1
|
Foreground mode.
|
2
|
2012-12-27 14:22:58: INFO: @(#)ipsec-tools 0.8.0 (http://ipsec-tools.sourceforge.net)
|
3
|
2012-12-27 14:22:58: INFO: @(#)This product linked OpenSSL 0.9.8n 24 Mar 2010 (http://www.openssl.org/)
|
4
|
2012-12-27 14:22:58: INFO: Reading configuration from "/var/etc/racoon.conf"
|
5
|
2012-12-27 14:22:58: DEBUG: call pfkey_send_register for AH
|
6
|
2012-12-27 14:22:58: DEBUG: call pfkey_send_register for ESP
|
7
|
2012-12-27 14:22:58: DEBUG: call pfkey_send_register for IPCOMP
|
8
|
2012-12-27 14:22:58: DEBUG: reading config file /var/etc/racoon.conf
|
9
|
2012-12-27 14:22:58: INFO: Resize address pool from 0 to 253
|
10
|
2012-12-27 14:22:58: DEBUG: hmac(modp1024)
|
11
|
2012-12-27 14:22:58: DEBUG: no check of compression algorithm; not supported in sadb message.
|
12
|
2012-12-27 14:22:58: DEBUG: getsainfo params: loc='ANONYMOUS' rmt='ANONYMOUS' peer='NULL' client='NULL' id=1
|
13
|
2012-12-27 14:22:58: DEBUG: open /var/db/racoon/racoon.sock as racoon management.
|
14
|
2012-12-27 14:22:58: INFO: XXX.XXX.XXX.XXX[4500] used for NAT-T
|
15
|
2012-12-27 14:22:58: INFO: XXX.XXX.XXX.XXX[4500] used as isakmp port (fd=7)
|
16
|
2012-12-27 14:22:58: INFO: XXX.XXX.XXX.XXX[500] used for NAT-T
|
17
|
2012-12-27 14:22:58: INFO: XXX.XXX.XXX.XXX[500] used as isakmp port (fd=8)
|
18
|
2012-12-27 14:22:58: DEBUG: pk_recv: retry[0] recv()
|
19
|
2012-12-27 14:22:58: DEBUG: got pfkey X_SPDDUMP message
|
20
|
2012-12-27 14:22:58: DEBUG: pk_recv: retry[0] recv()
|
21
|
2012-12-27 14:22:58: DEBUG: got pfkey X_SPDDUMP message
|
22
|
2012-12-27 14:22:58: DEBUG: sub:0xbfbfe5b4: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
23
|
2012-12-27 14:22:58: DEBUG: db :0x2854b148: 172.21.2.0/24[0] 172.21.2.254/32[0] proto=any dir=in
|
24
|
2012-12-27 14:22:58: DEBUG: pk_recv: retry[0] recv()
|
25
|
2012-12-27 14:22:58: DEBUG: got pfkey X_SPDDUMP message
|
26
|
2012-12-27 14:22:58: DEBUG: sub:0xbfbfe5b4: 172.21.2.254/32[0] 172.21.2.0/24[0] proto=any dir=out
|
27
|
2012-12-27 14:22:58: DEBUG: db :0x2854b148: 172.21.2.0/24[0] 172.21.2.254/32[0] proto=any dir=in
|
28
|
2012-12-27 14:22:58: DEBUG: sub:0xbfbfe5b4: 172.21.2.254/32[0] 172.21.2.0/24[0] proto=any dir=out
|
29
|
2012-12-27 14:22:58: DEBUG: db :0x2854b288: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
30
|
2012-12-27 14:22:58: DEBUG: pk_recv: retry[0] recv()
|
31
|
2012-12-27 14:22:58: DEBUG: got pfkey X_SPDDUMP message
|
32
|
2012-12-27 14:22:58: DEBUG: sub:0xbfbfe5b4: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
33
|
2012-12-27 14:22:58: DEBUG: db :0x2854b148: 172.21.2.0/24[0] 172.21.2.254/32[0] proto=any dir=in
|
34
|
2012-12-27 14:22:58: DEBUG: sub:0xbfbfe5b4: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
35
|
2012-12-27 14:22:58: DEBUG: db :0x2854b288: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
36
|
2012-12-27 14:22:58: DEBUG: sub:0xbfbfe5b4: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
37
|
2012-12-27 14:22:58: DEBUG: db :0x2854b508: 172.21.2.254/32[0] 172.21.2.0/24[0] proto=any dir=out
|
38
|
2012-12-27 14:23:03: DEBUG: ===
|
39
|
2012-12-27 14:23:03: DEBUG: 742 bytes message received from 181.12.242.251[500] to XXX.XXX.XXX.XXX[500]
|
40
|
2012-12-27 14:23:03: DEBUG:
|
41
|
925b8c8b b4e92e20 00000000 00000000 01100400 00000000 000002e6 04000124
|
42
|
00000001 00000001 00000118 01010008 03000024 01010000 800b0001 800c0e10
|
43
|
80010007 800e0100 8003fde9 80020002 80040002 03000024 02010000 800b0001
|
44
|
800c0e10 80010007 800e0080 8003fde9 80020002 80040002 03000024 03010000
|
45
|
800b0001 800c0e10 80010007 800e0100 8003fde9 80020001 80040002 03000024
|
46
|
04010000 800b0001 800c0e10 80010007 800e0080 8003fde9 80020001 80040002
|
47
|
03000020 05010000 800b0001 800c0e10 80010005 8003fde9 80020002 80040002
|
48
|
03000020 06010000 800b0001 800c0e10 80010005 8003fde9 80020001 80040002
|
49
|
03000020 07010000 800b0001 800c0e10 80010001 8003fde9 80020002 80040002
|
50
|
00000020 08010000 800b0001 800c0e10 80010001 8003fde9 80020001 80040002
|
51
|
0a000084 66aa91b6 5607915e bb5bd74b 88640012 8b62f6d9 6e7b1a89 44558449
|
52
|
9a03842b ba83f879 44fc8270 015ac736 ba6da749 73d3c1bf f305d828 0a534cc6
|
53
|
2b18be0c cd4a337e 124674bd 0dc88407 8a1e05fe 55594dce 1fc626cd f220b4a3
|
54
|
a8f59f04 93bc7f2e 28a3a916 a071c3f7 0206136a 296fcc95 2227cf90 94d08cc0
|
55
|
09e68227 05000014 b877160e 0b50d3cc db98f1b4 d0c5ee1e 0d000012 0b000000
|
56
|
74657374 4067726f 75700d00 00144a13 1c810703 58455c57 28f20e95 452f0d00
|
57
|
00144df3 7928e9fc 4fd1b326 2170d515 c6620d00 00148f8d 83826d24 6b6fc7a8
|
58
|
a6a428c1 1de80d00 0014439b 59f8ba67 6c4c7737 ae22eab8 f5820d00 00144d1e
|
59
|
0e136dea fa34c4f3 ea9f02ec 72850d00 001480d0 bb3def54 565ee846 45d4c85c
|
60
|
e3ee0d00 00149909 b64eed93 7c6573de 52ace952 fa6b0d00 00147d94 19a65310
|
61
|
