|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Adrian Eurell (techman
ultra.net.au)Date: Sat Feb 17 2001 - 03:59:46 CST
Hi,
Shown below is the diag dump from isakmpd, from the output I believe the
phase one connection process is working fine but phase two is not
connecting.
I have been trying to establish a connection between my server
(firewall/Internet gateway) to a Cisco VPN unit, the prime use of this is to
gain access to internal web servers (located on the 10.0.0.0 network) I do
not know what Cisco equipment they are using but the Cisco Safenet client
works fine when I setup it up with the information shown below.
Any information or assistance will be gratefully accepted.
Adrian.
The information I was given about the Cisco end
IPSec Policy:
Authentication method & algorithms : Authentication method :
pre-shared key
"that_dam_pass"
(Phase 1) Encryption algorithm :
56 bit encryption (DES)
Hash algorithm : MD5
Key group :
Deffie-Hellman Group 1
Security association : use
default
life time
Key Exchange (Phase 2) : Encapsulation protocol ESP
Encryption algorithm : 56
bit encryption (DES)
Hash algorithm : MD5
Encapsulation mode : Tunnel
isakmpd file.
[Phase 1]
1.2.3.4= ISAKMP-peer-wstar
[Phase 2]
Connections= IPsec-east-wstar
[ISAKMP-peer-wstar]
Phase= 1
Transport= udp
Address= 203.147.252.113
Configuration= Default-main-mode
Authentication= that_dam_pass
[IPsec-east-wstar]
Phase= 2
ISAKMP-peer= ISAKMP-peer-wstar
Configuration= Default-quick-mode
Local-ID= Net-east
Remote-ID= Net-west
[Net-west]
ID-type= IPV4_ADDR_SUBNET
Network= 10.0.0.0
Netmask= 255.255.255.0
[Net-east]
ID-type= IPV4_ADDR_SUBNET
Network= 192.168.0.0
Netmask= 255.255.255.0
[Default-main-mode]
DOI= IPSEC
EXCHANGE_TYPE= ID_PROT
Transforms= DES-MD5
[Default-quick-mode]
DOI= IPSEC
EXCHANGE_TYPE= QUICK_MODE
Suites= QM-ESP-DES-MD5-PFS-SUITE
#QM-ESP-AES-SHA-PFS-SUITE
[DES-MD5]
ENCRYPTION_ALGORITHM= DES_CBC
HASH_ALGORITHM= MD5
AUTHENTICATION_METHOD= PRE_SHARED
#KEY_LENGTH= 56
#GROUP_DESCRIPTION= MODP_1024
Life= ANY
[QM-ESP-DES-MD5-PFS-SUITE]
Protocols= QM-ESP-DES-MD5-PFS
[QM-ESP-DES-MD5-PFS]
PROTOCOL_ID= IPSEC_ESP
Transforms= QM-ESP-DES-MD5-PFS-XF
[QM-ESP-DES-MD5-PFS-XF]
TRANSFORM_ID= DES_CBC
ENCRYPTION_ALGORITHM= DES_CBC
ENCAPSULATION_MODE= TUNNEL
HASH_ALGORITHM= MD5
#AUTHENTICATION_ALGORITHM= HMAC
GROUP_DESCRIPTION= MODP_1024
Life= LIFE_3600_SECS
isapmkd diag information (isakmpd -d -DA=89)
194440.465964 Sdep 80 pf_key_v2_write: iov[0]:
194440.466405 Sdep 80 02070002 02000000 01000000 952f0000
194440.467135 Sdep 80 pf_key_v2_read: msg:
194440.467621 Sdep 80 02070002 0b000000 01000000 952f0000 09000e00 03050000
0400a000 a0000000
194440.468098 Sdep 80 03008000 80000000 0500a000 a0000000 01404000 40000000
0240c000 c0000000
194440.470223 Sdep 80 03400500 38000000 04400500 10000000 05400a00 0a000000
194440.470583 Sdep 80 pf_key_v2_write: iov[0]:
194440.471152 Sdep 80 02070001 02000000 02000000 952f0000
194440.471640 Sdep 80 pf_key_v2_read: msg:
194440.472120 Sdep 80 02070001 0b000000 02000000 952f0000 09000e00 03050000
0400a000 a0000000
194440.474183 Sdep 80 03008000 80000000 0500a000 a0000000 01404000 40000000
0240c000 c0000000
194440.474624 Sdep 80 03400500 38000000 04400500 10000000 05400a00 0a000000
194441.316646 Misc 40 conf_load_defaults : main mode DES-MD5
194441.317863 Misc 40 conf_load_defaults : quick mode
QM-ESP-DES-MD5-PFS-SUITE
194441.320693 Misc 60 conf_get_str: configuration value not found [Phase
1]:1.2.3.4
194441.321016 Misc 70 [Phase 1]:1.2.3.4->ISAKMP-peer-wstar
194441.322991 Misc 60 conf_get_str: configuration value not found [Phase
2]:Connections
194441.323311 Misc 70 [Phase 2]:Connections->IPsec-east-wstar
194441.323617 Misc 60 conf_get_str: configuration value not found
[ISAKMP-peer-wstar]:Phase
194441.323923 Misc 70 [ISAKMP-peer-wstar]:Phase->1
194441.325723 Misc 60 conf_get_str: configuration value not found
[ISAKMP-peer-wstar]:Transport
194441.326045 Misc 70 [ISAKMP-peer-wstar]:Transport->udp
194441.326569 Misc 60 conf_get_str: configuration value not found
[ISAKMP-peer-wstar]:Address
194441.326900 Misc 70 [ISAKMP-peer-wstar]:Address->1.2.3.4
194441.328767 Misc 60 conf_get_str: configuration value not found
[ISAKMP-peer-wstar]:Configuration
194441.329093 Misc 70 [ISAKMP-peer-wstar]:Configuration->Default-main-mode
194441.329411 Misc 60 conf_get_str: configuration value not found
