: 2 Sep 23 22:00:43 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:43 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:43 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:00:43 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:43 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:00:43 dfserver Pluto[7675]: "sample" #2: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:43 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:00:43 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:00:43 dfserver Pluto[7675]: | length: 32 Sep 23 22:00:43 dfserver Pluto[7675]: | transform number: 3 Sep 23 22:00:43 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:43 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:43 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:43 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:00:43 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:43 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:43 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:43 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:00:43 dfserver Pluto[7675]: "sample" #2: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:43 dfserver Pluto[7675]: "sample" #2: no acceptable Oakley Transform Sep 23 22:00:43 dfserver Pluto[7675]: | state transition function for STATE_MAIN_R0 failed: NO_PROPOSAL_CHOSEN Sep 23 22:00:43 dfserver Pluto[7675]: | next event EVENT_SO_DISCARD in -2 seconds for #2 Sep 23 22:00:43 dfserver Pluto[7675]: | Sep 23 22:00:43 dfserver Pluto[7675]: | *time to handle event Sep 23 22:00:43 dfserver Pluto[7675]: | event after this is EVENT_RETRANSMIT in 7 seconds Sep 23 22:00:43 dfserver Pluto[7675]: | ICOOKIE: 34 ae 81 ec c7 68 ed 32 Sep 23 22:00:43 dfserver Pluto[7675]: | RCOOKIE: b0 f0 57 a4 f3 fa 07 75 Sep 23 22:00:43 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:00:43 dfserver Pluto[7675]: | state hash entry 11 Sep 23 22:00:43 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 7 seconds for #1 Sep 23 22:00:50 dfserver Pluto[7675]: | Sep 23 22:00:50 dfserver Pluto[7675]: | *time to handle event Sep 23 22:00:50 dfserver Pluto[7675]: | event after this is EVENT_SHUNT_SCAN in 108 seconds Sep 23 22:00:50 dfserver Pluto[7675]: | handling event EVENT_RETRANSMIT for 10.56.103.1 "sample" #1 Sep 23 22:00:50 dfserver Pluto[7675]: | sending 176 bytes for EVENT_RETRANSMIT through eth0 to 10.56.103.1:500: Sep 23 22:00:50 dfserver Pluto[7675]: | ad 19 8a 93 52 f3 54 6e 00 00 00 00 00 00 00 00 Sep 23 22:00:50 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:00:50 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:00:50 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:50 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:00:50 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:50 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:00:50 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:50 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:00:50 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:50 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:00:50 dfserver Pluto[7675]: | inserting event EVENT_RETRANSMIT, timeout in 20 seconds for #1 Sep 23 22:00:50 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 20 seconds for #1 Sep 23 22:00:51 dfserver Pluto[7675]: | Sep 23 22:00:51 dfserver Pluto[7675]: | *received 176 bytes from 10.56.103.1:500 on eth0 Sep 23 22:00:51 dfserver Pluto[7675]: | 34 ae 81 ec c7 68 ed 32 00 00 00 00 00 00 00 00 Sep 23 22:00:51 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:00:51 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:00:51 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:51 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:00:51 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:51 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:00:51 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:51 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:00:51 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:00:51 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:00:51 dfserver Pluto[7675]: | **parse ISAKMP Message: Sep 23 22:00:51 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:00:51 dfserver Pluto[7675]: | 34 ae 81 ec c7 68 ed 32 Sep 23 22:00:51 dfserver Pluto[7675]: | responder cookie: Sep 23 22:00:51 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 Sep 23 22:00:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:00:51 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:00:51 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:00:51 dfserver Pluto[7675]: | flags: none Sep 23 22:00:51 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:00:51 dfserver Pluto[7675]: | length: 176 Sep 23 22:00:51 dfserver Pluto[7675]: | ***parse ISAKMP Security Association Payload: Sep 23 22:00:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:00:51 dfserver Pluto[7675]: | length: 148 Sep 23 22:00:51 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:00:51 dfserver Pluto[7675]: | creating state object #3 at 0x80a75d8 Sep 23 22:00:51 dfserver Pluto[7675]: | ICOOKIE: 34 ae 81 ec c7 68 ed 32 Sep 23 22:00:51 dfserver Pluto[7675]: | RCOOKIE: 90 5d dc bc 33 f6 25 f4 Sep 23 22:00:51 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:00:51 dfserver Pluto[7675]: | state hash entry 16 Sep 23 22:00:51 dfserver Pluto[7675]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #3 Sep 23 22:00:51 dfserver Pluto[7675]: "sample" #3: responding to Main Mode Sep 23 22:00:51 dfserver Pluto[7675]: | **emit ISAKMP Message: Sep 23 22:00:51 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:00:51 dfserver Pluto[7675]: | 34 ae 81 ec c7 68 ed 32 Sep 23 22:00:51 dfserver Pluto[7675]: | responder cookie: Sep 23 22:00:51 dfserver Pluto[7675]: | 90 5d dc bc 33 f6 25 f4 Sep 23 22:00:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:00:51 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:00:51 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:00:51 dfserver Pluto[7675]: | flags: none Sep 23 22:00:51 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:00:51 dfserver Pluto[7675]: | ***emit ISAKMP Security Association Payload: Sep 23 22:00:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:00:51 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:00:51 dfserver Pluto[7675]: | ****parse IPsec DOI SIT: Sep 23 22:00:51 dfserver Pluto[7675]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Sep 23 22:00:51 dfserver Pluto[7675]: | ****parse ISAKMP Proposal Payload: Sep 23 22:00:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:00:51 dfserver Pluto[7675]: | length: 136 Sep 23 22:00:51 dfserver Pluto[7675]: | proposal number: 0 Sep 23 22:00:51 dfserver Pluto[7675]: | protocol ID: PROTO_ISAKMP Sep 23 22:00:51 dfserver Pluto[7675]: | SPI size: 0 Sep 23 22:00:51 dfserver Pluto[7675]: | number of transforms: 4 Sep 23 22:00:51 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:00:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:00:51 dfserver Pluto[7675]: | length: 32 Sep 23 22:00:51 dfserver Pluto[7675]: | transform number: 0 Sep 23 22:00:51 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:51 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:51 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:51 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:51 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:00:51 dfserver Pluto[7675]: "sample" #3: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:51 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:00:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:00:51 dfserver Pluto[7675]: | length: 32 Sep 23 22:00:51 dfserver Pluto[7675]: | transform number: 1 Sep 23 22:00:51 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:51 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:51 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:00:51 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:51 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:00:51 dfserver Pluto[7675]: "sample" #3: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:51 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:00:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:00:51 dfserver Pluto[7675]: | length: 32 Sep 23 22:00:51 dfserver Pluto[7675]: | transform number: 2 Sep 23 22:00:51 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:51 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:51 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:00:51 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:51 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:00:51 dfserver Pluto[7675]: "sample" #3: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:51 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:00:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:00:51 dfserver Pluto[7675]: | length: 32 Sep 23 22:00:51 dfserver Pluto[7675]: | transform number: 3 Sep 23 22:00:51 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:51 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:00:51 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:51 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:00:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:00:51 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:00:51 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:00:51 dfserver Pluto[7675]: "sample" #3: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:00:51 dfserver Pluto[7675]: "sample" #3: no acceptable Oakley Transform Sep 23 22:00:51 dfserver Pluto[7675]: | state transition function for STATE_MAIN_R0 failed: NO_PROPOSAL_CHOSEN Sep 23 22:00:51 dfserver Pluto[7675]: | next event EVENT_SO_DISCARD in 0 seconds for #3 Sep 23 22:00:51 dfserver Pluto[7675]: | Sep 23 22:00:51 dfserver Pluto[7675]: | *time to handle event Sep 23 22:00:51 dfserver Pluto[7675]: | event after this is EVENT_RETRANSMIT in 19 seconds Sep 23 22:00:51 dfserver Pluto[7675]: | ICOOKIE: 34 ae 81 ec c7 68 ed 32 Sep 23 22:00:51 dfserver Pluto[7675]: | RCOOKIE: 90 5d dc bc 33 f6 25 f4 Sep 23 22:00:51 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:00:51 dfserver Pluto[7675]: | state hash entry 16 Sep 23 22:00:51 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 19 seconds for #1 Sep 23 22:00:52 dfserver Pluto[7675]: | Sep 23 22:00:52 dfserver Pluto[7675]: | *received whack message Sep 23 22:00:52 dfserver Pluto[7675]: | kernel_alg_esp_enc_ok(3): alg_id=3, alg_ivlen=128, alg_minbits=168, alg_maxbits=168, res=0, ret=1 Sep 23 22:00:52 dfserver Pluto[7675]: | kernel_alg_esp_auth_ok(auth=1): ret=1 Sep 23 22:00:52 dfserver Pluto[7675]: | kernel_alg_esp_enc_keylen():alg_id=3, keylen=21 Sep 23 22:00:52 dfserver Pluto[7675]: | kernel_alg_esp_auth_keylen(auth=1, sadb_aalg=2): a_keylen=16 Sep 23 22:00:52 dfserver