ca6f2c17 9d921552 9d560d00 0014cd60 464335df 21f87cfd b2fc68b6 a4480d00
|
62
|
001490cb 80913ebb 696e0863 81b5ec42 7b1f0d00 000c0900 2689dfd6 b7120d00
|
63
|
001412f5 f28c4571 68a9702d 9fe274cc 01000000 0014afca d71368a1 f1c96b86
|
64
|
96fc7757 0100
|
65
|
2012-12-27 14:23:03: DEBUG: ===
|
66
|
2012-12-27 14:23:03: INFO: respond new phase 1 negotiation: XXX.XXX.XXX.XXX[500]<=>181.12.242.251[500]
|
67
|
2012-12-27 14:23:03: INFO: begin Aggressive mode.
|
68
|
2012-12-27 14:23:03: DEBUG: begin.
|
69
|
2012-12-27 14:23:03: DEBUG: seen nptype=1(sa)
|
70
|
2012-12-27 14:23:03: DEBUG: seen nptype=4(ke)
|
71
|
2012-12-27 14:23:03: DEBUG: seen nptype=10(nonce)
|
72
|
2012-12-27 14:23:03: DEBUG: seen nptype=5(id)
|
73
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
74
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
75
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
76
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
77
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
78
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
79
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
80
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
81
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
82
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
83
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
84
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
85
|
2012-12-27 14:23:03: DEBUG: seen nptype=13(vid)
|
86
|
2012-12-27 14:23:03: DEBUG: succeed.
|
87
|
2012-12-27 14:23:03: DEBUG: received payload of type ke
|
88
|
2012-12-27 14:23:03: DEBUG: received payload of type nonce
|
89
|
2012-12-27 14:23:03: DEBUG: received payload of type id
|
90
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
91
|
2012-12-27 14:23:03: INFO: received Vendor ID: RFC 3947
|
92
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
93
|
2012-12-27 14:23:03: DEBUG: received unknown Vendor ID
|
94
|
2012-12-27 14:23:03: DEBUG:
|
95
|
4df37928 e9fc4fd1 b3262170 d515c662
|
96
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
97
|
2012-12-27 14:23:03: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-08
|
98
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
99
|
2012-12-27 14:23:03: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-07
|
100
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
101
|
2012-12-27 14:23:03: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-06
|
102
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
103
|
2012-12-27 14:23:03: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-05
|
104
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
105
|
2012-12-27 14:23:03: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-04
|
106
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
107
|
2012-12-27 14:23:03: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-03
|
108
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
109
|
2012-12-27 14:23:03: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-02
|
110
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
111
|
2012-12-27 14:23:03: INFO: received Vendor ID: draft-ietf-ipsec-nat-t-ike-02
|
112
|
|
113
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
114
|
2012-12-27 14:23:03: INFO: received Vendor ID: draft-ietf-ipsra-isakmp-xauth-06.txt
|
115
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
116
|
2012-12-27 14:23:03: INFO: received Vendor ID: CISCO-UNITY
|
117
|
2012-12-27 14:23:03: DEBUG: received payload of type vid
|
118
|
2012-12-27 14:23:03: INFO: received Vendor ID: DPD
|
119
|
2012-12-27 14:23:03: DEBUG: remote supports DPD
|
120
|
2012-12-27 14:23:03: [181.12.242.251] DEBUG: getrmconf_by_ph1: remote 181.12.242.251[500], identity <KEY-ID>.
|
121
|
2012-12-27 14:23:03: [181.12.242.251] DEBUG: configuration "anonymous" selected.
|
122
|
2012-12-27 14:23:03: [181.12.242.251] INFO: Selected NAT-T version: RFC 3947
|
123
|
2012-12-27 14:23:03: DEBUG: total SA len=288
|
124
|
2012-12-27 14:23:03: DEBUG:
|
125
|
00000001 00000001 00000118 01010008 03000024 01010000 800b0001 800c0e10
|
126
|
80010007 800e0100 8003fde9 80020002 80040002 03000024 02010000 800b0001
|
127
|
800c0e10 80010007 800e0080 8003fde9 80020002 80040002 03000024 03010000
|
128
|
800b0001 800c0e10 80010007 800e0100 8003fde9 80020001 80040002 03000024
|
129
|
04010000 800b0001 800c0e10 80010007 800e0080 8003fde9 80020001 80040002
|
130
|
03000020 05010000 800b0001 800c0e10 80010005 8003fde9 80020002 80040002
|
131
|
03000020 06010000 800b0001 800c0e10 80010005 8003fde9 80020001 80040002
|
132
|
03000020 07010000 800b0001 800c0e10 80010001 8003fde9 80020002 80040002
|
133
|
00000020 08010000 800b0001 800c0e10 80010001 8003fde9 80020001 80040002
|
134
|
2012-12-27 14:23:03: DEBUG: begin.
|
135
|
2012-12-27 14:23:03: DEBUG: seen nptype=2(prop)
|
136
|
2012-12-27 14:23:03: DEBUG: succeed.