[ISAKMP-peer-wstar]:Authentication
194441.331156 Misc 70
[ISAKMP-peer-wstar]:Authentication->that_damm_pass_phrase
194441.331477 Misc 60 conf_get_str: configuration value not found
[IPsec-east-wstar]:Phase
194441.331926 Misc 70 [IPsec-east-wstar]:Phase->2
194441.332244 Misc 60 conf_get_str: configuration value not found
[IPsec-east-wstar]:ISAKMP-peer
194441.334119 Misc 70 [IPsec-east-wstar]:ISAKMP-peer->ISAKMP-peer-wstar
194441.334449 Misc 60 conf_get_str: configuration value not found
[IPsec-east-wstar]:Configuration
194441.334763 Misc 70 [IPsec-east-wstar]:Configuration->Default-quick-mode
194441.335082 Misc 60 conf_get_str: configuration value not found
[IPsec-east-wstar]:Local-ID
194441.337161 Misc 70 [IPsec-east-wstar]:Local-ID->Net-east
194441.337491 Misc 60 conf_get_str: configuration value not found
[IPsec-east-wstar]:Remote-ID
194441.337936 Misc 70 [IPsec-east-wstar]:Remote-ID->Net-west
194441.338256 Misc 60 conf_get_str: configuration value not found
[Net-west]:ID-type
194441.340079 Misc 70 [Net-west]:ID-type->IPV4_ADDR_SUBNET
194441.340398 Misc 60 conf_get_str: configuration value not found
[Net-west]:Network
194441.340706 Misc 70 [Net-west]:Network->10.0.0.0
194441.341014 Misc 60 conf_get_str: configuration value not found
[Net-west]:Netmask
194441.342792 Misc 70 [Net-west]:Netmask->255.255.255.0
194441.343110 Misc 60 conf_get_str: configuration value not found
[Net-east]:ID-type
194441.343547 Misc 70 [Net-east]:ID-type->IPV4_ADDR_SUBNET
194441.343869 Misc 60 conf_get_str: configuration value not found
[Net-east]:Network
194441.346126 Misc 70 [Net-east]:Network->192.168.0.0
194441.346448 Misc 60 conf_get_str: configuration value not found
[Net-east]:Netmask
194441.346758 Misc 70 [Net-east]:Netmask->255.255.255.0
194441.347064 Misc 60 conf_get_str: configuration value not found
[Default-main-mode]:DOI
194441.348828 Misc 70 [Default-main-mode]:DOI->IPSEC
194441.349149 Misc 60 conf_get_str: configuration value not found
[Default-main-mode]:EXCHANGE_TYPE
194441.349603 Misc 70 [Default-main-mode]:EXCHANGE_TYPE->ID_PROT
194441.349944 Misc 60 conf_get_str: configuration value not found
[Default-main-mode]:Transforms
194441.351831 Misc 70 [Default-main-mode]:Transforms->DES-MD5
194441.352150 Misc 60 conf_get_str: configuration value not found
[Default-quick-mode]:DOI
194441.352460 Misc 70 [Default-quick-mode]:DOI->IPSEC
194441.352769 Misc 60 conf_get_str: configuration value not found
[Default-quick-mode]:EXCHANGE_TYPE
194441.354634 Misc 70 [Default-quick-mode]:EXCHANGE_TYPE->QUICK_MODE
194441.354961 Misc 60 conf_get_str: configuration value not found
[Default-quick-mode]:Suites
194441.355411 Misc 70 [Default-quick-mode]:Suites->QM-ESP-DES-MD5-PFS-SUITE
194441.355737 Misc 60 conf_get_str: configuration value not found
[DES-MD5]:ENCRYPTION_ALGORITHM
194441.357758 Misc 70 [DES-MD5]:ENCRYPTION_ALGORITHM->DES_CBC
194441.358080 Misc 60 conf_get_str: configuration value not found
[DES-MD5]:HASH_ALGORITHM
194441.358387 Misc 70 [DES-MD5]:HASH_ALGORITHM->MD5
194441.358695 Misc 60 conf_get_str: configuration value not found
[DES-MD5]:AUTHENTICATION_METHOD
194441.360522 Misc 70 [DES-MD5]:AUTHENTICATION_METHOD->PRE_SHARED
194441.360846 Misc 60 conf_get_str: configuration value not found
[DES-MD5]:Life
194441.361290 Misc 70 [DES-MD5]:Life->ANY
194441.361609 Misc 60 conf_get_str: configuration value not found
[QM-ESP-DES-MD5-PFS-SUITE]:Protocols
194441.363414 Misc 70
[QM-ESP-DES-MD5-PFS-SUITE]:Protocols->QM-ESP-DES-MD5-PFS
194441.363735 Misc 60 conf_get_str: configuration value not found
[QM-ESP-DES-MD5-PFS]:PROTOCOL_ID
194441.364045 Misc 70 [QM-ESP-DES-MD5-PFS]:PROTOCOL_ID->IPSEC_ESP
194441.364355 Misc 60 conf_get_str: configuration value not found
[QM-ESP-DES-MD5-PFS]:Transforms
194441.366512 Misc 70 [QM-ESP-DES-MD5-PFS]:Transforms->QM-ESP-DES-MD5-PFS-XF
194441.366842 Misc 60 conf_get_str: configuration value not found
[QM-ESP-DES-MD5-PFS-XF]:TRANSFORM_ID
194441.367306 Misc 70 [QM-ESP-DES-MD5-PFS-XF]:TRANSFORM_ID->DES_CBC
194441.367621 Misc 60 conf_get_str: configuration value not found
[QM-ESP-DES-MD5-PFS-XF]:ENCRYPTION_ALGORITHM
194441.369678 Misc 70 [QM-ESP-DES-MD5-PFS-XF]:ENCRYPTION_ALGORITHM->DES_CBC
194441.370006 Misc 60 conf_get_str: configuration value not found
[QM-ESP-DES-MD5-PFS-XF]:ENCAPSULATION_MODE