Pluto[7675]: | kernel_alg_esp_enc_ok(3): alg_id=3, alg_ivlen=128, alg_minbits=168, alg_maxbits=168, res=0, ret=1 Sep 23 22:00:52 dfserver Pluto[7675]: | kernel_alg_esp_auth_ok(auth=2): ret=1 Sep 23 22:00:52 dfserver Pluto[7675]: | kernel_alg_esp_enc_keylen():alg_id=3, keylen=21 Sep 23 22:00:52 dfserver Pluto[7675]: | kernel_alg_esp_auth_keylen(auth=2, sadb_aalg=3): a_keylen=20 Sep 23 22:00:52 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 18 seconds for #1 Sep 23 22:01:00 dfserver Pluto[7675]: | Sep 23 22:01:00 dfserver Pluto[7675]: | *received whack message Sep 23 22:01:00 dfserver Pluto[7675]: | kernel_alg_esp_enc_ok(3): alg_id=3, alg_ivlen=128, alg_minbits=168, alg_maxbits=168, res=0, ret=1 Sep 23 22:01:00 dfserver Pluto[7675]: | kernel_alg_esp_auth_ok(auth=1): ret=1 Sep 23 22:01:00 dfserver Pluto[7675]: | kernel_alg_esp_enc_keylen():alg_id=3, keylen=21 Sep 23 22:01:00 dfserver Pluto[7675]: | kernel_alg_esp_auth_keylen(auth=1, sadb_aalg=2): a_keylen=16 Sep 23 22:01:00 dfserver Pluto[7675]: | kernel_alg_esp_enc_ok(3): alg_id=3, alg_ivlen=128, alg_minbits=168, alg_maxbits=168, res=0, ret=1 Sep 23 22:01:00 dfserver Pluto[7675]: | kernel_alg_esp_auth_ok(auth=2): ret=1 Sep 23 22:01:00 dfserver Pluto[7675]: | kernel_alg_esp_enc_keylen():alg_id=3, keylen=21 Sep 23 22:01:00 dfserver Pluto[7675]: | kernel_alg_esp_auth_keylen(auth=2, sadb_aalg=3): a_keylen=20 Sep 23 22:01:00 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 10 seconds for #1 Sep 23 22:01:03 dfserver Pluto[7675]: | Sep 23 22:01:03 dfserver Pluto[7675]: | *received whack message Sep 23 22:01:03 dfserver Pluto[7675]: | kernel_alg_esp_enc_ok(3): alg_id=3, alg_ivlen=128, alg_minbits=168, alg_maxbits=168, res=0, ret=1 Sep 23 22:01:03 dfserver Pluto[7675]: | kernel_alg_esp_auth_ok(auth=1): ret=1 Sep 23 22:01:03 dfserver Pluto[7675]: | kernel_alg_esp_enc_keylen():alg_id=3, keylen=21 Sep 23 22:01:03 dfserver Pluto[7675]: | kernel_alg_esp_auth_keylen(auth=1, sadb_aalg=2): a_keylen=16 Sep 23 22:01:03 dfserver Pluto[7675]: | kernel_alg_esp_enc_ok(3): alg_id=3, alg_ivlen=128, alg_minbits=168, alg_maxbits=168, res=0, ret=1 Sep 23 22:01:03 dfserver Pluto[7675]: | kernel_alg_esp_auth_ok(auth=2): ret=1 Sep 23 22:01:03 dfserver Pluto[7675]: | kernel_alg_esp_enc_keylen():alg_id=3, keylen=21 Sep 23 22:01:03 dfserver Pluto[7675]: | kernel_alg_esp_auth_keylen(auth=2, sadb_aalg=3): a_keylen=20 Sep 23 22:01:03 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 7 seconds for #1 Sep 23 22:01:10 dfserver Pluto[7675]: | Sep 23 22:01:10 dfserver Pluto[7675]: | *time to handle event Sep 23 22:01:10 dfserver Pluto[7675]: | event after this is EVENT_SHUNT_SCAN in 88 seconds Sep 23 22:01:10 dfserver Pluto[7675]: | handling event EVENT_RETRANSMIT for 10.56.103.1 "sample" #1 Sep 23 22:01:10 dfserver Pluto[7675]: | sending 176 bytes for EVENT_RETRANSMIT through eth0 to 10.56.103.1:500: Sep 23 22:01:10 dfserver Pluto[7675]: | ad 19 8a 93 52 f3 54 6e 00 00 00 00 00 00 00 00 Sep 23 22:01:10 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:01:10 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:01:10 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:10 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:01:10 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:10 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:01:10 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:10 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:01:10 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:10 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:01:10 dfserver Pluto[7675]: | inserting event EVENT_RETRANSMIT, timeout in 40 seconds for #1 Sep 23 22:01:10 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 40 seconds for #1 Sep 23 22:01:11 dfserver Pluto[7675]: | Sep 23 22:01:11 dfserver Pluto[7675]: | *received 176 bytes from 10.56.103.1:500 on eth0 Sep 23 22:01:11 dfserver Pluto[7675]: | 34 ae 81 ec c7 68 ed 32 00 00 00 00 00 00 00 00 Sep 23 22:01:11 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:01:11 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:01:11 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:11 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:01:11 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:11 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:01:11 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:11 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:01:11 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:11 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:01:11 dfserver Pluto[7675]: | **parse ISAKMP Message: Sep 23 22:01:11 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:01:11 dfserver Pluto[7675]: | 34 ae 81 ec c7 68 ed 32 Sep 23 22:01:11 dfserver Pluto[7675]: | responder cookie: Sep 23 22:01:11 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 Sep 23 22:01:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:01:11 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:01:11 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:01:11 dfserver Pluto[7675]: | flags: none Sep 23 22:01:11 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:01:11 dfserver Pluto[7675]: | length: 176 Sep 23 22:01:11 dfserver Pluto[7675]: | ***parse ISAKMP Security Association Payload: Sep 23 22:01:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:01:11 dfserver Pluto[7675]: | length: 148 Sep 23 22:01:11 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:01:11 dfserver Pluto[7675]: | creating state object #4 at 0x80a75c0 Sep 23 22:01:11 dfserver Pluto[7675]: | ICOOKIE: 34 ae 81 ec c7 68 ed 32 Sep 23 22:01:11 dfserver Pluto[7675]: | RCOOKIE: 02 73 a3 dd 61 5e 88 bb Sep 23 22:01:11 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:01:11 dfserver Pluto[7675]: | state hash entry 28 Sep 23 22:01:11 dfserver Pluto[7675]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #4 Sep 23 22:01:11 dfserver Pluto[7675]: "sample" #4: responding to Main Mode Sep 23 22:01:11 dfserver Pluto[7675]: | **emit ISAKMP Message: Sep 23 22:01:11 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:01:11 dfserver Pluto[7675]: | 34 ae 81 ec c7 68 ed 32 Sep 23 22:01:11 dfserver Pluto[7675]: | responder cookie: Sep 23 22:01:11 dfserver Pluto[7675]: | 02 73 a3 dd 61 5e 88 bb Sep 23 22:01:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:01:11 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:01:11 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:01:11 dfserver Pluto[7675]: | flags: none Sep 23 22:01:11 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:01:11 dfserver Pluto[7675]: | ***emit ISAKMP Security Association Payload: Sep 23 22:01:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:01:11 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:01:11 dfserver Pluto[7675]: | ****parse IPsec DOI SIT: Sep 23 22:01:11 dfserver Pluto[7675]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Sep 23 22:01:11 dfserver Pluto[7675]: | ****parse ISAKMP Proposal Payload: Sep 23 22:01:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:01:11 dfserver Pluto[7675]: | length: 136 Sep 23 22:01:11 dfserver Pluto[7675]: | proposal number: 0 Sep 23 22:01:11 dfserver Pluto[7675]: | protocol ID: PROTO_ISAKMP Sep 23 22:01:11 dfserver Pluto[7675]: | SPI size: 0 Sep 23 22:01:11 dfserver Pluto[7675]: | number of transforms: 4 Sep 23 22:01:11 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:01:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:01:11 dfserver Pluto[7675]: | length: 32 Sep 23 22:01:11 dfserver Pluto[7675]: | transform number: 0 Sep 23 22:01:11 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:11 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:11 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:11 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:11 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:01:11 dfserver Pluto[7675]: "sample" #4: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:11 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:01:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:01:11 dfserver Pluto[7675]: | length: 32 Sep 23 22:01:11 dfserver Pluto[7675]: | transform number: 1 Sep 23 22:01:11 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:11 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:11 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:01:11 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:11 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:01:11 dfserver Pluto[7675]: "sample" #4: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:11 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:01:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:01:11 dfserver Pluto[7675]: | length: 32 Sep 23 22:01:11 dfserver Pluto[7675]: | transform number: 2 Sep 23 22:01:11 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:11 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:11 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:01:11 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:11 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:01:11 dfserver Pluto[7675]: "sample" #4: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:11 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:01:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:01:11 dfserver Pluto[7675]: | length: 32 Sep 23 22:01:11 dfserver Pluto[7675]: | transform number: 3 Sep 23 22:01:11 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:11 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:11 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:11 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:01:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:11 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:11 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:01:11 dfserver Pluto[7675]: "sample" #4: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:11 dfserver Pluto[7675]: "sample" #4: no acceptable Oakley Transform Sep 23 22:01:11 dfserver Pluto[7675]: | state transition function for STATE_MAIN_R0 failed: NO_PROPOSAL_CHOSEN Sep 23 22:01:11 dfserver Pluto[7675]: | next event EVENT_SO_DISCARD in 0 seconds for #4 Sep 23 22:01:11 dfserver Pluto[7675]: | Sep 23 22:01:11 dfserver Pluto[7675]: | *time to handle event Sep 23 22:01:11 dfserver Pluto[7675]: | event after this is EVENT_RETRANSMIT in 39 seconds Sep 23 22:01:11 dfserver Pluto[7675]: | ICOOKIE: 34 ae 81 ec c7 68 ed 32 Sep 23 22:01:11 dfserver Pluto[7675]: | RCOOKIE: 02 73 a3 dd 61 5e 88 bb Sep 23 22:01:11 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:01:11 dfserver Pluto[7675]: | state hash entry 28 Sep 23 22:01:11 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 39 seconds for #1 Sep 23 22:01:50 dfserver Pluto[7675]: | Sep 23 22:01:50 dfserver