|
137
|
2012-12-27 14:23:03: DEBUG: proposal #1 len=280
|
138
|
2012-12-27 14:23:03: DEBUG: begin.
|
139
|
2012-12-27 14:23:03: DEBUG: seen nptype=3(trns)
|
140
|
2012-12-27 14:23:03: DEBUG: seen nptype=3(trns)
|
141
|
2012-12-27 14:23:03: DEBUG: seen nptype=3(trns)
|
142
|
2012-12-27 14:23:03: DEBUG: seen nptype=3(trns)
|
143
|
2012-12-27 14:23:03: DEBUG: seen nptype=3(trns)
|
144
|
2012-12-27 14:23:03: DEBUG: seen nptype=3(trns)
|
145
|
2012-12-27 14:23:03: DEBUG: seen nptype=3(trns)
|
146
|
2012-12-27 14:23:03: DEBUG: seen nptype=3(trns)
|
147
|
2012-12-27 14:23:03: DEBUG: succeed.
|
148
|
2012-12-27 14:23:03: DEBUG: transform #1 len=36
|
149
|
2012-12-27 14:23:03: DEBUG: type=Life Type, flag=0x8000, lorv=seconds
|
150
|
2012-12-27 14:23:03: DEBUG: type=Life Duration, flag=0x8000, lorv=3600
|
151
|
2012-12-27 14:23:03: DEBUG: type=Encryption Algorithm, flag=0x8000, lorv=AES-CBC
|
152
|
2012-12-27 14:23:03: DEBUG: encryption(aes)
|
153
|
2012-12-27 14:23:03: DEBUG: type=Key Length, flag=0x8000, lorv=256
|
154
|
2012-12-27 14:23:03: DEBUG: type=Authentication Method, flag=0x8000, lorv=XAuth pskey client
|
155
|
2012-12-27 14:23:03: DEBUG: type=Hash Algorithm, flag=0x8000, lorv=SHA
|
156
|
2012-12-27 14:23:03: DEBUG: hash(sha1)
|
157
|
2012-12-27 14:23:03: DEBUG: type=Group Description, flag=0x8000, lorv=1024-bit MODP group
|
158
|
2012-12-27 14:23:03: DEBUG: hmac(modp1024)
|
159
|
2012-12-27 14:23:03: DEBUG: transform #2 len=36
|
160
|
2012-12-27 14:23:03: DEBUG: type=Life Type, flag=0x8000, lorv=seconds
|
161
|
2012-12-27 14:23:03: DEBUG: type=Life Duration, flag=0x8000, lorv=3600
|
162
|
2012-12-27 14:23:03: DEBUG: type=Encryption Algorithm, flag=0x8000, lorv=AES-CBC
|
163
|
2012-12-27 14:23:03: DEBUG: encryption(aes)
|
164
|
2012-12-27 14:23:03: DEBUG: type=Key Length, flag=0x8000, lorv=128
|
165
|
2012-12-27 14:23:03: DEBUG: type=Authentication Method, flag=0x8000, lorv=XAuth pskey client
|
166
|
2012-12-27 14:23:03: DEBUG: type=Hash Algorithm, flag=0x8000, lorv=SHA
|
167
|
2012-12-27 14:23:03: DEBUG: hash(sha1)
|
168
|
2012-12-27 14:23:03: DEBUG: type=Group Description, flag=0x8000, lorv=1024-bit MODP group
|
169
|
2012-12-27 14:23:03: DEBUG: hmac(modp1024)
|
170
|
2012-12-27 14:23:03: DEBUG: transform #3 len=36
|
171
|
2012-12-27 14:23:03: DEBUG: type=Life Type, flag=0x8000, lorv=seconds
|
172
|
2012-12-27 14:23:03: DEBUG: type=Life Duration, flag=0x8000, lorv=3600
|
173
|
2012-12-27 14:23:03: DEBUG: type=Encryption Algorithm, flag=0x8000, lorv=AES-CBC
|
174
|
2012-12-27 14:23:03: DEBUG: encryption(aes)
|
175
|
2012-12-27 14:23:03: DEBUG: type=Key Length, flag=0x8000, lorv=256
|
176
|
2012-12-27 14:23:03: DEBUG: type=Authentication Method, flag=0x8000, lorv=XAuth pskey client
|
177
|
2012-12-27 14:23:03: DEBUG: type=Hash Algorithm, flag=0x8000, lorv=MD5
|
178
|
2012-12-27 14:23:03: DEBUG: hash(md5)
|
179
|
2012-12-27 14:23:03: DEBUG: type=Group Description, flag=0x8000, lorv=1024-bit MODP group
|
180
|
2012-12-27 14:23:03: DEBUG: hmac(modp1024)
|
181
|
2012-12-27 14:23:03: DEBUG: transform #4 len=36
|
182
|
2012-12-27 14:23:03: DEBUG: type=Life Type, flag=0x8000, lorv=seconds
|
183
|
2012-12-27 14:23:03: DEBUG: type=Life Duration, flag=0x8000, lorv=3600
|
184
|
2012-12-27 14:23:03: DEBUG: type=Encryption Algorithm, flag=0x8000, lorv=AES-CBC
|
185
|
2012-12-27 14:23:03: DEBUG: encryption(aes)
|
186
|
2012-12-27 14:23:03: DEBUG: type=Key Length, flag=0x8000, lorv=128
|
187
|
2012-12-27 14:23:03: DEBUG: type=Authentication Method, flag=0x8000, lorv=XAuth pskey client
|
188
|
2012-12-27 14:23:03: DEBUG: type=Hash Algorithm, flag=0x8000, lorv=MD5
|
189
|
2012-12-27 14:23:03: DEBUG: hash(md5)
|
190
|
2012-12-27 14:23:03: DEBUG: type=Group Description, flag=0x8000, lorv=1024-bit MODP group
|
191
|
2012-12-27 14:23:03: DEBUG: hmac(modp1024)
|
192
|
2012-12-27 14:23:03: DEBUG: transform #5 len=32
|
193
|
2012-12-27 14:23:03: DEBUG: type=Life Type, flag=0x8000, lorv=seconds
|
194
|
2012-12-27 14:23:03: DEBUG: type=Life Duration, flag=0x8000, lorv=3600
|
195
|
2012-12-27 14:23:03: DEBUG: type=Encryption Algorithm, flag=0x8000, lorv=3DES-CBC
|
196
|
2012-12-27 14:23:03: DEBUG: encryption(3des)
|
197
|
2012-12-27 14:23:03: DEBUG: type=Authentication Method, flag=0x8000, lorv=XAuth pskey client
|
198
|