194441.370327 Misc 70 [QM-ESP-DES-MD5-PFS-XF]:ENCAPSULATION_MODE->TUNNEL
194441.371975 Misc 60 conf_get_str: configuration value not found
[QM-ESP-DES-MD5-PFS-XF]:HASH_ALGORITHM
194441.372305 Misc 70 [QM-ESP-DES-MD5-PFS-XF]:HASH_ALGORITHM->MD5
194441.372756 Misc 60 conf_get_str: configuration value not found
[QM-ESP-DES-MD5-PFS-XF]:GROUP_DESCRIPTION
194441.374538 Misc 70 [QM-ESP-DES-MD5-PFS-XF]:GROUP_DESCRIPTION->MODP_1024
194441.374874 Misc 60 conf_get_str: configuration value not found
[QM-ESP-DES-MD5-PFS-XF]:Life
194441.375185 Misc 70 [QM-ESP-DES-MD5-PFS-XF]:Life->LIFE_3600_SECS
194441.375491 Misc 60 conf_get_str: configuration value not found
[General]:Retransmits
194441.377610 Misc 70 [General]:Retransmits->3
194441.377932 Misc 60 conf_get_str: configuration value not found
[General]:Exchange-max-time
194441.378241 Misc 70 [General]:Exchange-max-time->120
194441.378699 Misc 60 conf_get_str: configuration value not found
[General]:Policy-file
194441.380464 Misc 70 [General]:Policy-file->/etc/isakmpd/isakmpd.policy
194441.380784 Misc 60 conf_get_str: configuration value not found
[X509-certificates]:CA-directory
194441.381109 Misc 70 [X509-certificates]:CA-directory->/etc/isakmpd/ca/
194441.381420 Misc 60 conf_get_str: configuration value not found
[X509-certificates]:Cert-directory
194441.383408 Misc 70
[X509-certificates]:Cert-directory->/etc/isakmpd/certs/
194441.383734 Misc 60 conf_get_str: configuration value not found
[X509-certificates]:Private-key
194441.384175 Misc 70
[X509-certificates]:Private-key->/etc/isakmpd/private/local.key
194441.385857 Misc 60 conf_get_str: [DES-MD5]:ENCRYPTION_ALGORITHM->DES_CBC
194441.386182 Misc 60 conf_get_str: [DES-MD5]:HASH_ALGORITHM->MD5
194441.386492 Misc 60 conf_get_str:
[DES-MD5]:AUTHENTICATION_METHOD->PRE_SHARED
194441.388050 Misc 60 conf_get_str: configuration value not found
[DES-MD5]:GROUP_DESCRIPTION
194441.388372 Misc 70 [DES-MD5]:GROUP_DESCRIPTION->MODP_768
194441.388832 Misc 60 conf_get_str: [DES-MD5]:Life->ANY
194441.389146 Misc 60 conf_get_str:
[QM-ESP-DES-MD5-PFS-SUITE]:Protocols->QM-ESP-DES-MD5-PFS
194441.391451 Misc 60 conf_get_str:
[QM-ESP-DES-MD5-PFS]:PROTOCOL_ID->IPSEC_ESP
194441.391776 Misc 60 conf_get_str:
[QM-ESP-DES-MD5-PFS]:Transforms->QM-ESP-DES-MD5-PFS-XF
194441.392102 Misc 60 conf_get_str:
[QM-ESP-DES-MD5-PFS-XF]:TRANSFORM_ID->DES_CBC
194441.393758 Misc 60 conf_get_str:
[QM-ESP-DES-MD5-PFS-XF]:ENCAPSULATION_MODE->TUNNEL
194441.394095 Misc 60 conf_get_str: configuration value not found
[QM-ESP-DES-MD5-PFS-XF]:AUTHENTICATION_ALGORITHM
194441.394564 Misc 70
[QM-ESP-DES-MD5-PFS-XF]:AUTHENTICATION_ALGORITHM->HMAC_MD5
194441.396309 Misc 60 conf_get_str:
[QM-ESP-DES-MD5-PFS-XF]:GROUP_DESCRIPTION->MODP_1024
194441.396652 Misc 60 conf_get_str:
[QM-ESP-DES-MD5-PFS-XF]:Life->LIFE_3600_SECS
194441.397664 Misc 60 conf_get_str: configuration value not found
[LIFE_MAIN_MODE]:LIFE_TYPE
194441.397986 Misc 70 [LIFE_MAIN_MODE]:LIFE_TYPE->SECONDS
194441.398433 Misc 60 conf_get_str: configuration value not found
[LIFE_MAIN_MODE]:LIFE_DURATION
194441.400348 Misc 70 [LIFE_MAIN_MODE]:LIFE_DURATION->3600,60:86400
194441.400666 Misc 60 conf_get_str: configuration value not found
[LIFE_QUICK_MODE]:LIFE_TYPE
194441.400974 Misc 70 [LIFE_QUICK_MODE]:LIFE_TYPE->SECONDS
194441.401283 Misc 60 conf_get_str: configuration value not found
[LIFE_QUICK_MODE]:LIFE_DURATION
194441.403173 Misc 70 [LIFE_QUICK_MODE]:LIFE_DURATION->1200,60:86400
194441.403503 Misc 60 conf_get_str: [Phase 2]:Connections->IPsec-east-wstar
194441.404005 Timr 10 timer_add_event: event connection_checker(0xf1790)
added last, expiration in 0s
194441.404368 Misc 60 conf_get_str: configuration value not found
[IPsec-east-wstar]:Flags
194441.406331 Misc 60 conf_get_str: [IPsec-east-wstar]:Local-ID->Net-east
194441.406648 Misc 60 conf_get_str: [IPsec-east-wstar]:Remote-ID->Net-west
194441.406973 Misc 60 conf_get_str: [Net-east]:ID-type->IPV4_ADDR_SUBNET
194441.407290 Misc 60 conf_get_str: [Net-east]:Network->192.168.0.0
194441.409054 Misc 60 conf_get_str: [Net-east]:Netmask->255.255.255.0
194441.409392 Misc 60 conf_get_str: [Net-west]:ID-type->IPV4_ADDR_SUBNET
194441.409836 Misc 60 conf_get_str: [Net-west]:Network->10.0.0.0
194441.410153 Misc 60 conf_get_str: [Net-west]:Netmask->255.255.255.0
194441.411928 Misc 60 connection_record_passive: passive connection
"IPsec-east-wstar" added