Pluto[7675]: | *time to handle event Sep 23 22:01:50 dfserver Pluto[7675]: | event after this is EVENT_SHUNT_SCAN in 48 seconds Sep 23 22:01:50 dfserver Pluto[7675]: | handling event EVENT_RETRANSMIT for 10.56.103.1 "sample" #1 Sep 23 22:01:50 dfserver Pluto[7675]: "sample" #1: max number of retransmissions (2) reached STATE_MAIN_I1. No acceptable response to our first IKE message Sep 23 22:01:50 dfserver Pluto[7675]: "sample" #1: starting keying attempt 2 of at most 3, but releasing whack Sep 23 22:01:50 dfserver Pluto[7675]: | creating state object #5 at 0x80a7508 Sep 23 22:01:50 dfserver Pluto[7675]: | ICOOKIE: 43 11 48 68 77 2f be 2c Sep 23 22:01:50 dfserver Pluto[7675]: | RCOOKIE: 00 00 00 00 00 00 00 00 Sep 23 22:01:50 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:01:50 dfserver Pluto[7675]: | state hash entry 18 Sep 23 22:01:50 dfserver Pluto[7675]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #5 Sep 23 22:01:50 dfserver Pluto[7675]: "sample" #5: initiating Main Mode to replace #1 Sep 23 22:01:50 dfserver Pluto[7675]: | **emit ISAKMP Message: Sep 23 22:01:50 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:01:50 dfserver Pluto[7675]: | 43 11 48 68 77 2f be 2c Sep 23 22:01:50 dfserver Pluto[7675]: | responder cookie: Sep 23 22:01:50 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 Sep 23 22:01:50 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:01:50 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:01:50 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:01:50 dfserver Pluto[7675]: | flags: none Sep 23 22:01:50 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:01:50 dfserver Pluto[7675]: | ***emit ISAKMP Security Association Payload: Sep 23 22:01:50 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:01:50 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:01:50 dfserver Pluto[7675]: | ****emit IPsec DOI SIT: Sep 23 22:01:50 dfserver Pluto[7675]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Sep 23 22:01:50 dfserver Pluto[7675]: | ****emit ISAKMP Proposal Payload: Sep 23 22:01:50 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:01:50 dfserver Pluto[7675]: | proposal number: 0 Sep 23 22:01:50 dfserver Pluto[7675]: | protocol ID: PROTO_ISAKMP Sep 23 22:01:50 dfserver Pluto[7675]: | SPI size: 0 Sep 23 22:01:50 dfserver Pluto[7675]: | number of transforms: 4 Sep 23 22:01:50 dfserver Pluto[7675]: | *****emit ISAKMP Transform Payload (ISAKMP): Sep 23 22:01:50 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:01:50 dfserver Pluto[7675]: | transform number: 0 Sep 23 22:01:50 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:50 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:50 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:50 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:50 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_GROUP_DESCRIPTION Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:50 dfserver Pluto[7675]: | [5 is OAKLEY_GROUP_MODP1536 (extension)] Sep 23 22:01:50 dfserver Pluto[7675]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Sep 23 22:01:50 dfserver Pluto[7675]: | *****emit ISAKMP Transform Payload (ISAKMP): Sep 23 22:01:50 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:01:50 dfserver Pluto[7675]: | transform number: 1 Sep 23 22:01:50 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:50 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:50 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:01:50 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:50 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_GROUP_DESCRIPTION Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:50 dfserver Pluto[7675]: | [5 is OAKLEY_GROUP_MODP1536 (extension)] Sep 23 22:01:50 dfserver Pluto[7675]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Sep 23 22:01:50 dfserver Pluto[7675]: | *****emit ISAKMP Transform Payload (ISAKMP): Sep 23 22:01:50 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:01:50 dfserver Pluto[7675]: | transform number: 2 Sep 23 22:01:50 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:50 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:50 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:01:50 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:50 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_GROUP_DESCRIPTION Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:01:50 dfserver Pluto[7675]: | [2 is OAKLEY_GROUP_MODP1024] Sep 23 22:01:50 dfserver Pluto[7675]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Sep 23 22:01:50 dfserver Pluto[7675]: | *****emit ISAKMP Transform Payload (ISAKMP): Sep 23 22:01:50 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:01:50 dfserver Pluto[7675]: | transform number: 3 Sep 23 22:01:50 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:50 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:50 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:50 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:50 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:01:50 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:01:50 dfserver Pluto[7675]: | af+type: OAKLEY_GROUP_DESCRIPTION Sep 23 22:01:50 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:01:50 dfserver Pluto[7675]: | [2 is OAKLEY_GROUP_MODP1024] Sep 23 22:01:50 dfserver Pluto[7675]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Sep 23 22:01:50 dfserver Pluto[7675]: | emitting length of ISAKMP Proposal Payload: 136 Sep 23 22:01:50 dfserver Pluto[7675]: | emitting length of ISAKMP Security Association Payload: 148 Sep 23 22:01:50 dfserver Pluto[7675]: | emitting length of ISAKMP Message: 176 Sep 23 22:01:50 dfserver Pluto[7675]: | sending 176 bytes for main_outI1 through eth0 to 10.56.103.1:500: Sep 23 22:01:50 dfserver Pluto[7675]: | 43 11 48 68 77 2f be 2c 00 00 00 00 00 00 00 00 Sep 23 22:01:50 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:01:50 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:01:50 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:50 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:01:50 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:50 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:01:50 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:50 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:01:50 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:50 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:01:50 dfserver Pluto[7675]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #5 Sep 23 22:01:50 dfserver Pluto[7675]: | ICOOKIE: ad 19 8a 93 52 f3 54 6e Sep 23 22:01:50 dfserver Pluto[7675]: | RCOOKIE: 00 00 00 00 00 00 00 00 Sep 23 22:01:50 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:01:50 dfserver Pluto[7675]: | state hash entry 22 Sep 23 22:01:50 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 10 seconds for #5 Sep 23 22:01:51 dfserver Pluto[7675]: | Sep 23 22:01:51 dfserver Pluto[7675]: | *received 176 bytes from 10.56.103.1:500 on eth0 Sep 23 22:01:51 dfserver Pluto[7675]: | 29 4b 70 90 f4 b4 c5 3a 00 00 00 00 00 00 00 00 Sep 23 22:01:51 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:01:51 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:01:51 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:51 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:01:51 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:51 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:01:51 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:51 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:01:51 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:01:51 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:01:51 dfserver Pluto[7675]: | **parse ISAKMP Message: Sep 23 22:01:51 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:01:51 dfserver Pluto[7675]: | 29 4b 70 90 f4 b4 c5 3a Sep 23 22:01:51 dfserver Pluto[7675]: | responder cookie: Sep 23 22:01:51 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 Sep 23 22:01:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:01:51 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:01:51 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:01:51 dfserver Pluto[7675]: | flags: none Sep 23 22:01:51 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:01:51 dfserver Pluto[7675]: | length: 176 Sep 23 22:01:51 dfserver Pluto[7675]: | ***parse ISAKMP Security Association Payload: Sep 23 22:01:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:01:51 dfserver Pluto[7675]: | length: 148 Sep 23 22:01:51 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:01:51 dfserver Pluto[7675]: | creating state object #6 at 0x80a6e68 Sep 23 22:01:51 dfserver Pluto[7675]: | ICOOKIE: 29 4b 70 90 f4 b4 c5 3a Sep 23 22:01:51 dfserver Pluto[7675]: | RCOOKIE: bf 79 96 a9 57 ca b0 78 Sep 23 22:01:51 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:01:51 dfserver Pluto[7675]: | state hash entry 13 Sep 23 22:01:51 dfserver Pluto[7675]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #6 Sep 23 22:01:51 dfserver Pluto[7675]: "sample" #6: responding to Main Mode Sep 23 22:01:51 dfserver Pluto[7675]: | **emit ISAKMP Message: Sep 23 22:01:51 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:01:51 dfserver Pluto[7675]: | 29 4b 70 90 f4 b4 c5 3a Sep 23 22:01:51 dfserver Pluto[7675]: | responder cookie: Sep 23 22:01:51 dfserver Pluto[7675]: | bf 79 96 a9 57 ca b0 78 Sep 23 22:01:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:01:51 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:01:51 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:01:51 dfserver Pluto[7675]: | flags: none Sep 23 22:01:51 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:01:51 dfserver Pluto[7675]: | ***emit ISAKMP Security Association Payload: Sep 23 22:01:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:01:51 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:01:51 dfserver Pluto[7675]: | ****parse IPsec DOI SIT: Sep 23 22:01:51 dfserver Pluto[7675]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Sep 23 22:01:51 dfserver Pluto[7675]: | ****parse ISAKMP Proposal Payload: Sep 23 22:01:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:01:51 dfserver Pluto[7675]: | length: 136 Sep 23 22:01:51 dfserver Pluto[7675]: | proposal number: 0 Sep 23 22:01:51 dfserver Pluto[7675]: | protocol ID: PROTO_ISAKMP Sep 23 22:01:51 dfserver Pluto[7675]: | SPI size: 0 Sep 23 22:01:51 dfserver Pluto[7675]: | number of transforms: 4 Sep 23 22:01:51 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:01:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:01:51 dfserver Pluto[7675]: | length: 32 Sep 23 22:01:51 dfserver Pluto[7675]: | transform number: 0 Sep 23 22:01:51 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:51 