2012-12-27 14:23:03: DEBUG: type=Hash Algorithm, flag=0x8000, lorv=SHA
|
199
|
2012-12-27 14:23:03: DEBUG: hash(sha1)
|
200
|
2012-12-27 14:23:03: DEBUG: type=Group Description, flag=0x8000, lorv=1024-bit MODP group
|
201
|
2012-12-27 14:23:03: DEBUG: hmac(modp1024)
|
202
|
2012-12-27 14:23:03: DEBUG: transform #6 len=32
|
203
|
2012-12-27 14:23:03: DEBUG: type=Life Type, flag=0x8000, lorv=seconds
|
204
|
2012-12-27 14:23:03: DEBUG: type=Life Duration, flag=0x8000, lorv=3600
|
205
|
2012-12-27 14:23:03: DEBUG: type=Encryption Algorithm, flag=0x8000, lorv=3DES-CBC
|
206
|
2012-12-27 14:23:03: DEBUG: encryption(3des)
|
207
|
2012-12-27 14:23:03: DEBUG: type=Authentication Method, flag=0x8000, lorv=XAuth pskey client
|
208
|
2012-12-27 14:23:03: DEBUG: type=Hash Algorithm, flag=0x8000, lorv=MD5
|
209
|
2012-12-27 14:23:03: DEBUG: hash(md5)
|
210
|
2012-12-27 14:23:03: DEBUG: type=Group Description, flag=0x8000, lorv=1024-bit MODP group
|
211
|
2012-12-27 14:23:03: DEBUG: hmac(modp1024)
|
212
|
2012-12-27 14:23:03: DEBUG: transform #7 len=32
|
213
|
2012-12-27 14:23:03: DEBUG: type=Life Type, flag=0x8000, lorv=seconds
|
214
|
2012-12-27 14:23:03: DEBUG: type=Life Duration, flag=0x8000, lorv=3600
|
215
|
2012-12-27 14:23:03: DEBUG: type=Encryption Algorithm, flag=0x8000, lorv=DES-CBC
|
216
|
2012-12-27 14:23:03: DEBUG: encryption(des)
|
217
|
2012-12-27 14:23:03: DEBUG: type=Authentication Method, flag=0x8000, lorv=XAuth pskey client
|
218
|
2012-12-27 14:23:03: DEBUG: type=Hash Algorithm, flag=0x8000, lorv=SHA
|
219
|
2012-12-27 14:23:03: DEBUG: hash(sha1)
|
220
|
2012-12-27 14:23:03: DEBUG: type=Group Description, flag=0x8000, lorv=1024-bit MODP group
|
221
|
2012-12-27 14:23:03: DEBUG: hmac(modp1024)
|
222
|
2012-12-27 14:23:03: DEBUG: transform #8 len=32
|
223
|
2012-12-27 14:23:03: DEBUG: type=Life Type, flag=0x8000, lorv=seconds
|
224
|
2012-12-27 14:23:03: DEBUG: type=Life Duration, flag=0x8000, lorv=3600
|
225
|
2012-12-27 14:23:03: DEBUG: type=Encryption Algorithm, flag=0x8000, lorv=DES-CBC
|
226
|
2012-12-27 14:23:03: DEBUG: encryption(des)
|
227
|
2012-12-27 14:23:03: DEBUG: type=Authentication Method, flag=0x8000, lorv=XAuth pskey client
|
228
|
2012-12-27 14:23:03: DEBUG: type=Hash Algorithm, flag=0x8000, lorv=MD5
|
229
|
2012-12-27 14:23:03: DEBUG: hash(md5)
|
230
|
2012-12-27 14:23:03: DEBUG: type=Group Description, flag=0x8000, lorv=1024-bit MODP group
|
231
|
2012-12-27 14:23:03: DEBUG: hmac(modp1024)
|
232
|
2012-12-27 14:23:03: DEBUG: pair 1:
|
233
|
2012-12-27 14:23:03: DEBUG: 0x285245a0: next=0x0 tnext=0x285245b0
|
234
|
2012-12-27 14:23:03: DEBUG: 0x285245b0: next=0x0 tnext=0x285245c0
|
235
|
2012-12-27 14:23:03: DEBUG: 0x285245c0: next=0x0 tnext=0x285245d0
|
236
|
2012-12-27 14:23:03: DEBUG: 0x285245d0: next=0x0 tnext=0x285245e0
|
237
|
2012-12-27 14:23:03: DEBUG: 0x285245e0: next=0x0 tnext=0x285245f0
|
238
|
2012-12-27 14:23:03: DEBUG: 0x285245f0: next=0x0 tnext=0x28524600
|
239
|
2012-12-27 14:23:03: DEBUG: 0x28524600: next=0x0 tnext=0x28524610
|
240
|
2012-12-27 14:23:03: DEBUG: 0x28524610: next=0x0 tnext=0x0
|
241
|
2012-12-27 14:23:03: DEBUG: proposal #1: 8 transform
|
242
|
2012-12-27 14:23:03: DEBUG: type=Life Type, flag=0x8000, lorv=seconds
|
243
|
2012-12-27 14:23:03: DEBUG: type=Life Duration, flag=0x8000, lorv=3600
|
244
|
2012-12-27 14:23:03: DEBUG: type=Encryption Algorithm, flag=0x8000, lorv=AES-CBC
|
245
|
2012-12-27 14:23:03: DEBUG: type=Key Length, flag=0x8000, lorv=256
|
246
|
2012-12-27 14:23:03: DEBUG: type=Authentication Method, flag=0x8000, lorv=XAuth pskey client
|
247
|
2012-12-27 14:23:03: DEBUG: type=Hash Algorithm, flag=0x8000, lorv=SHA
|
248
|
2012-12-27 14:23:03: DEBUG: type=Group Description, flag=0x8000, lorv=1024-bit MODP group
|
249
|
2012-12-27 14:23:03: DEBUG: prop#=1, prot-id=ISAKMP, spi-size=0, #trns=8
|
250
|
2012-12-27 14:23:03: DEBUG: trns#=1, trns-id=IKE
|
251
|
2012-12-27 14:23:03: DEBUG: lifetime = 3600
|
252
|
2012-12-27 14:23:03: DEBUG: lifebyte = 0
|
253
|
2012-12-27 14:23:03: DEBUG: enctype = AES-CBC
|
254
|
2012-12-27 14:23:03: DEBUG: encklen = 256
|
255
|
2012-12-27 14:23:03: DEBUG: hashtype = SHA
|
256
|
2012-12-27 14:23:03: DEBUG: authmethod = XAuth pskey client
|
257
|
2012-12-27 14:23:03: DEBUG: dh_group = 1024-bit MODP group
|
258
|
2012-12-27 14:23:03: DEBUG: an acceptable proposal found.