194441.412279 Misc 60 conf_get_str: configuration value not found [Phase
2]:Passive-Connections
194441.413063 Timr 10 timer_add_event: event cookie_reset_event(0x0) added
last, expiration in 360s
194441.414832 Misc 50 policy_init: initializing
194441.903468 Misc 60 conf_get_str:
[General]:policy-file->/etc/isakmpd/isakmpd.policy
194441.914569 Default policy_init: kn_add_assertion (0, 0xec700, 254,
ASSERT_FLAG_LOCAL) failed
194441.915125 Misc 60 conf_get_str:
[X509-certificates]:CA-directory->/etc/isakmpd/ca/
194441.916991 Cryp 40 x509_read_from_dir: reading certs from
/etc/isakmpd/ca/
194441.937848 Misc 60 conf_get_str:
[X509-certificates]:Cert-directory->/etc/isakmpd/certs/
194441.938047 Cryp 40 x509_read_from_dir: reading certs from
/etc/isakmpd/certs/
194441.972148 Misc 60 conf_get_str: configuration value not found
[General]:Listen-on
194441.972672 Trpt 70 transport_add: adding 0xee200
194441.973094 Misc 60 conf_get_str: configuration value not found
[General]:Listen-on
194441.973558 Trpt 70 transport_add: adding 0xee280
194441.975476 Misc 60 conf_get_str: configuration value not found
[General]:Listen-on
194441.976085 Trpt 70 transport_add: adding 0xee300
194441.976520 Misc 60 conf_get_str: configuration value not found
[General]:Listen-on
194441.977016 Trpt 70 transport_add: adding 0xee380
194441.979379 Misc 60 conf_get_str: configuration value not found
[General]:Listen-on
194441.979752 Trpt 70 transport_add: adding 0xee400
194441.980062 Misc 60 conf_get_str: configuration value not found
[General]:Listen-on
194442.046660 Timr 10 timer_handle_expirations: event
connection_checker(0xf1790)
194442.047015 Misc 60 conf_get_str: configuration value not found
[General]:check-interval
194442.047351 Timr 10 timer_add_event: event connection_checker(0xf1790)
added before cookie_reset_event(0x0), expiration in 60s
194442.049229 Sdep 70 pf_key_v2_connection_check: SA for IPsec-east-wstar
missing
194442.049561 Misc 60 conf_get_str: [IPsec-east-wstar]:Phase->2
194442.049887 Misc 60 conf_get_str:
[IPsec-east-wstar]:ISAKMP-peer->ISAKMP-peer-wstar
194442.050218 Misc 60 conf_get_str: [ISAKMP-peer-wstar]:Phase->1
194442.052024 Misc 60 conf_get_str: [ISAKMP-peer-wstar]:Phase->1
194442.052356 Misc 60 conf_get_str: [ISAKMP-peer-wstar]:Transport->udp
194442.052845 Misc 60 conf_get_str: configuration value not found
[ISAKMP-peer-wstar]:Port
194442.053166 Misc 60 conf_get_str: [ISAKMP-peer-wstar]:Address->1.2.3.4
194442.055032 Misc 60 conf_get_str: configuration value not found
[ISAKMP-peer-wstar]:Local-address
194442.055355 Misc 60 conf_get_str: configuration value not found
[General]:Listen-on
194442.055657 Trpt 70 transport_add: adding 0xee480
194442.055961 Misc 60 conf_get_str:
[ISAKMP-peer-wstar]:Configuration->Default-main-mode
194442.057914 Misc 60 conf_get_str: [Default-main-mode]:DOI->IPSEC
194442.058235 Misc 60 conf_get_str:
[Default-main-mode]:EXCHANGE_TYPE->ID_PROT
194442.058710 Misc 60 conf_get_str: [General]:Exchange-max-time->120
194442.059061 Timr 10 timer_add_event: event exchange_free_aux(0xec800)
added before cookie_reset_event(0x0), expiration in 120s
194442.061082 Misc 60 conf_get_str:
[ISAKMP-peer-wstar]:Configuration->Default-main-mode
194442.061527 Exch 10 exchange_establish_p1: 0xec800 ISAKMP-peer-wstar
Default-main-mode policy initiator phase 1 doi 1 exchange 2 step 0
194442.061865 Exch 10 exchange_establish_p1: icookie 0766857bd1f69f91
rcookie 0000000000000000
194442.063745 Exch 10 exchange_establish_p1: msgid 00000000
194442.064080 SA 70 sa_enter: SA 0xeca00 added to SA list
194442.064515 SA 80 sa_reference: SA 0xeca00 now has 1 references
194442.064834 SA 60 sa_create: sa 0xeca00 phase 1 added to exchange 0xec800
(ISAKMP-peer-wstar)
194442.066688 Misc 60 conf_get_str: [Default-main-mode]:Transforms->DES-MD5
194442.067052 Misc 60 conf_get_str: [DES-MD5]:ENCRYPTION_ALGORITHM->DES_CBC
194442.067371 Misc 60 conf_get_str: [DES-MD5]:HASH_ALGORITHM->MD5
194442.067680 Misc 60 conf_get_str:
[DES-MD5]:AUTHENTICATION_METHOD->PRE_SHARED
194442.069495 Misc 60 conf_get_str: [DES-MD5]:GROUP_DESCRIPTION->MODP_768
194442.069822 Misc 60 conf_get_str: [DES-MD5]:Life->ANY
194442.070273 Misc 60 conf_get_str: configuration value not found
[ANY]:LIFE_TYPE
194442.070587 Misc 70 attribute_set_constant: no LIFE_TYPE in the ANY
section