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:51 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:51 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:51 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:01:51 dfserver Pluto[7675]: "sample" #6: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:51 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:01:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:01:51 dfserver Pluto[7675]: | length: 32 Sep 23 22:01:51 dfserver Pluto[7675]: | transform number: 1 Sep 23 22:01:51 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:51 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:51 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:01:51 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:51 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:01:51 dfserver Pluto[7675]: "sample" #6: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:51 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:01:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:01:51 dfserver Pluto[7675]: | length: 32 Sep 23 22:01:51 dfserver Pluto[7675]: | transform number: 2 Sep 23 22:01:51 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:51 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:51 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:01:51 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:51 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:01:51 dfserver Pluto[7675]: "sample" #6: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:51 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:01:51 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:01:51 dfserver Pluto[7675]: | length: 32 Sep 23 22:01:51 dfserver Pluto[7675]: | transform number: 3 Sep 23 22:01:51 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:51 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:01:51 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:51 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:01:51 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:01:51 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:51 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:01:51 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:01:51 dfserver Pluto[7675]: "sample" #6: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:01:51 dfserver Pluto[7675]: "sample" #6: no acceptable Oakley Transform Sep 23 22:01:51 dfserver Pluto[7675]: | state transition function for STATE_MAIN_R0 failed: NO_PROPOSAL_CHOSEN Sep 23 22:01:51 dfserver Pluto[7675]: | next event EVENT_SO_DISCARD in 0 seconds for #6 Sep 23 22:01:51 dfserver Pluto[7675]: | Sep 23 22:01:51 dfserver Pluto[7675]: | *time to handle event Sep 23 22:01:51 dfserver Pluto[7675]: | event after this is EVENT_RETRANSMIT in 9 seconds Sep 23 22:01:51 dfserver Pluto[7675]: | ICOOKIE: 29 4b 70 90 f4 b4 c5 3a Sep 23 22:01:51 dfserver Pluto[7675]: | RCOOKIE: bf 79 96 a9 57 ca b0 78 Sep 23 22:01:51 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:01:51 dfserver Pluto[7675]: | state hash entry 13 Sep 23 22:01:51 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 9 seconds for #5 Sep 23 22:02:00 dfserver Pluto[7675]: | Sep 23 22:02:00 dfserver Pluto[7675]: | *time to handle event Sep 23 22:02:00 dfserver Pluto[7675]: | event after this is EVENT_SHUNT_SCAN in 38 seconds Sep 23 22:02:00 dfserver Pluto[7675]: | handling event EVENT_RETRANSMIT for 10.56.103.1 "sample" #5 Sep 23 22:02:00 dfserver Pluto[7675]: | sending 176 bytes for EVENT_RETRANSMIT through eth0 to 10.56.103.1:500: Sep 23 22:02:00 dfserver Pluto[7675]: | 43 11 48 68 77 2f be 2c 00 00 00 00 00 00 00 00 Sep 23 22:02:00 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:02:00 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:02:00 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:00 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:02:00 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:00 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:02:00 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:00 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:02:00 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:00 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:02:00 dfserver Pluto[7675]: | inserting event EVENT_RETRANSMIT, timeout in 20 seconds for #5 Sep 23 22:02:00 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 20 seconds for #5 Sep 23 22:02:01 dfserver Pluto[7675]: | Sep 23 22:02:01 dfserver Pluto[7675]: | *received 176 bytes from 10.56.103.1:500 on eth0 Sep 23 22:02:01 dfserver Pluto[7675]: | 29 4b 70 90 f4 b4 c5 3a 00 00 00 00 00 00 00 00 Sep 23 22:02:01 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:02:01 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:02:01 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:01 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:02:01 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:01 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:02:01 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:01 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:02:01 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:01 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:02:01 dfserver Pluto[7675]: | **parse ISAKMP Message: Sep 23 22:02:01 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:02:01 dfserver Pluto[7675]: | 29 4b 70 90 f4 b4 c5 3a Sep 23 22:02:01 dfserver Pluto[7675]: | responder cookie: Sep 23 22:02:01 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 Sep 23 22:02:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:02:01 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:02:01 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:02:01 dfserver Pluto[7675]: | flags: none Sep 23 22:02:01 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:02:01 dfserver Pluto[7675]: | length: 176 Sep 23 22:02:01 dfserver Pluto[7675]: | ***parse ISAKMP Security Association Payload: Sep 23 22:02:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:02:01 dfserver Pluto[7675]: | length: 148 Sep 23 22:02:01 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:02:01 dfserver Pluto[7675]: | creating state object #7 at 0x80a6e68 Sep 23 22:02:01 dfserver Pluto[7675]: | ICOOKIE: 29 4b 70 90 f4 b4 c5 3a Sep 23 22:02:01 dfserver Pluto[7675]: | RCOOKIE: a6 9c 3b 4c 60 66 06 90 Sep 23 22:02:01 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:02:01 dfserver Pluto[7675]: | state hash entry 4 Sep 23 22:02:01 dfserver Pluto[7675]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #7 Sep 23 22:02:01 dfserver Pluto[7675]: "sample" #7: responding to Main Mode Sep 23 22:02:01 dfserver Pluto[7675]: | **emit ISAKMP Message: Sep 23 22:02:01 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:02:01 dfserver Pluto[7675]: | 29 4b 70 90 f4 b4 c5 3a Sep 23 22:02:01 dfserver Pluto[7675]: | responder cookie: Sep 23 22:02:01 dfserver Pluto[7675]: | a6 9c 3b 4c 60 66 06 90 Sep 23 22:02:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:02:01 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:02:01 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:02:01 dfserver Pluto[7675]: | flags: none Sep 23 22:02:01 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:02:01 dfserver Pluto[7675]: | ***emit ISAKMP Security Association Payload: Sep 23 22:02:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:02:01 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:02:01 dfserver Pluto[7675]: | ****parse IPsec DOI SIT: Sep 23 22:02:01 dfserver Pluto[7675]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Sep 23 22:02:01 dfserver Pluto[7675]: | ****parse ISAKMP Proposal Payload: Sep 23 22:02:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:02:01 dfserver Pluto[7675]: | length: 136 Sep 23 22:02:01 dfserver Pluto[7675]: | proposal number: 0 Sep 23 22:02:01 dfserver Pluto[7675]: | protocol ID: PROTO_ISAKMP Sep 23 22:02:01 dfserver Pluto[7675]: | SPI size: 0 Sep 23 22:02:01 dfserver Pluto[7675]: | number of transforms: 4 Sep 23 22:02:01 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:02:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:02:01 dfserver Pluto[7675]: | length: 32 Sep 23 22:02:01 dfserver Pluto[7675]: | transform number: 0 Sep 23 22:02:01 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:01 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:02:01 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:01 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:01 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:02:01 dfserver Pluto[7675]: "sample" #7: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:01 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:02:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:02:01 dfserver Pluto[7675]: | length: 32 Sep 23 22:02:01 dfserver Pluto[7675]: | transform number: 1 Sep 23 22:02:01 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:01 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:02:01 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:02:01 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:01 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:02:01 dfserver Pluto[7675]: "sample" #7: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:01 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:02:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:02:01 dfserver Pluto[7675]: | length: 32 Sep 23 22:02:01 dfserver Pluto[7675]: | transform number: 2 Sep 23 22:02:01 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:01 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:02:01 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:02:01 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:01 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:02:01 dfserver Pluto[7675]: "sample" #7: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:01 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:02:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:02:01 dfserver Pluto[7675]: | length: 32 Sep 23 22:02:01 dfserver Pluto[7675]: | transform number: 3 Sep 23 22:02:01 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:01 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:02:01 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:01 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:02:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:01 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:01 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:02:01 dfserver Pluto[7675]: "sample" #7: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:01 dfserver Pluto[7675]: "sample" #7: no acceptable Oakley Transform Sep 23 22:02:01 dfserver Pluto[7675]: | state transition function for STATE_MAIN_R0 failed: NO_PROPOSAL_CHOSEN Sep 23 22:02:01 dfserver