|
259
|
2012-12-27 14:23:03: DEBUG: hmac(modp1024)
|
260
|
2012-12-27 14:23:03: DEBUG: agreed on XAuth pskey server auth.
|
261
|
2012-12-27 14:23:03: DEBUG: ===
|
262
|
2012-12-27 14:23:03: DEBUG: new cookie:
|
263
|
3b982c5815994205
|
264
|
2012-12-27 14:23:03: DEBUG: use ID type of IPv4_address
|
265
|
2012-12-27 14:23:03: DEBUG: compute DH's private.
|
266
|
2012-12-27 14:23:03: DEBUG:
|
267
|
449559ae 280e8cf0 e4a46eb8 da9adc62 848c898c fc834380 4895f99f 4932b6a2
|
268
|
9175aeaf a3cd2c26 ef8bc288 6a74598d e4664706 c18ff7de 5b7e637f b81c18d6
|
269
|
ad186eab 35d91e11 34dd4299 0b14e8f9 1861d478 82f752d0 6a224d65 307b4b16
|
270
|
81d0a939 bad93922 7cbe4ad6 09ec144d b4f96eca d6636d7f c1ea8b74 82caafa8
|
271
|
2012-12-27 14:23:03: DEBUG: compute DH's public.
|
272
|
2012-12-27 14:23:03: DEBUG:
|
273
|
c8c57d51 ba87c123 3d1db319 850febb4 94e7f2aa d165a340 6954a96e 126eb5e9
|
274
|
1b477135 9ff3e4f0 9e67abb5 22622bd7 923ee692 2f12fa9b dad3fbc9 fa692bce
|
275
|
6dd32a44 b3178106 b7c04fa2 3581149f 469401a9 ef388b4c b87f0e82 6ef81d72
|
276
|
72a9df66 c257b551 f149a344 dce83c95 fcb5e79b 3bf563a3 955b0b04 65eb1878
|
277
|
2012-12-27 14:23:03: DEBUG: compute DH's shared.
|
278
|
2012-12-27 14:23:03: DEBUG:
|
279
|
174a57bb 03d7d54d cb3c21aa c2f7f016 7ec16ae9 b5d067a6 6c28b6f0 0c94b35e
|
280
|
e037a13f 553fba5c 486d3a44 ef93f97e 8e843713 f30e587a 4c06a8ac 6cbd6f7c
|
281
|
80faaf91 5a3e14cc 30b74fae 427e6d82 9a56dbd6 56c2560e f358b251 ddccbf89
|
282
|
c41668ab 3e349451 02999c65 96f3e8f6 41d2e7f3 89282058 dd0ef4eb fea7f372
|
283
|
2012-12-27 14:23:03: DEBUG: the psk found.
|
284
|
2012-12-27 14:23:03: DEBUG: nonce 1: 2012-12-27 14:23:03: DEBUG:
|
285
|
b877160e 0b50d3cc db98f1b4 d0c5ee1e
|
286
|
2012-12-27 14:23:03: DEBUG: nonce 2: 2012-12-27 14:23:03: DEBUG:
|
287
|
83bda291 51d68889 28c40aaa 5a9dc022
|
288
|
2012-12-27 14:23:03: DEBUG: hmac(hmac_sha1)
|
289
|
2012-12-27 14:23:03: DEBUG: SKEYID computed:
|
290
|
2012-12-27 14:23:03: DEBUG:
|
291
|
af73dd89 577c85d8 166ae106 15e1087f 2d076e60
|
292
|
2012-12-27 14:23:03: DEBUG: hmac(hmac_sha1)
|
293
|
2012-12-27 14:23:03: DEBUG: SKEYID_d computed:
|
294
|
2012-12-27 14:23:03: DEBUG:
|
295
|
74069ec5 93dc825c a0a256eb c5e1db45 ed840dc5
|
296
|
2012-12-27 14:23:03: DEBUG: hmac(hmac_sha1)
|
297
|
2012-12-27 14:23:03: DEBUG: SKEYID_a computed:
|
298
|
2012-12-27 14:23:03: DEBUG:
|
299
|
9d85dc6f 0e87f7a0 4d98b0a5 035e7b0d 0e4b65da
|
300
|
2012-12-27 14:23:03: DEBUG: hmac(hmac_sha1)
|
301
|
2012-12-27 14:23:03: DEBUG: SKEYID_e computed:
|
302
|
2012-12-27 14:23:03: DEBUG:
|
303
|
1cff6cdd acdf3336 a1476022 4fd390bf 581fe8a8
|
304
|
2012-12-27 14:23:03: DEBUG: encryption(aes)
|
305
|
2012-12-27 14:23:03: DEBUG: hash(sha1)
|
306
|
2012-12-27 14:23:03: DEBUG: len(SKEYID_e) < len(Ka) (20 < 32), generating long key (Ka = K1 | K2 | ...)