194442.072343 Misc 60 conf_get_str: configuration value not found
[ANY]:LIFE_DURATION
194442.072673 Misc 60 conf_get_str: configuration value not found
[DES-MD5]:PRF
194442.072971 Misc 70 attribute_set_constant: no PRF in the DES-MD5 section
194442.073274 Misc 60 conf_get_str: configuration value not found
[DES-MD5]:KEY_LENGTH
194442.075194 Misc 60 conf_get_str: configuration value not found
[DES-MD5]:FIELD_SIZE
194442.075517 Misc 60 conf_get_str: configuration value not found
[DES-MD5]:GROUP_ORDER
194442.076038 Mesg 70 message_send: message 0xec900
194442.076411 Mesg 70 ICOOKIE: 0x0766857bd1f69f91
194442.078224 Mesg 70 RCOOKIE: 0x0000000000000000
194442.078538 Mesg 70 NEXT_PAYLOAD: SA
194442.078845 Mesg 70 VERSION: 16
194442.079142 Mesg 70 EXCH_TYPE: ID_PROT
194442.079439 Mesg 70 FLAGS: [ ]
194442.079759 Mesg 70 MESSAGE_ID: 0x00000000
194442.080064 Mesg 70 LENGTH: 72
194442.081972 Mesg 70 message_send: 0766857b d1f69f91 00000000 00000000
01100200 00000000 00000048 0000002c
194442.082625 Mesg 70 message_send: 00000001 00000001 00000020 01010001
00000018 00010000 80010001 80020001
194442.082988 Mesg 70 message_send: 80030001 80040001
194442.084702 Exch 40 exchange_run: exchange 0xec800 finished step 0,
advancing...
194442.085829 Misc 60 conf_get_str: [General]:retransmits->3
194442.086162 Trpt 30 transport_send_messages: message 0xec900 scheduled for
retransmission 1 in 7 secs
194442.086500 Timr 10 timer_add_event: event message_send(0xec900) added
before connection_checker(0xf1790), expiration in 7s
194442.325628 Trpt 70 transport_add: adding 0xee600
194442.326039 Mesg 70 message_recv: message 0xecb00
194442.326408 Mesg 70 ICOOKIE: 0x0766857bd1f69f91
194442.326743 Mesg 70 RCOOKIE: 0x5632fc11624495e4
194442.327040 Mesg 70 NEXT_PAYLOAD: SA
194442.327342 Mesg 70 VERSION: 16
194442.329116 Mesg 70 EXCH_TYPE: ID_PROT
194442.329422 Mesg 70 FLAGS: [ ]
194442.329738 Mesg 70 MESSAGE_ID: 0x00000000
194442.330041 Mesg 70 LENGTH: 72
194442.330516 Mesg 70 message_recv: 0766857b d1f69f91 5632fc11 624495e4
01100200 00000000 00000048 0000002c
194442.332397 Mesg 70 message_recv: 00000001 00000001 00000020 01010001
00000018 01010000 80010001 80020001
194442.332753 Mesg 70 message_recv: 80040001 80030001
194442.333223 SA 70 sa_enter: SA 0xeca00 added to SA list
194442.334067 Mesg 20 message_free: freeing 0xec900
194442.335845 Timr 10 timer_remove_event: removing event
message_send(0xec900)
194442.336159 Trpt 70 transport_release: freeing 0xee480
194442.336484 Mesg 50 message_parse_payloads: offset 0x1c payload SA
194442.338128 Mesg 60 message_validate_payloads: payload SA at 0xee69c of
message 0xecb00
194442.338451 Mesg 70 DOI: 1
194442.338919 Mesg 50 message_parse_payloads: offset 0x28 payload PROPOSAL
194442.339242 Mesg 50 message_parse_payloads: offset 0x30 payload TRANSFORM
194442.340980 Mesg 50 Transform 1's attributes
194442.341297 Mesg 50 Attribute ENCRYPTION_ALGORITHM value 1
194442.341711 Mesg 50 Attribute HASH_ALGORITHM value 1
194442.342029 Mesg 50 Attribute GROUP_DESCRIPTION value 1
194442.342329 Mesg 50 Attribute AUTHENTICATION_METHOD value 1
194442.344116 Mesg 60 message_validate_payloads: payload PROPOSAL at 0xee6a8
of message 0xecb00
194442.344435 Mesg 70 NO: 1
194442.344873 Mesg 70 PROTO: ISAKMP
194442.345179 Mesg 70 SPI_SZ: 0
194442.345472 Mesg 70 NTRANSFORMS: 1
194442.345783 Mesg 60 message_validate_payloads: payload TRANSFORM at
0xee6b0 of message 0xecb00
194442.347744 Mesg 70 NO: 1
194442.348048 Mesg 70 ID: 1
194442.348397 Mesg 30 message_negotiate_sa: transform 1 proto 1 proposal 1
ok
194442.348728 SA 80 sa_add_transform: proto 0xef180 no 1 proto 1 chosen
0xf24e0 sa 0xeca00 id 1
194442.349047 Misc 60 conf_get_str: [Default-main-mode]:Transforms->DES-MD5
194442.350995 Misc 60 conf_get_str: [DES-MD5]:ENCRYPTION_ALGORITHM->DES_CBC
194442.351332 Misc 60 conf_get_str: [DES-MD5]:HASH_ALGORITHM->MD5
194442.351790 Misc 60 conf_get_str: [DES-MD5]:GROUP_DESCRIPTION->MODP_768
194442.352116 Misc 60 conf_get_str:
[DES-MD5]:AUTHENTICATION_METHOD->PRE_SHARED
194442.354026 Misc 20 ike_phase_1_validate_prop: success
194442.354346 Mesg 30 message_negotiate_sa: proposal 1 succeeded
194442.354642 Misc 20 ipsec_decode_transform: transform 1 chosen
194442.354996 Misc 70 group_get: returning 0xef200 of group 1
194442.355306 Exch 40 exchange_run: exchange 0xec800 finished step 1,
advancing...