Pluto[7675]: | next event EVENT_SO_DISCARD in 0 seconds for #7 Sep 23 22:02:01 dfserver Pluto[7675]: | Sep 23 22:02:01 dfserver Pluto[7675]: | *time to handle event Sep 23 22:02:01 dfserver Pluto[7675]: | event after this is EVENT_RETRANSMIT in 19 seconds Sep 23 22:02:01 dfserver Pluto[7675]: | ICOOKIE: 29 4b 70 90 f4 b4 c5 3a Sep 23 22:02:01 dfserver Pluto[7675]: | RCOOKIE: a6 9c 3b 4c 60 66 06 90 Sep 23 22:02:01 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:02:01 dfserver Pluto[7675]: | state hash entry 4 Sep 23 22:02:01 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 19 seconds for #5 Sep 23 22:02:20 dfserver Pluto[7675]: | Sep 23 22:02:20 dfserver Pluto[7675]: | *time to handle event Sep 23 22:02:20 dfserver Pluto[7675]: | event after this is EVENT_SHUNT_SCAN in 18 seconds Sep 23 22:02:20 dfserver Pluto[7675]: | handling event EVENT_RETRANSMIT for 10.56.103.1 "sample" #5 Sep 23 22:02:20 dfserver Pluto[7675]: | sending 176 bytes for EVENT_RETRANSMIT through eth0 to 10.56.103.1:500: Sep 23 22:02:20 dfserver Pluto[7675]: | 43 11 48 68 77 2f be 2c 00 00 00 00 00 00 00 00 Sep 23 22:02:20 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:02:20 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:02:20 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:20 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:02:20 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:20 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:02:20 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:20 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:02:20 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:20 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:02:20 dfserver Pluto[7675]: | inserting event EVENT_RETRANSMIT, timeout in 40 seconds for #5 Sep 23 22:02:20 dfserver Pluto[7675]: | next event EVENT_SHUNT_SCAN in 18 seconds Sep 23 22:02:21 dfserver Pluto[7675]: | Sep 23 22:02:21 dfserver Pluto[7675]: | *received 176 bytes from 10.56.103.1:500 on eth0 Sep 23 22:02:21 dfserver Pluto[7675]: | 29 4b 70 90 f4 b4 c5 3a 00 00 00 00 00 00 00 00 Sep 23 22:02:21 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:02:21 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:02:21 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:21 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:02:21 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:21 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:02:21 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:21 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:02:21 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:02:21 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:02:21 dfserver Pluto[7675]: | **parse ISAKMP Message: Sep 23 22:02:21 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:02:21 dfserver Pluto[7675]: | 29 4b 70 90 f4 b4 c5 3a Sep 23 22:02:21 dfserver Pluto[7675]: | responder cookie: Sep 23 22:02:21 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 Sep 23 22:02:21 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:02:21 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:02:21 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:02:21 dfserver Pluto[7675]: | flags: none Sep 23 22:02:21 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:02:21 dfserver Pluto[7675]: | length: 176 Sep 23 22:02:21 dfserver Pluto[7675]: | ***parse ISAKMP Security Association Payload: Sep 23 22:02:21 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:02:21 dfserver Pluto[7675]: | length: 148 Sep 23 22:02:21 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:02:21 dfserver Pluto[7675]: | creating state object #8 at 0x80a6e68 Sep 23 22:02:21 dfserver Pluto[7675]: | ICOOKIE: 29 4b 70 90 f4 b4 c5 3a Sep 23 22:02:21 dfserver Pluto[7675]: | RCOOKIE: af 7d 3f 7d e5 0b 8e af Sep 23 22:02:21 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:02:21 dfserver Pluto[7675]: | state hash entry 16 Sep 23 22:02:21 dfserver Pluto[7675]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #8 Sep 23 22:02:21 dfserver Pluto[7675]: "sample" #8: responding to Main Mode Sep 23 22:02:21 dfserver Pluto[7675]: | **emit ISAKMP Message: Sep 23 22:02:21 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:02:21 dfserver Pluto[7675]: | 29 4b 70 90 f4 b4 c5 3a Sep 23 22:02:21 dfserver Pluto[7675]: | responder cookie: Sep 23 22:02:21 dfserver Pluto[7675]: | af 7d 3f 7d e5 0b 8e af Sep 23 22:02:21 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:02:21 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:02:21 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:02:21 dfserver Pluto[7675]: | flags: none Sep 23 22:02:21 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:02:21 dfserver Pluto[7675]: | ***emit ISAKMP Security Association Payload: Sep 23 22:02:21 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:02:21 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:02:21 dfserver Pluto[7675]: | ****parse IPsec DOI SIT: Sep 23 22:02:21 dfserver Pluto[7675]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Sep 23 22:02:21 dfserver Pluto[7675]: | ****parse ISAKMP Proposal Payload: Sep 23 22:02:21 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:02:21 dfserver Pluto[7675]: | length: 136 Sep 23 22:02:21 dfserver Pluto[7675]: | proposal number: 0 Sep 23 22:02:21 dfserver Pluto[7675]: | protocol ID: PROTO_ISAKMP Sep 23 22:02:21 dfserver Pluto[7675]: | SPI size: 0 Sep 23 22:02:21 dfserver Pluto[7675]: | number of transforms: 4 Sep 23 22:02:21 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:02:21 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:02:21 dfserver Pluto[7675]: | length: 32 Sep 23 22:02:21 dfserver Pluto[7675]: | transform number: 0 Sep 23 22:02:21 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:21 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:02:21 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:21 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:21 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:02:21 dfserver Pluto[7675]: "sample" #8: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:21 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:02:21 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:02:21 dfserver Pluto[7675]: | length: 32 Sep 23 22:02:21 dfserver Pluto[7675]: | transform number: 1 Sep 23 22:02:21 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:21 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:02:21 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:02:21 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:21 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:02:21 dfserver Pluto[7675]: "sample" #8: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:21 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:02:21 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:02:21 dfserver Pluto[7675]: | length: 32 Sep 23 22:02:21 dfserver Pluto[7675]: | transform number: 2 Sep 23 22:02:21 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:21 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:02:21 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:02:21 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:21 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:02:21 dfserver Pluto[7675]: "sample" #8: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:21 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:02:21 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:02:21 dfserver Pluto[7675]: | length: 32 Sep 23 22:02:21 dfserver Pluto[7675]: | transform number: 3 Sep 23 22:02:21 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:21 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:02:21 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:21 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:02:21 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:02:21 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:21 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:02:21 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:02:21 dfserver Pluto[7675]: "sample" #8: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:02:21 dfserver Pluto[7675]: "sample" #8: no acceptable Oakley Transform Sep 23 22:02:21 dfserver Pluto[7675]: | state transition function for STATE_MAIN_R0 failed: NO_PROPOSAL_CHOSEN Sep 23 22:02:21 dfserver Pluto[7675]: | next event EVENT_SO_DISCARD in 0 seconds for #8 Sep 23 22:02:21 dfserver Pluto[7675]: | Sep 23 22:02:21 dfserver Pluto[7675]: | *time to handle event Sep 23 22:02:21 dfserver Pluto[7675]: | event after this is EVENT_SHUNT_SCAN in 17 seconds Sep 23 22:02:21 dfserver Pluto[7675]: | ICOOKIE: 29 4b 70 90 f4 b4 c5 3a Sep 23 22:02:21 dfserver Pluto[7675]: | RCOOKIE: af 7d 3f 7d e5 0b 8e af Sep 23 22:02:21 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:02:21 dfserver Pluto[7675]: | state hash entry 16 Sep 23 22:02:21 dfserver Pluto[7675]: | next event EVENT_SHUNT_SCAN in 17 seconds Sep 23 22:02:38 dfserver Pluto[7675]: | Sep 23 22:02:38 dfserver Pluto[7675]: | *time to handle event Sep 23 22:02:38 dfserver Pluto[7675]: | event after this is EVENT_RETRANSMIT in 22 seconds Sep 23 22:02:38 dfserver Pluto[7675]: | inserting event EVENT_SHUNT_SCAN, timeout in 120 seconds Sep 23 22:02:38 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 22 seconds for #5 Sep 23 22:03:00 dfserver Pluto[7675]: | Sep 23 22:03:00 dfserver Pluto[7675]: | *time to handle event Sep 23 22:03:00 dfserver Pluto[7675]: | event after this is EVENT_SHUNT_SCAN in 98 seconds Sep 23 22:03:00 dfserver Pluto[7675]: | handling event EVENT_RETRANSMIT for 10.56.103.1 "sample" #5 Sep 23 22:03:00 dfserver Pluto[7675]: "sample" #5: max number of retransmissions (2) reached STATE_MAIN_I1. No acceptable response to our first IKE message Sep 23 22:03:00 dfserver Pluto[7675]: "sample" #5: starting keying attempt 3 of at most 3 Sep 23 22:03:00 dfserver Pluto[7675]: | creating state object #9 at 0x80a6db0 Sep 23 22:03:00 dfserver Pluto[7675]: | ICOOKIE: 65 d3 0c 5f a0 ab 45 bc Sep 23 22:03:00 dfserver Pluto[7675]: | RCOOKIE: 00 00 00 00 00 00 00 00 Sep 23 22:03:00 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:03:00 dfserver Pluto[7675]: | state hash entry 17 Sep 23 22:03:00 dfserver Pluto[7675]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #9 Sep 23 22:03:00 dfserver Pluto[7675]: "sample" #9: initiating Main Mode to replace #5 Sep 23 22:03:00 dfserver Pluto[7675]: | **emit ISAKMP Message: Sep 23 22:03:00 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:03:00 dfserver Pluto[7675]: | 65 d3 0c 5f a0 ab 45 bc Sep 23 22:03:00 dfserver Pluto[7675]: | responder cookie: Sep 23 22:03:00 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 Sep 23 22:03:00 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:03:00 