|
307
|
2012-12-27 14:23:03: DEBUG: hmac(hmac_sha1)
|
308
|
2012-12-27 14:23:03: DEBUG: compute intermediate encryption key K1
|
309
|
2012-12-27 14:23:03: DEBUG:
|
310
|
00
|
311
|
2012-12-27 14:23:03: DEBUG:
|
312
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c
|
313
|
2012-12-27 14:23:03: DEBUG: hmac(hmac_sha1)
|
314
|
2012-12-27 14:23:03: DEBUG: compute intermediate encryption key K2
|
315
|
2012-12-27 14:23:03: DEBUG:
|
316
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c
|
317
|
2012-12-27 14:23:03: DEBUG:
|
318
|
52563aa2 6b3adb8f 92ab159b 49f03ebf 6fd81744
|
319
|
2012-12-27 14:23:03: DEBUG: final encryption key computed:
|
320
|
2012-12-27 14:23:03: DEBUG:
|
321
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
322
|
2012-12-27 14:23:03: DEBUG: hash(sha1)
|
323
|
2012-12-27 14:23:03: DEBUG: encryption(aes)
|
324
|
2012-12-27 14:23:03: DEBUG: IV computed:
|
325
|
2012-12-27 14:23:03: DEBUG:
|
326
|
21adcad4 18f43836 06c4feea 9e6bd3a7
|
327
|
2012-12-27 14:23:03: DEBUG: generate HASH_R
|
328
|
2012-12-27 14:23:03: DEBUG: HASH with:
|
329
|
2012-12-27 14:23:03: DEBUG:
|
330
|
c8c57d51 ba87c123 3d1db319 850febb4 94e7f2aa d165a340 6954a96e 126eb5e9
|
331
|
1b477135 9ff3e4f0 9e67abb5 22622bd7 923ee692 2f12fa9b dad3fbc9 fa692bce
|
332
|
6dd32a44 b3178106 b7c04fa2 3581149f 469401a9 ef388b4c b87f0e82 6ef81d72
|
333
|
72a9df66 c257b551 f149a344 dce83c95 fcb5e79b 3bf563a3 955b0b04 65eb1878
|
334
|
66aa91b6 5607915e bb5bd74b 88640012 8b62f6d9 6e7b1a89 44558449 9a03842b
|
335
|
ba83f879 44fc8270 015ac736 ba6da749 73d3c1bf f305d828 0a534cc6 2b18be0c
|
336
|
cd4a337e 124674bd 0dc88407 8a1e05fe 55594dce 1fc626cd f220b4a3 a8f59f04
|
337
|
93bc7f2e 28a3a916 a071c3f7 0206136a 296fcc95 2227cf90 94d08cc0 09e68227
|
338
|
3b982c58 15994205 925b8c8b b4e92e20 00000001 00000001 00000118 01010008
|
339
|
03000024 01010000 800b0001 800c0e10 80010007 800e0100 8003fde9 80020002
|
340
|
80040002 03000024 02010000 800b0001 800c0e10 80010007 800e0080 8003fde9
|
341
|
80020002 80040002 03000024 03010000 800b0001 800c0e10 80010007 800e0100
|
342
|
8003fde9 80020001 80040002 03000024 04010000 800b0001 800c0e10 80010007
|
343
|
800e0080 8003fde9 80020001 80040002 03000020 05010000 800b0001 800c0e10
|
344
|
80010005 8003fde9 80020002 80040002 03000020 06010000 800b0001 800c0e10
|
345
|
80010005 8003fde9 80020001 80040002 03000020 07010000 800b0001 800c0e10
|
346
|
80010001 8003fde9 80020002 80040002 00000020 08010000 800b0001 800c0e10
|
347
|
80010001 8003fde9 80020001 80040002 011101f4 b50f59fa
|
348
|
2012-12-27 14:23:03: DEBUG: hmac(hmac_sha1)
|
349
|
2012-12-27 14:23:03: DEBUG: HASH (resp) computed:
|
350
|
2012-12-27 14:23:03: DEBUG:
|
351
|
718da6b9 dedb3ea9 498df4b2 c2a57581 ff3414d0
|
352
|
2012-12-27 14:23:03: INFO: Adding remote and local NAT-D payloads.
|
353
|
2012-12-27 14:23:03: [181.12.242.251] INFO: Hashing 181.12.242.251[500] with algo #2
|
354
|
2012-12-27 14:23:03: DEBUG: hash(sha1)
|
355
|
2012-12-27 14:23:03: [XXX.XXX.XXX.XXX] INFO: Hashing XXX.XXX.XXX.XXX[500] with algo #2
|
356
|
2012-12-27 14:23:03: DEBUG: hash(sha1)
|
357
|
2012-12-27 14:23:03: INFO: Adding xauth VID payload.