194442.488485 Misc 80 ipsec_g_x: g^xi:
194442.488978 Misc 80 64dacf54 c61727de fd17962a a1e03d53 f805c33f 1c8c59e2
740aa804 bc918734
194442.489436 Misc 80 807d1068 d05926ac 42f3cd28 6292d89a 210dde6a 54a9ebf2
fc82ee2a 17de8e29
194442.489897 Misc 80 d85e580e 469c782d 23d3d814 d2a4f795 009ddbe2 014d62b4
f63abb47 dc961f7c
194442.491903 Exch 80 exchange_nonce: NONCE_i:
194442.492286 Exch 80 da843208 b3f3506e 75944c4f 8a818230
194442.492598 Mesg 70 message_send: message 0xec900
194442.492940 Mesg 70 ICOOKIE: 0x0766857bd1f69f91
194442.493281 Mesg 70 RCOOKIE: 0x5632fc11624495e4
194442.494970 Mesg 70 NEXT_PAYLOAD: KEY_EXCH
194442.495286 Mesg 70 VERSION: 16
194442.495723 Mesg 70 EXCH_TYPE: ID_PROT
194442.496029 Mesg 70 FLAGS: [ ]
194442.496347 Mesg 70 MESSAGE_ID: 0x00000000
194442.496650 Mesg 70 LENGTH: 148
194442.498292 Mesg 70 message_send: 0766857b d1f69f91 5632fc11 624495e4
04100200 00000000 00000094 0a000064
194442.498784 Mesg 70 message_send: 64dacf54 c61727de fd17962a a1e03d53
f805c33f 1c8c59e2 740aa804 bc918734
194442.499254 Mesg 70 message_send: 807d1068 d05926ac 42f3cd28 6292d89a
210dde6a 54a9ebf2 fc82ee2a 17de8e29
194442.501485 Mesg 70 message_send: d85e580e 469c782d 23d3d814 d2a4f795
009ddbe2 014d62b4 f63abb47 dc961f7c
194442.501906 Mesg 70 message_send: 00000014 da843208 b3f3506e 75944c4f
8a818230
194442.502364 Exch 40 exchange_run: exchange 0xec800 finished step 2,
advancing...
194442.505330 Misc 60 conf_get_str: [General]:retransmits->3
194442.505663 Trpt 30 transport_send_messages: message 0xec900 scheduled for
retransmission 1 in 7 secs
194442.506017 Timr 10 timer_add_event: event message_send(0xec900) added
before connection_checker(0xf1790), expiration in 7s
194442.795051 Trpt 70 transport_add: adding 0xee800
194442.795460 Mesg 70 message_recv: message 0xecc00
194442.795807 Mesg 70 ICOOKIE: 0x0766857bd1f69f91
194442.796147 Mesg 70 RCOOKIE: 0x5632fc11624495e4
194442.796441 Mesg 70 NEXT_PAYLOAD: KEY_EXCH
194442.796770 Mesg 70 VERSION: 16
194442.798517 Mesg 70 EXCH_TYPE: ID_PROT
194442.798808 Mesg 70 FLAGS: [ ]
194442.799122 Mesg 70 MESSAGE_ID: 0x00000000
194442.799424 Mesg 70 LENGTH: 172
194442.799899 Mesg 70 message_recv: 0766857b d1f69f91 5632fc11 624495e4
04100200 00000000 000000ac 0a000064
194442.801883 Mesg 70 message_recv: 161f0352 17542a74 08325cb8 e4df36ff
836cf699 08ea8f70 fe1d7996 179e9284
194442.802509 Mesg 70 message_recv: a87ade7c 539204a5 ad9099cd 09a3fffe
eb9f2156 332d15e2 2488155f 881fea1b
194442.803012 Mesg 70 message_recv: f2ca19e1 beafe47f 2359d8c1 115b3491
0c1870b8 a5f3f288 ebaec7f8 fb10918c
194442.805120 Mesg 70 message_recv: 0d000018 8f4379f0 7b387fb7 9166995b
caac9301 d1d8ac91 00000014 a3f55b0c
194442.805492 Mesg 70 message_recv: 624595e4 dfbd9714 c224a41b
194442.805794 Mesg 20 message_free: freeing 0xec900
194442.806094 Timr 10 timer_remove_event: removing event
message_send(0xec900)
194442.807968 Mesg 50 message_parse_payloads: offset 0x1c payload KEY_EXCH
194442.808292 Mesg 50 message_parse_payloads: offset 0x80 payload NONCE
194442.808742 Mesg 50 message_parse_payloads: offset 0x98 payload VENDOR
194442.809069 Mesg 60 message_validate_payloads: payload KEY_EXCH at 0xecd1c
of message 0xecc00
194442.811015 Mesg 60 message_validate_payloads: payload NONCE at 0xecd80 of
message 0xecc00
194442.811342 Mesg 60 message_validate_payloads: payload VENDOR at 0xecd98
of message 0xecc00
194442.811634 Mesg 40 message_validate_vendor: vendor ID seen