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:03:00 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:03:00 dfserver Pluto[7675]: | flags: none Sep 23 22:03:00 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:03:00 dfserver Pluto[7675]: | ***emit ISAKMP Security Association Payload: Sep 23 22:03:00 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:00 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:03:00 dfserver Pluto[7675]: | ****emit IPsec DOI SIT: Sep 23 22:03:00 dfserver Pluto[7675]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Sep 23 22:03:00 dfserver Pluto[7675]: | ****emit ISAKMP Proposal Payload: Sep 23 22:03:00 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:00 dfserver Pluto[7675]: | proposal number: 0 Sep 23 22:03:00 dfserver Pluto[7675]: | protocol ID: PROTO_ISAKMP Sep 23 22:03:00 dfserver Pluto[7675]: | SPI size: 0 Sep 23 22:03:00 dfserver Pluto[7675]: | number of transforms: 4 Sep 23 22:03:00 dfserver Pluto[7675]: | *****emit ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:00 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:03:00 dfserver Pluto[7675]: | transform number: 0 Sep 23 22:03:00 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:00 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:00 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:00 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:00 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_GROUP_DESCRIPTION Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:00 dfserver Pluto[7675]: | [5 is OAKLEY_GROUP_MODP1536 (extension)] Sep 23 22:03:00 dfserver Pluto[7675]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Sep 23 22:03:00 dfserver Pluto[7675]: | *****emit ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:00 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:03:00 dfserver Pluto[7675]: | transform number: 1 Sep 23 22:03:00 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:00 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:00 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:03:00 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:00 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_GROUP_DESCRIPTION Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:00 dfserver Pluto[7675]: | [5 is OAKLEY_GROUP_MODP1536 (extension)] Sep 23 22:03:00 dfserver Pluto[7675]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Sep 23 22:03:00 dfserver Pluto[7675]: | *****emit ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:00 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:03:00 dfserver Pluto[7675]: | transform number: 2 Sep 23 22:03:00 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:00 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:00 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:03:00 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:00 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_GROUP_DESCRIPTION Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:03:00 dfserver Pluto[7675]: | [2 is OAKLEY_GROUP_MODP1024] Sep 23 22:03:00 dfserver Pluto[7675]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Sep 23 22:03:00 dfserver Pluto[7675]: | *****emit ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:00 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:00 dfserver Pluto[7675]: | transform number: 3 Sep 23 22:03:00 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:00 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:00 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:00 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:00 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:00 dfserver Pluto[7675]: | ******emit ISAKMP Oakley attribute: Sep 23 22:03:00 dfserver Pluto[7675]: | af+type: OAKLEY_GROUP_DESCRIPTION Sep 23 22:03:00 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:03:00 dfserver Pluto[7675]: | [2 is OAKLEY_GROUP_MODP1024] Sep 23 22:03:00 dfserver Pluto[7675]: | emitting length of ISAKMP Transform Payload (ISAKMP): 32 Sep 23 22:03:00 dfserver Pluto[7675]: | emitting length of ISAKMP Proposal Payload: 136 Sep 23 22:03:00 dfserver Pluto[7675]: | emitting length of ISAKMP Security Association Payload: 148 Sep 23 22:03:00 dfserver Pluto[7675]: | emitting length of ISAKMP Message: 176 Sep 23 22:03:00 dfserver Pluto[7675]: | sending 176 bytes for main_outI1 through eth0 to 10.56.103.1:500: Sep 23 22:03:00 dfserver Pluto[7675]: | 65 d3 0c 5f a0 ab 45 bc 00 00 00 00 00 00 00 00 Sep 23 22:03:00 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:03:00 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:03:00 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:00 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:03:00 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:00 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:03:00 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:00 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:03:00 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:00 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:03:00 dfserver Pluto[7675]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #9 Sep 23 22:03:00 dfserver Pluto[7675]: | ICOOKIE: 43 11 48 68 77 2f be 2c Sep 23 22:03:00 dfserver Pluto[7675]: | RCOOKIE: 00 00 00 00 00 00 00 00 Sep 23 22:03:00 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:03:00 dfserver Pluto[7675]: | state hash entry 18 Sep 23 22:03:00 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 10 seconds for #9 Sep 23 22:03:01 dfserver Pluto[7675]: | Sep 23 22:03:01 dfserver Pluto[7675]: | *received 176 bytes from 10.56.103.1:500 on eth0 Sep 23 22:03:01 dfserver Pluto[7675]: | b2 49 10 3c 73 9a 86 74 00 00 00 00 00 00 00 00 Sep 23 22:03:01 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:03:01 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:03:01 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:01 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:03:01 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:01 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:03:01 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:01 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:03:01 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:01 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:03:01 dfserver Pluto[7675]: | **parse ISAKMP Message: Sep 23 22:03:01 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:03:01 dfserver Pluto[7675]: | b2 49 10 3c 73 9a 86 74 Sep 23 22:03:01 dfserver Pluto[7675]: | responder cookie: Sep 23 22:03:01 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 Sep 23 22:03:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:03:01 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:03:01 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:03:01 dfserver Pluto[7675]: | flags: none Sep 23 22:03:01 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:03:01 dfserver Pluto[7675]: | length: 176 Sep 23 22:03:01 dfserver Pluto[7675]: | ***parse ISAKMP Security Association Payload: Sep 23 22:03:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:01 dfserver Pluto[7675]: | length: 148 Sep 23 22:03:01 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:03:01 dfserver Pluto[7675]: | creating state object #10 at 0x80a75c0 Sep 23 22:03:01 dfserver Pluto[7675]: | ICOOKIE: b2 49 10 3c 73 9a 86 74 Sep 23 22:03:01 dfserver Pluto[7675]: | RCOOKIE: c6 c8 62 40 ce dc 8d 45 Sep 23 22:03:01 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:03:01 dfserver Pluto[7675]: | state hash entry 12 Sep 23 22:03:01 dfserver Pluto[7675]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #10 Sep 23 22:03:01 dfserver Pluto[7675]: "sample" #10: responding to Main Mode Sep 23 22:03:01 dfserver Pluto[7675]: | **emit ISAKMP Message: Sep 23 22:03:01 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:03:01 dfserver Pluto[7675]: | b2 49 10 3c 73 9a 86 74 Sep 23 22:03:01 dfserver Pluto[7675]: | responder cookie: Sep 23 22:03:01 dfserver Pluto[7675]: | c6 c8 62 40 ce dc 8d 45 Sep 23 22:03:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:03:01 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:03:01 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:03:01 dfserver Pluto[7675]: | flags: none Sep 23 22:03:01 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:03:01 dfserver Pluto[7675]: | ***emit ISAKMP Security Association Payload: Sep 23 22:03:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:01 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:03:01 dfserver Pluto[7675]: | ****parse IPsec DOI SIT: Sep 23 22:03:01 dfserver Pluto[7675]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Sep 23 22:03:01 dfserver Pluto[7675]: | ****parse ISAKMP Proposal Payload: Sep 23 22:03:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:01 dfserver Pluto[7675]: | length: 136 Sep 23 22:03:01 dfserver Pluto[7675]: | proposal number: 0 Sep 23 22:03:01 dfserver Pluto[7675]: | protocol ID: PROTO_ISAKMP Sep 23 22:03:01 dfserver Pluto[7675]: | SPI size: 0 Sep 23 22:03:01 dfserver Pluto[7675]: | number of transforms: 4 Sep 23 22:03:01 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:03:01 dfserver Pluto[7675]: | length: 32 Sep 23 22:03:01 dfserver Pluto[7675]: | transform number: 0 Sep 23 22:03:01 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:01 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:01 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:01 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:01 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:01 dfserver Pluto[7675]: "sample" #10: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:01 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:03:01 dfserver Pluto[7675]: | length: 32 Sep 23 22:03:01 dfserver Pluto[7675]: | transform number: 1 Sep 23 22:03:01 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:01 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:01 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:03:01 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:01 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:01 dfserver Pluto[7675]: "sample" #10: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:01 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:03:01 dfserver Pluto[7675]: | length: 32 Sep 23 22:03:01 dfserver Pluto[7675]: | transform number: 2 Sep 23 22:03:01 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:01 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:01 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:03:01 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:01 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:01 dfserver Pluto[7675]: "sample" #10: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:01 