Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: suspected ESPinUDP packet (NAT-Traversal) [2].
Nov 13 05:53:04 (none) kernel: klips_debug:   IP: ihl:20 ver:4 tos:0 tlen:120 id:536 frag_off:0 ttl:120 proto:17 (UDP) chk:4095 saddr:192.118.11.113:34021 daddr:62.219.37.156:4500
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: ESPinUDP pkt without Non-IKE - spi=0x4e4874c2
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: removing 8 bytes from ESPinUDP packet
Nov 13 05:53:04 (none) kernel: klips_debug:   IP: ihl:20 ver:4 tos:0 tlen:112 id:536 frag_off:0 ttl:120 proto:50 chk:4095 saddr:192.118.11.113 daddr:62.219.37.156
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: <<< Info -- skb->dev=eth1 dev=eth1 
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: assigning packet ownership to virtual device ipsec1 from physical device eth1.
Nov 13 05:53:04 (none) kernel: klips_debug:   IP: ihl:20 ver:4 tos:0 tlen:112 id:536 frag_off:0 ttl:120 proto:50 chk:4095 saddr:192.118.11.113 daddr:62.219.37.156
Nov 13 05:53:04 (none) kernel: klips_debug:gettdb: linked entry in tdb table for hash=103 of SA:esp0xc274484e@62.219.37.156 requested.
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: SA:esp0xc274484e@62.219.37.156, src=192.118.11.113 of pkt agrees with expected SA source address policy.
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: SA:esp0xc274484e@62.219.37.156 First SA in group.
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: SA:esp0xc274484e@62.219.37.156 No previous backlink in group.
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: natt_type=2 tdbp->ips_natt_type=2 : ok
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: authalg=2 authlen=12
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: packet from 192.118.11.113 received with seq=4 (iv)=0x1c604e2bceacc658 iplen=112 esplen=80 sa=esp0xc274484e@62.219.37.156
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: encalg = 3, authalg = 2.
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: ipsec_alg hashing ... <6>klips_debug:ipsec_sa_esp_hash: hashing c3d6ddbc (80 bytes) to c0247cfc (12 bytes)
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: encalg=3 esphlen=16
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_alg_esp_encrypt: entering with encalg=3, ixt_e=c0243460
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_alg_esp_encrypt: calling cbc_encrypt encalg=3 ips_key_e=c11f8800 idat=c3d6ddcc ilen=64 iv=c3d6ddc4, encrypt=0
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_alg_esp_encrypt: returned ret=64
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: padlen=2, contents: 0x<offset>: 0x<value> 0x<value> ...
Nov 13 05:53:04 (none) kernel: klips_debug:           00: 01 02
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: packet decrypted from 192.118.11.113: next_header = 4, padding = 2
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: trimming to 80.
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: after <ESP_3DES_HMAC_MD5>, SA:esp0xc274484e@62.219.37.156:
Nov 13 05:53:04 (none) kernel: klips_debug:   IP: ihl:20 ver:4 tos:0 tlen:80 id:536 frag_off:0 ttl:120 proto:4 chk:4148 saddr:192.118.11.113 daddr:62.219.37.156
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: SA:esp0xc274484e@62.219.37.156, backpolicy agrees with fwdpolicy.
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: SA:esp0xc274484e@62.219.37.156, Another IPSEC header to process.
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: IPIP tunnel stripped.
Nov 13 05:53:04 (none) kernel: klips_debug:   IP: ihl:20 ver:4 tos:0 tlen:60 id:536 frag_off:0 ttl:128 proto:1 (ICMP) chk:51566 saddr:10.175.0.21 daddr:62.219.37.156 type:code=8:0
Nov 13 05:53:04 (none) kernel: klips_debug:ipsec_rcv: SA:tun0x1003@62.219.37.156, inner tunnel policy [192.118.11.113/32 -> 62.219.37.156/32] does not agree with pkt contents [10.175.0.21 -> 62.219.37.156].