194442.811973 Misc 80 ipsec_g_x: g^xr:
194442.813925 Misc 80 161f0352 17542a74 08325cb8 e4df36ff 836cf699 08ea8f70
fe1d7996 179e9284
194442.814535 Misc 80 a87ade7c 539204a5 ad9099cd 09a3fffe eb9f2156 332d15e2
2488155f 881fea1b
194442.815007 Misc 80 f2ca19e1 beafe47f 2359d8c1 115b3491 0c1870b8 a5f3f288
ebaec7f8 fb10918c
194442.816785 Exch 80 exchange_nonce: NONCE_r:
194442.817188 Exch 80 8f4379f0 7b387fb7 9166995b caac9301 d1d8ac91
194442.950502 Misc 80 ike_phase_1_post_exchange_KE_NONCE: g^xy:
194442.950989 Misc 80 bc2c7f45 575b0082 35acc4a4 ea29295a 1fdf04dd 167c6d35
193cd54b 289aad93
194442.951465 Misc 80 7fb73a62 4269ea77 6be8085a bdda5077 462e45b3 c4fc5b52
3188dc76 ec70c001
194442.951925 Misc 80 8f10aeff 0a800dec 4e3bd941 3bde42d3 1125e043 058e3cd4
8c835748 75ff8e6a
194442.953958 Misc 60 conf_get_str:
[ISAKMP-peer-wstar]:Authentication->that_dam_pass
194442.954358 Misc 80 ike_phase_1_post_exchange_KE_NONCE: SKEYID:
194442.954736 Misc 80 72a4164c 4cf9ff31 fb437961 6a403502
194442.955087 Misc 80 ike_phase_1_post_exchange_KE_NONCE: SKEYID_d:
194442.956922 Misc 80 ce49e3e4 05052ce5 a0e0b63b 7c38c618
194442.957270 Misc 80 ike_phase_1_post_exchange_KE_NONCE: SKEYID_a:
194442.957812 Misc 80 6a7aea7b 97ba0f87 4b3d465e e6074ad5
194442.958155 Misc 80 ike_phase_1_post_exchange_KE_NONCE: SKEYID_e:
194442.959908 Misc 80 2519173f 7bf778d9 4ae26d6b 1b5e68c2
194442.960265 Cryp 40 crypto_init: key:
194442.960589 Cryp 40 2519173f 7bf778d9
194442.960953 Cryp 50 crypto_update_iv: initialized IV:
194442.961286 Cryp 50 11c66ea4 7a197568
194442.961584 Exch 10 exchange_run: unexpected payload VENDOR
194442.963415 Mesg 20 message_free: freeing 0xecb00
194442.963735 Exch 40 exchange_run: exchange 0xec800 finished step 3,
advancing...
194442.964227 Misc 60 conf_get_str: configuration value not found
[ISAKMP-peer-wstar]:ID
194442.964577 Misc 40 ike_phase_1_send_ID: IPV4_ADDR:
194442.966338 Misc 40 3d098d42
194442.966787 Misc 80 pre_shared_encode_hash: HASH_I:
194442.967165 Misc 80 51041853 6bd79bd7 a5a9d3c0 cc552898
194442.967515 Cryp 10 crypto_encrypt: before encryption:
194442.967986 Cryp 10 0800000c 01000000 3d098d42 0b000014 51041853 6bd79bd7
a5a9d3c0 cc552898
194442.969980 Cryp 10 0000001c 00000001 01106002 0766857b d1f69f91 5632fc11
624495e4 00000000
194442.970523 Cryp 30 crypto_encrypt: after encryption:
194442.970999 Cryp 30 f20c9610 03907522 ab298e90 caa383ac f146b1b1 1cfeebc9
033ec221 c35e1586
194442.971462 Cryp 30 09372219 7df4cac8 3f010dd5 eaa1da4b 69014cbc 1ab1902a
f3fd8304 d6260c4c
194442.973907 Cryp 50 crypto_update_iv: updated IV:
194442.974249 Cryp 50 f3fd8304 d6260c4c
194442.974551 Mesg 70 message_send: message 0xec900
194442.974890 Mesg 70 ICOOKIE: 0x0766857bd1f69f91
194442.975230 Mesg 70 RCOOKIE: 0x5632fc11624495e4
194442.975526 Mesg 70 NEXT_PAYLOAD: ID
194442.977346 Mesg 70 VERSION: 16
194442.977652 Mesg 70 EXCH_TYPE: ID_PROT
194442.978087 Mesg 70 FLAGS: [ ENC ]
194442.978420 Mesg 70 MESSAGE_ID: 0x00000000
194442.978722 Mesg 70 LENGTH: 92
194442.979201 Mesg 70 message_send: 0766857b d1f69f91 5632fc11 624495e4
05100201 00000000 0000005c f20c9610
194442.981227 Mesg 70 message_send: 03907522 ab298e90 caa383ac f146b1b1
1cfeebc9 033ec221 c35e1586 09372219
194442.981692 Mesg 70 message_send: 7df4cac8 3f010dd5 eaa1da4b 69014cbc
1ab1902a f3fd8304 d6260c4c
194442.982001 Exch 40 exchange_run: exchange 0xec800 finished step 4,
advancing...