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:01 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:01 dfserver Pluto[7675]: | length: 32 Sep 23 22:03:01 dfserver Pluto[7675]: | transform number: 3 Sep 23 22:03:01 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:01 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:01 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:01 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:03:01 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:01 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:01 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:01 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:01 dfserver Pluto[7675]: "sample" #10: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:01 dfserver Pluto[7675]: "sample" #10: no acceptable Oakley Transform Sep 23 22:03:01 dfserver Pluto[7675]: | state transition function for STATE_MAIN_R0 failed: NO_PROPOSAL_CHOSEN Sep 23 22:03:01 dfserver Pluto[7675]: | next event EVENT_SO_DISCARD in 0 seconds for #10 Sep 23 22:03:01 dfserver Pluto[7675]: | Sep 23 22:03:01 dfserver Pluto[7675]: | *time to handle event Sep 23 22:03:01 dfserver Pluto[7675]: | event after this is EVENT_RETRANSMIT in 9 seconds Sep 23 22:03:01 dfserver Pluto[7675]: | ICOOKIE: b2 49 10 3c 73 9a 86 74 Sep 23 22:03:01 dfserver Pluto[7675]: | RCOOKIE: c6 c8 62 40 ce dc 8d 45 Sep 23 22:03:01 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:03:01 dfserver Pluto[7675]: | state hash entry 12 Sep 23 22:03:01 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 9 seconds for #9 Sep 23 22:03:10 dfserver Pluto[7675]: | Sep 23 22:03:10 dfserver Pluto[7675]: | *time to handle event Sep 23 22:03:10 dfserver Pluto[7675]: | event after this is EVENT_SHUNT_SCAN in 88 seconds Sep 23 22:03:10 dfserver Pluto[7675]: | handling event EVENT_RETRANSMIT for 10.56.103.1 "sample" #9 Sep 23 22:03:10 dfserver Pluto[7675]: | sending 176 bytes for EVENT_RETRANSMIT through eth0 to 10.56.103.1:500: Sep 23 22:03:10 dfserver Pluto[7675]: | 65 d3 0c 5f a0 ab 45 bc 00 00 00 00 00 00 00 00 Sep 23 22:03:10 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:03:10 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:03:10 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:10 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:03:10 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:10 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:03:10 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:10 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:03:10 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:10 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:03:10 dfserver Pluto[7675]: | inserting event EVENT_RETRANSMIT, timeout in 20 seconds for #9 Sep 23 22:03:10 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 20 seconds for #9 Sep 23 22:03:11 dfserver Pluto[7675]: | Sep 23 22:03:11 dfserver Pluto[7675]: | *received 176 bytes from 10.56.103.1:500 on eth0 Sep 23 22:03:11 dfserver Pluto[7675]: | b2 49 10 3c 73 9a 86 74 00 00 00 00 00 00 00 00 Sep 23 22:03:11 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:03:11 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:03:11 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:11 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:03:11 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:11 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:03:11 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:11 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:03:11 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:11 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:03:11 dfserver Pluto[7675]: | **parse ISAKMP Message: Sep 23 22:03:11 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:03:11 dfserver Pluto[7675]: | b2 49 10 3c 73 9a 86 74 Sep 23 22:03:11 dfserver Pluto[7675]: | responder cookie: Sep 23 22:03:11 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 Sep 23 22:03:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:03:11 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:03:11 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:03:11 dfserver Pluto[7675]: | flags: none Sep 23 22:03:11 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:03:11 dfserver Pluto[7675]: | length: 176 Sep 23 22:03:11 dfserver Pluto[7675]: | ***parse ISAKMP Security Association Payload: Sep 23 22:03:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:11 dfserver Pluto[7675]: | length: 148 Sep 23 22:03:11 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:03:11 dfserver Pluto[7675]: | creating state object #11 at 0x80a75d8 Sep 23 22:03:11 dfserver Pluto[7675]: | ICOOKIE: b2 49 10 3c 73 9a 86 74 Sep 23 22:03:11 dfserver Pluto[7675]: | RCOOKIE: 12 fb 34 a4 a9 e4 99 9d Sep 23 22:03:11 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:03:11 dfserver Pluto[7675]: | state hash entry 22 Sep 23 22:03:11 dfserver Pluto[7675]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #11 Sep 23 22:03:11 dfserver Pluto[7675]: "sample" #11: responding to Main Mode Sep 23 22:03:11 dfserver Pluto[7675]: | **emit ISAKMP Message: Sep 23 22:03:11 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:03:11 dfserver Pluto[7675]: | b2 49 10 3c 73 9a 86 74 Sep 23 22:03:11 dfserver Pluto[7675]: | responder cookie: Sep 23 22:03:11 dfserver Pluto[7675]: | 12 fb 34 a4 a9 e4 99 9d Sep 23 22:03:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:03:11 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:03:11 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:03:11 dfserver Pluto[7675]: | flags: none Sep 23 22:03:11 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:03:11 dfserver Pluto[7675]: | ***emit ISAKMP Security Association Payload: Sep 23 22:03:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:11 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:03:11 dfserver Pluto[7675]: | ****parse IPsec DOI SIT: Sep 23 22:03:11 dfserver Pluto[7675]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Sep 23 22:03:11 dfserver Pluto[7675]: | ****parse ISAKMP Proposal Payload: Sep 23 22:03:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:11 dfserver Pluto[7675]: | length: 136 Sep 23 22:03:11 dfserver Pluto[7675]: | proposal number: 0 Sep 23 22:03:11 dfserver Pluto[7675]: | protocol ID: PROTO_ISAKMP Sep 23 22:03:11 dfserver Pluto[7675]: | SPI size: 0 Sep 23 22:03:11 dfserver Pluto[7675]: | number of transforms: 4 Sep 23 22:03:11 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:03:11 dfserver Pluto[7675]: | length: 32 Sep 23 22:03:11 dfserver Pluto[7675]: | transform number: 0 Sep 23 22:03:11 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:11 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:11 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:11 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:11 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:11 dfserver Pluto[7675]: "sample" #11: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:11 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:03:11 dfserver Pluto[7675]: | length: 32 Sep 23 22:03:11 dfserver Pluto[7675]: | transform number: 1 Sep 23 22:03:11 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:11 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:11 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:03:11 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:11 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:11 dfserver Pluto[7675]: "sample" #11: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:11 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:03:11 dfserver Pluto[7675]: | length: 32 Sep 23 22:03:11 dfserver Pluto[7675]: | transform number: 2 Sep 23 22:03:11 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:11 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:11 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:03:11 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:11 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:11 dfserver Pluto[7675]: "sample" #11: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:11 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:11 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:11 dfserver Pluto[7675]: | length: 32 Sep 23 22:03:11 dfserver Pluto[7675]: | transform number: 3 Sep 23 22:03:11 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:11 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:11 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:11 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:03:11 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:11 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:11 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:11 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:11 dfserver Pluto[7675]: "sample" #11: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:11 dfserver Pluto[7675]: "sample" #11: no acceptable Oakley Transform Sep 23 22:03:11 dfserver Pluto[7675]: | state transition function for STATE_MAIN_R0 failed: NO_PROPOSAL_CHOSEN Sep 23 22:03:11 dfserver Pluto[7675]: | next event EVENT_SO_DISCARD in 0 seconds for #11 Sep 23 22:03:11 dfserver Pluto[7675]: | Sep 23 22:03:11 dfserver Pluto[7675]: | *time to handle event Sep 23 22:03:11 dfserver Pluto[7675]: | event after this is EVENT_RETRANSMIT in 19 seconds Sep 23 22:03:11 dfserver Pluto[7675]: | ICOOKIE: b2 49 10 3c 73 9a 86 74 Sep 23 22:03:11 dfserver Pluto[7675]: | RCOOKIE: 12 fb 34 a4 a9 e4 99 9d Sep 23 22:03:11 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:03:11 dfserver Pluto[7675]: | state hash entry 22 Sep 23 22:03:11 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 19 seconds for #9 Sep 23 22:03:30 dfserver Pluto[7675]: | Sep 23 22:03:30 dfserver Pluto[7675]: | *time to handle event Sep 23 22:03:30 dfserver Pluto[7675]: | event after this is EVENT_SHUNT_SCAN in 68 seconds Sep 23 22:03:30 dfserver Pluto[7675]: | handling event EVENT_RETRANSMIT for 10.56.103.1 "sample" #9 Sep 23 22:03:30 dfserver Pluto[7675]: | sending 176 bytes for EVENT_RETRANSMIT through eth0 to 10.56.103.1:500: Sep 23 22:03:30 dfserver Pluto[7675]: | 65 d3 0c 5f a0 ab 45 bc 00 00 00 00 00 00 00 00 Sep 23 22:03:30 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:03:30 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:03:30 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:30 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:03:30 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:30 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:03:30 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:30 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:03:30 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:30 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:03:30 dfserver