|
358
|
2012-12-27 14:23:03: DEBUG: add payload of len 52, next type 4
|
359
|
2012-12-27 14:23:03: DEBUG: add payload of len 128, next type 10
|
360
|
2012-12-27 14:23:03: DEBUG: add payload of len 16, next type 5
|
361
|
2012-12-27 14:23:03: DEBUG: add payload of len 8, next type 8
|
362
|
2012-12-27 14:23:03: DEBUG: add payload of len 20, next type 13
|
363
|
2012-12-27 14:23:03: DEBUG: add payload of len 8, next type 13
|
364
|
2012-12-27 14:23:03: DEBUG: add payload of len 16, next type 13
|
365
|
2012-12-27 14:23:03: DEBUG: add payload of len 16, next type 20
|
366
|
2012-12-27 14:23:03: DEBUG: add payload of len 20, next type 20
|
367
|
2012-12-27 14:23:03: DEBUG: add payload of len 20, next type 13
|
368
|
2012-12-27 14:23:03: DEBUG: add payload of len 16, next type 0
|
369
|
2012-12-27 14:23:03: DEBUG: 392 bytes from XXX.XXX.XXX.XXX[500] to 181.12.242.251[500]
|
370
|
2012-12-27 14:23:03: DEBUG: sockname XXX.XXX.XXX.XXX[500]
|
371
|
2012-12-27 14:23:03: DEBUG: send packet from XXX.XXX.XXX.XXX[500]
|
372
|
2012-12-27 14:23:03: DEBUG: send packet to 181.12.242.251[500]
|
373
|
2012-12-27 14:23:03: DEBUG: 1 times of 392 bytes message will be sent to 181.12.242.251[500]
|
374
|
2012-12-27 14:23:03: DEBUG:
|
375
|
925b8c8b b4e92e20 3b982c58 15994205 01100400 00000000 00000188 04000038
|
376
|
00000001 00000001 0000002c 01010001 00000024 01010000 800b0001 800c0e10
|
377
|
80010007 800e0100 8003fde9 80020002 80040002 0a000084 c8c57d51 ba87c123
|
378
|
3d1db319 850febb4 94e7f2aa d165a340 6954a96e 126eb5e9 1b477135 9ff3e4f0
|
379
|
9e67abb5 22622bd7 923ee692 2f12fa9b dad3fbc9 fa692bce 6dd32a44 b3178106
|
380
|
b7c04fa2 3581149f 469401a9 ef388b4c b87f0e82 6ef81d72 72a9df66 c257b551
|
381
|
f149a344 dce83c95 fcb5e79b 3bf563a3 955b0b04 65eb1878 05000014 83bda291
|
382
|
51d68889 28c40aaa 5a9dc022 0800000c 011101f4 b50f59fa 0d000018 718da6b9
|
383
|
dedb3ea9 498df4b2 c2a57581 ff3414d0 0d00000c 09002689 dfd6b712 0d000014
|
384
|
12f5f28c 457168a9 702d9fe2 74cc0100 14000014 4a131c81 07035845 5c5728f2
|
385
|
0e95452f 14000018 5dc3c684 be24d6fd a76bc76e 1543e7b2 de51ed4d 0d000018
|
386
|
365a93c2 d40ac1b1 069484ab 2857b991 cbe6a2a5 00000014 afcad713 68a1f1c9
|
387
|
6b8696fc 77570100
|
388
|
2012-12-27 14:23:03: DEBUG: resend phase1 packet 925b8c8bb4e92e20:3b982c5815994205
|
389
|
2012-12-27 14:23:03: DEBUG: ===
|
390
|
2012-12-27 14:23:03: DEBUG: 140 bytes message received from 181.12.242.251[500] to XXX.XXX.XXX.XXX[500]
|
391
|
2012-12-27 14:23:03: DEBUG:
|
392
|
925b8c8b b4e92e20 3b982c58 15994205 08100401 00000000 0000008c e559d159
|
393
|
4fd7e695 d63e5878 b5c0d502 979fcf08 6724d32f 5e6f0294 cc8ebaf3 5ba85288
|
394
|
0e3338bd 031713c6 849e122f d0b3128d caac2210 9971baf6 4c04878c 2d276fe0
|
395
|
28f0ce8b cf21c559 bb8e95ee 68960e95 e5ce68f4 80c46bff ca8efd9e 2704201f
|
396
|
4b11177b 5db93955 59d22f9a
|
397
|
2012-12-27 14:23:03: DEBUG: begin decryption.
|
398
|
2012-12-27 14:23:03: DEBUG: encryption(aes)
|
399
|
2012-12-27 14:23:03: DEBUG: IV was saved for next processing:
|
400
|
2012-12-27 14:23:03: DEBUG:
|
401
|
2704201f 4b11177b 5db93955 59d22f9a
|
402
|
2012-12-27 14:23:03: DEBUG: encryption(aes)
|
403
|
2012-12-27 14:23:03: DEBUG: with key:
|
404
|
2012-12-27 14:23:03: DEBUG:
|
405
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
406
|
2012-12-27 14:23:03: DEBUG: decrypted payload by IV:
|
407
|
2012-12-27 14:23:03: DEBUG:
|
408
|
21adcad4 18f43836 06c4feea 9e6bd3a7
|
409
|
2012-12-27 14:23:03: DEBUG: decrypted payload, but not trimed.
|
410
|
2012-12-27 14:23:03: DEBUG:
|
411
|
14000018 9db22d47 63653087 938c3178 0af4d769 ebaa4da2 14000018 365a93c2
|
412
|
d40ac1b1 069484ab 2857b991 cbe6a2a5 0b000018 5dc3c684 be24d6fd a76bc76e
|
413
|
1543e7b2 de51ed4d 0000001c 00000001 01106002 925b8c8b b4e92e20 3b982c58
|
414
|
15994205 00000000 00000000 0000000c
|
415
|
2012-12-27 14:23:03: DEBUG: padding len=13
|
416
|
2012-12-27 14:23:03: DEBUG: skip to trim padding.
|
417
|
2012-12-27 14:23:03: DEBUG: decrypted.
|
418
|
2012-12-27 14:23:03: DEBUG:
|
419
|
925b8c8b b4e92e20 3b982c58 15994205 08100401 00000000 0000008c 14000018
|
420
|
9db22d47 63653087 938c3178 0af4d769 ebaa4da2 14000018 365a93c2 d40ac1b1
|
421
|
069484ab 2857b991 cbe6a2a5 0b000018 5dc3c684 be24d6fd a76bc76e 1543e7b2
|
422
|
de51ed4d 0000001c 00000001 01106002 925b8c8b b4e92e20 3b982c58 15994205
|
423
|
00000000 00000000 0000000c
|
424
|
2012-12-27 14:23:03: DEBUG: begin.
|
425
|
2012-12-27 14:23:03: DEBUG: seen nptype=8(hash)
|
426
|
2012-12-27 14:23:03: DEBUG: seen nptype=20(nat-d)
|
427
|
2012-12-27 14:23:03: DEBUG: seen nptype=20(nat-d)
|
428
|
2012-12-27 14:23:03: DEBUG: seen nptype=11(notify)
|
429
|
2012-12-27 14:23:03: DEBUG: succeed.