194442.984629 Misc 60 conf_get_str: [General]:retransmits->3
194442.984965 Trpt 30 transport_send_messages: message 0xec900 scheduled for
retransmission 1 in 7 secs
194442.985303 Timr 10 timer_add_event: event message_send(0xec900) added
before connection_checker(0xf1790), expiration in 7s
194443.095710 Trpt 70 transport_add: adding 0xee680
194443.096114 Mesg 70 message_recv: message 0xecb00
194443.096461 Mesg 70 ICOOKIE: 0x0766857bd1f69f91
194443.097891 Mesg 70 RCOOKIE: 0x5632fc11624495e4
194443.098204 Mesg 70 NEXT_PAYLOAD: NOTIFY
194443.098505 Mesg 70 VERSION: 16
194443.098798 Mesg 70 EXCH_TYPE: INFO
194443.099094 Mesg 70 FLAGS: [ ENC ]
194443.099409 Mesg 70 MESSAGE_ID: 0x00000000
194443.099733 Mesg 70 LENGTH: 140
194443.101682 Mesg 70 message_recv: 0766857b d1f69f91 5632fc11 624495e4
0b100501 00000000 0000008c 4992abf6
194443.102311 Mesg 70 message_recv: 5dda5933 5b7d6bd0 d051b591 58edc756
a9235ac3 92438e20 ce6391e2 7ee03193
194443.102794 Mesg 70 message_recv: 8463e46e ed1b8b6c 6b07d878 313fad94
15259e79 f1d66135 5141a15b 4317f631
194443.104891 Mesg 70 message_recv: bdcc8201 e312033a 25a98a73 666916f0
6dd2b599 32a8d589 e8ef8704 7ae14cb7
194443.105263 Mesg 70 message_recv: d4ea6e4f 6b73b49d e11450fa
194443.105563 Mesg 20 message_free: freeing 0xec900
194443.105863 Timr 10 timer_remove_event: removing event
message_send(0xec900)
194443.108114 Cryp 10 crypto_decrypt: before decryption:
194443.108734 Cryp 10 4992abf6 5dda5933 5b7d6bd0 d051b591 58edc756 a9235ac3
92438e20 ce6391e2
194443.109195 Cryp 10 7ee03193 8463e46e ed1b8b6c 6b07d878 313fad94 15259e79
f1d66135 5141a15b
194443.109651 Cryp 10 4317f631 bdcc8201 e312033a 25a98a73 666916f0 6dd2b599
32a8d589 e8ef8704
194443.111731 Cryp 10 7ae14cb7 d4ea6e4f 6b73b49d e11450fa
194443.112141 Cryp 30 crypto_decrypt: after decryption:
194443.112599 Cryp 30 21e4639d 8a29a980 aef84432 9ca9828a 7806dfb3 2cf0354d
68788a05 67c3b74f
194443.113053 Cryp 30 ed537df2 aa1ffb98 d488e56c c13d3b38 9e40ccc6 427ef9cb
e2369bcf 76fa9ec2
194443.115044 Cryp 30 c7b01b86 0c99b3b5 f03df39a 9868e2e3 841988f6 f124d491
3809abb8 6468ba84
194443.115443 Cryp 30 9782a997 161eef83 ad2ebf7b 51da4469
194443.115895 Mesg 50 message_parse_payloads: offset 0x1c payload NOTIFY
194443.116201 Default message_parse_payloads: invalid next payload type 33
in payload of type 11
194443.118194 Default dropped message from 1.2.3.4 port 500 due to
notification type INVALID_PAYLOAD_TYPE
194443.118547 Misc 60 conf_get_str: [General]:Exchange-max-time->120
194443.118888 Timr 10 timer_add_event: event exchange_free_aux(0xf6100)
added before cookie_reset_event(0x0), expiration in 120s
194443.120883 Exch 10 exchange_establish_p1: 0xf6100 <unnamed> <no policy>
policy initiator phase 1 doi 1 exchange 5 step 0
194443.121228 Exch 10 exchange_establish_p1: icookie 00415c1c03a55a4d
rcookie 0000000000000000
194443.121679 Exch 10 exchange_establish_p1: msgid 00000000
194443.123504 Mesg 70 message_send: message 0xf6200
194443.123868 Mesg 70 ICOOKIE: 0x00415c1c03a55a4d
194443.124213 Mesg 70 RCOOKIE: 0x0000000000000000
194443.124510 Mesg 70 NEXT_PAYLOAD: NOTIFY
194443.124814 Mesg 70 VERSION: 16
194443.125108 Mesg 70 EXCH_TYPE: INFO
194443.127311 Mesg 70 FLAGS: [ ]
194443.127644 Mesg 70 MESSAGE_ID: 0x00000000
194443.128092 Mesg 70 LENGTH: 40
194443.128584 Mesg 70 message_send: 00415c1c 03a55a4d 00000000 00000000
0b100500 00000000 00000028 0000000c
194443.128938 Mesg 70 message_send: 00000001 01000001
194443.130689 Exch 40 exchange_run: exchange 0xf6100 finished step 0,
advancing...
194443.131018 Mesg 20 message_free: freeing 0xecb00
194443.131977 Exch 10 exchange_finalize: 0xf6100 <unnamed> <no policy>
policy initiator phase 1 doi 1 exchange 5 step 1
194443.133672 Exch 10 exchange_finalize: icookie 00415c1c03a55a4d rcookie
0000000000000000
194443.133979 Exch 10 exchange_finalize: msgid 00000000
194443.134425 Timr 10 timer_remove_event: removing event
exchange_free_aux(0xf6100)
194443.134738 Exch 80 exchange_free_aux: freeing exchange 0xf6100
194443.136531 Mesg 20 message_free: freeing 0xf6200
194443.136928 Trpt 70 transport_release: freeing 0xee680
^C
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]