Pluto[7675]: | inserting event EVENT_RETRANSMIT, timeout in 40 seconds for #9 Sep 23 22:03:30 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 40 seconds for #9 Sep 23 22:03:31 dfserver Pluto[7675]: | Sep 23 22:03:31 dfserver Pluto[7675]: | *received 176 bytes from 10.56.103.1:500 on eth0 Sep 23 22:03:31 dfserver Pluto[7675]: | b2 49 10 3c 73 9a 86 74 00 00 00 00 00 00 00 00 Sep 23 22:03:31 dfserver Pluto[7675]: | 01 10 02 00 00 00 00 00 00 00 00 b0 00 00 00 94 Sep 23 22:03:31 dfserver Pluto[7675]: | 00 00 00 01 00 00 00 01 00 00 00 88 00 01 00 04 Sep 23 22:03:31 dfserver Pluto[7675]: | 03 00 00 20 00 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:31 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 05 Sep 23 22:03:31 dfserver Pluto[7675]: | 03 00 00 20 01 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:31 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 05 Sep 23 22:03:31 dfserver Pluto[7675]: | 03 00 00 20 02 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:31 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 02 80 03 00 01 80 04 00 02 Sep 23 22:03:31 dfserver Pluto[7675]: | 00 00 00 20 03 01 00 00 80 0b 00 01 80 0c 0e 10 Sep 23 22:03:31 dfserver Pluto[7675]: | 80 01 00 05 80 02 00 01 80 03 00 01 80 04 00 02 Sep 23 22:03:31 dfserver Pluto[7675]: | **parse ISAKMP Message: Sep 23 22:03:31 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:03:31 dfserver Pluto[7675]: | b2 49 10 3c 73 9a 86 74 Sep 23 22:03:31 dfserver Pluto[7675]: | responder cookie: Sep 23 22:03:31 dfserver Pluto[7675]: | 00 00 00 00 00 00 00 00 Sep 23 22:03:31 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:03:31 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:03:31 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:03:31 dfserver Pluto[7675]: | flags: none Sep 23 22:03:31 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:03:31 dfserver Pluto[7675]: | length: 176 Sep 23 22:03:31 dfserver Pluto[7675]: | ***parse ISAKMP Security Association Payload: Sep 23 22:03:31 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:31 dfserver Pluto[7675]: | length: 148 Sep 23 22:03:31 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:03:31 dfserver Pluto[7675]: | creating state object #12 at 0x80a75c0 Sep 23 22:03:31 dfserver Pluto[7675]: | ICOOKIE: b2 49 10 3c 73 9a 86 74 Sep 23 22:03:31 dfserver Pluto[7675]: | RCOOKIE: 6a 7b 4e 16 28 6a c9 e3 Sep 23 22:03:31 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:03:31 dfserver Pluto[7675]: | state hash entry 11 Sep 23 22:03:31 dfserver Pluto[7675]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #12 Sep 23 22:03:31 dfserver Pluto[7675]: "sample" #12: responding to Main Mode Sep 23 22:03:31 dfserver Pluto[7675]: | **emit ISAKMP Message: Sep 23 22:03:31 dfserver Pluto[7675]: | initiator cookie: Sep 23 22:03:31 dfserver Pluto[7675]: | b2 49 10 3c 73 9a 86 74 Sep 23 22:03:31 dfserver Pluto[7675]: | responder cookie: Sep 23 22:03:31 dfserver Pluto[7675]: | 6a 7b 4e 16 28 6a c9 e3 Sep 23 22:03:31 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_SA Sep 23 22:03:31 dfserver Pluto[7675]: | ISAKMP version: ISAKMP Version 1.0 Sep 23 22:03:31 dfserver Pluto[7675]: | exchange type: ISAKMP_XCHG_IDPROT Sep 23 22:03:31 dfserver Pluto[7675]: | flags: none Sep 23 22:03:31 dfserver Pluto[7675]: | message ID: 00 00 00 00 Sep 23 22:03:31 dfserver Pluto[7675]: | ***emit ISAKMP Security Association Payload: Sep 23 22:03:31 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:31 dfserver Pluto[7675]: | DOI: ISAKMP_DOI_IPSEC Sep 23 22:03:31 dfserver Pluto[7675]: | ****parse IPsec DOI SIT: Sep 23 22:03:31 dfserver Pluto[7675]: | IPsec DOI SIT: SIT_IDENTITY_ONLY Sep 23 22:03:31 dfserver Pluto[7675]: | ****parse ISAKMP Proposal Payload: Sep 23 22:03:31 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:31 dfserver Pluto[7675]: | length: 136 Sep 23 22:03:31 dfserver Pluto[7675]: | proposal number: 0 Sep 23 22:03:31 dfserver Pluto[7675]: | protocol ID: PROTO_ISAKMP Sep 23 22:03:31 dfserver Pluto[7675]: | SPI size: 0 Sep 23 22:03:31 dfserver Pluto[7675]: | number of transforms: 4 Sep 23 22:03:31 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:31 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:03:31 dfserver Pluto[7675]: | length: 32 Sep 23 22:03:31 dfserver Pluto[7675]: | transform number: 0 Sep 23 22:03:31 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:31 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:31 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:31 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:31 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:31 dfserver Pluto[7675]: "sample" #12: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:31 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:31 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:03:31 dfserver Pluto[7675]: | length: 32 Sep 23 22:03:31 dfserver Pluto[7675]: | transform number: 1 Sep 23 22:03:31 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:31 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:31 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:03:31 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:31 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:31 dfserver Pluto[7675]: "sample" #12: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:31 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:31 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_T Sep 23 22:03:31 dfserver Pluto[7675]: | length: 32 Sep 23 22:03:31 dfserver Pluto[7675]: | transform number: 2 Sep 23 22:03:31 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:31 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:31 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 2 Sep 23 22:03:31 dfserver Pluto[7675]: | [2 is OAKLEY_SHA] Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:31 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:31 dfserver Pluto[7675]: "sample" #12: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:31 dfserver Pluto[7675]: | *****parse ISAKMP Transform Payload (ISAKMP): Sep 23 22:03:31 dfserver Pluto[7675]: | next payload type: ISAKMP_NEXT_NONE Sep 23 22:03:31 dfserver Pluto[7675]: | length: 32 Sep 23 22:03:31 dfserver Pluto[7675]: | transform number: 3 Sep 23 22:03:31 dfserver Pluto[7675]: | transform ID: KEY_IKE Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_TYPE Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:31 dfserver Pluto[7675]: | [1 is OAKLEY_LIFE_SECONDS] Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_LIFE_DURATION Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 3600 Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 5 Sep 23 22:03:31 dfserver Pluto[7675]: | [5 is OAKLEY_3DES_CBC] Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_HASH_ALGORITHM Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:31 dfserver Pluto[7675]: | [1 is OAKLEY_MD5] Sep 23 22:03:31 dfserver Pluto[7675]: | ******parse ISAKMP Oakley attribute: Sep 23 22:03:31 dfserver Pluto[7675]: | af+type: OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:31 dfserver Pluto[7675]: | length/value: 1 Sep 23 22:03:31 dfserver Pluto[7675]: | [1 is OAKLEY_PRESHARED_KEY] Sep 23 22:03:31 dfserver Pluto[7675]: "sample" #12: Can't authenticate: no preshared key found for `10.56.106.1' and `10.56.103.1'. Attribute OAKLEY_AUTHENTICATION_METHOD Sep 23 22:03:31 dfserver Pluto[7675]: "sample" #12: no acceptable Oakley Transform Sep 23 22:03:31 dfserver Pluto[7675]: | state transition function for STATE_MAIN_R0 failed: NO_PROPOSAL_CHOSEN Sep 23 22:03:31 dfserver Pluto[7675]: | next event EVENT_SO_DISCARD in 0 seconds for #12 Sep 23 22:03:31 dfserver Pluto[7675]: | Sep 23 22:03:31 dfserver Pluto[7675]: | *time to handle event Sep 23 22:03:31 dfserver Pluto[7675]: | event after this is EVENT_RETRANSMIT in 39 seconds Sep 23 22:03:31 dfserver Pluto[7675]: | ICOOKIE: b2 49 10 3c 73 9a 86 74 Sep 23 22:03:31 dfserver Pluto[7675]: | RCOOKIE: 6a 7b 4e 16 28 6a c9 e3 Sep 23 22:03:31 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:03:31 dfserver Pluto[7675]: | state hash entry 11 Sep 23 22:03:31 dfserver Pluto[7675]: | next event EVENT_RETRANSMIT in 39 seconds for #9 Sep 23 22:04:10 dfserver Pluto[7675]: | Sep 23 22:04:10 dfserver Pluto[7675]: | *time to handle event Sep 23 22:04:10 dfserver Pluto[7675]: | event after this is EVENT_SHUNT_SCAN in 28 seconds Sep 23 22:04:10 dfserver Pluto[7675]: | handling event EVENT_RETRANSMIT for 10.56.103.1 "sample" #9 Sep 23 22:04:10 dfserver Pluto[7675]: "sample" #9: max number of retransmissions (2) reached STATE_MAIN_I1. No acceptable response to our first IKE message Sep 23 22:04:10 dfserver Pluto[7675]: | ICOOKIE: 65 d3 0c 5f a0 ab 45 bc Sep 23 22:04:10 dfserver Pluto[7675]: | RCOOKIE: 00 00 00 00 00 00 00 00 Sep 23 22:04:10 dfserver Pluto[7675]: | peer: 0a 38 67 01 Sep 23 22:04:10 dfserver Pluto[7675]: | state hash entry 17 Sep 23 22:04:10 dfserver Pluto[7675]: | next event EVENT_SHUNT_SCAN in 28 seconds Sep 23 22:04:38 dfserver Pluto[7675]: | Sep 23 22:04:38 dfserver Pluto[7675]: | *time to handle event Sep 23 22:04:38 dfserver Pluto[7675]: | event after this is EVENT_REINIT_SECRET in 3360 seconds Sep 23 22:04:38 dfserver Pluto[7675]: | inserting event EVENT_SHUNT_SCAN, timeout in 120 seconds Sep 23 22:04:38 dfserver Pluto[7675]: | next event EVENT_SHUNT_SCAN in 120 seconds Sep 23 22:06:38 dfserver Pluto[7675]: | Sep 23 22:06:38 dfserver Pluto[7675]: | *received whack message Sep 23 22:06:38 dfserver Pluto[7675]: | kernel_alg_esp_enc_ok(3): alg_id=3, alg_ivlen=128, alg_minbits=168, alg_maxbits=168, res=0, ret=1 Sep 23 22:06:38 dfserver Pluto[7675]: | kernel_alg_esp_auth_ok(auth=1): ret=1 Sep 23 22:06:38 dfserver Pluto[7675]: | kernel_alg_esp_enc_keylen():alg_id=3, keylen=21 Sep 23 22:06:38 dfserver Pluto[7675]: | kernel_alg_esp_auth_keylen(auth=1, sadb_aalg=2): a_keylen=16 Sep 23 22:06:38 dfserver Pluto[7675]: | kernel_alg_esp_enc_ok(3): alg_id=3, alg_ivlen=128, alg_minbits=168, alg_maxbits=168, res=0, ret=1 Sep 23 22:06:38 dfserver Pluto[7675]: | kernel_alg_esp_auth_ok(auth=2): ret=1 Sep 23 22:06:38 dfserver Pluto[7675]: | kernel_alg_esp_enc_keylen():alg_id=3, keylen=21 Sep 23 22:06:38 dfserver Pluto[7675]: | kernel_alg_esp_auth_keylen(auth=2, sadb_aalg=3): a_keylen=20 Sep 23 22:06:38 dfserver Pluto[7675]: | next event EVENT_SHUNT_SCAN in 0 seconds Sep 23 22:06:38 dfserver Pluto[7675]: | Sep 23 22:06:38 dfserver Pluto[7675]: | *time to handle event Sep 23 22:06:38 dfserver Pluto[7675]: | event after this is EVENT_REINIT_SECRET in 3240 seconds Sep 23 22:06:38 dfserver Pluto[7675]: | inserting event EVENT_SHUNT_SCAN, timeout in 120 seconds Sep 23 22:06:38 dfserver Pluto[7675]: | next event EVENT_SHUNT_SCAN in 120 seconds + _________________________ date + date Mon Sep 23 22:06:39 PDT 2002