|
430
|
2012-12-27 14:23:03: [XXX.XXX.XXX.XXX] INFO: Hashing XXX.XXX.XXX.XXX[500] with algo #2
|
431
|
2012-12-27 14:23:03: DEBUG: hash(sha1)
|
432
|
2012-12-27 14:23:03: INFO: NAT-D payload #0 verified
|
433
|
2012-12-27 14:23:03: [181.12.242.251] INFO: Hashing 181.12.242.251[500] with algo #2
|
434
|
2012-12-27 14:23:03: DEBUG: hash(sha1)
|
435
|
2012-12-27 14:23:03: INFO: NAT-D payload #1 verified
|
436
|
2012-12-27 14:23:03: [181.12.242.251] ERROR: notification INITIAL-CONTACT received in aggressive exchange.
|
437
|
2012-12-27 14:23:03: INFO: NAT not detected
|
438
|
2012-12-27 14:23:03: DEBUG: HASH received:
|
439
|
2012-12-27 14:23:03: DEBUG:
|
440
|
9db22d47 63653087 938c3178 0af4d769 ebaa4da2
|
441
|
2012-12-27 14:23:03: DEBUG: HASH with:
|
442
|
2012-12-27 14:23:03: DEBUG:
|
443
|
66aa91b6 5607915e bb5bd74b 88640012 8b62f6d9 6e7b1a89 44558449 9a03842b
|
444
|
ba83f879 44fc8270 015ac736 ba6da749 73d3c1bf f305d828 0a534cc6 2b18be0c
|
445
|
cd4a337e 124674bd 0dc88407 8a1e05fe 55594dce 1fc626cd f220b4a3 a8f59f04
|
446
|
93bc7f2e 28a3a916 a071c3f7 0206136a 296fcc95 2227cf90 94d08cc0 09e68227
|
447
|
c8c57d51 ba87c123 3d1db319 850febb4 94e7f2aa d165a340 6954a96e 126eb5e9
|
448
|
1b477135 9ff3e4f0 9e67abb5 22622bd7 923ee692 2f12fa9b dad3fbc9 fa692bce
|
449
|
6dd32a44 b3178106 b7c04fa2 3581149f 469401a9 ef388b4c b87f0e82 6ef81d72
|
450
|
72a9df66 c257b551 f149a344 dce83c95 fcb5e79b 3bf563a3 955b0b04 65eb1878
|
451
|
925b8c8b b4e92e20 3b982c58 15994205 00000001 00000001 00000118 01010008
|
452
|
03000024 01010000 800b0001 800c0e10 80010007 800e0100 8003fde9 80020002
|
453
|
80040002 03000024 02010000 800b0001 800c0e10 80010007 800e0080 8003fde9
|
454
|
80020002 80040002 03000024 03010000 800b0001 800c0e10 80010007 800e0100
|
455
|
8003fde9 80020001 80040002 03000024 04010000 800b0001 800c0e10 80010007
|
456
|
800e0080 8003fde9 80020001 80040002 03000020 05010000 800b0001 800c0e10
|
457
|
80010005 8003fde9 80020002 80040002 03000020 06010000 800b0001 800c0e10
|
458
|
80010005 8003fde9 80020001 80040002 03000020 07010000 800b0001 800c0e10
|
459
|
80010001 8003fde9 80020002 80040002 00000020 08010000 800b0001 800c0e10
|
460
|
80010001 8003fde9 80020001 80040002 0b000000 74657374 4067726f 7570
|
461
|
2012-12-27 14:23:03: DEBUG: hmac(hmac_sha1)
|
462
|
2012-12-27 14:23:03: DEBUG: HASH (resp) computed:
|
463
|
2012-12-27 14:23:03: DEBUG:
|
464
|
9db22d47 63653087 938c3178 0af4d769 ebaa4da2
|
465
|
2012-12-27 14:23:03: DEBUG: HASH for PSK validated.
|
466
|
2012-12-27 14:23:03: DEBUG: ===
|
467
|
2012-12-27 14:23:03: INFO: Sending Xauth request
|
468
|
2012-12-27 14:23:03: DEBUG: compute IV for phase2
|
469
|
2012-12-27 14:23:03: DEBUG: phase1 last IV:
|
470
|
2012-12-27 14:23:03: DEBUG:
|
471
|
2704201f 4b11177b 5db93955 59d22f9a eefb4e49
|
472
|
2012-12-27 14:23:03: DEBUG: hash(sha1)
|
473
|
2012-12-27 14:23:03: DEBUG: encryption(aes)
|
474
|
2012-12-27 14:23:03: DEBUG: phase2 IV computed:
|
475
|
2012-12-27 14:23:03: DEBUG:
|
476
|
ae2644cd 0f7445ea 752a60ef 1d6b40ce
|
477
|
2012-12-27 14:23:03: DEBUG: HASH with:
|
478
|
2012-12-27 14:23:03: DEBUG:
|
479
|
eefb4e49 00000014 0100a8c9 c0880000 40890000 408a0000
|
480
|
2012-12-27 14:23:03: DEBUG: hmac(hmac_sha1)
|
481
|
2012-12-27 14:23:03: DEBUG: HASH computed:
|
482
|
2012-12-27 14:23:03: DEBUG:
|
483
|
fdb53b8a 81406f03 71894d46 2c547037 73833849
|
484
|
2012-12-27 14:23:03: DEBUG: MODE_CFG packet to send
|
485
|
2012-12-27 14:23:03: DEBUG:
|
486
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 eefb4e49 00000048 0e000018
|
487
|
fdb53b8a 81406f03 71894d46 2c547037 73833849 00000014 0100a8c9 c0880000
|
488
|
40890000 408a0000
|
489
|
2012-12-27 14:23:03: DEBUG: begin encryption.
|
490
|
2012-12-27 14:23:03: DEBUG: encryption(aes)
|
491
|
2012-12-27 14:23:03: DEBUG: pad length = 4
|
492
|
2012-12-27 14:23:03: DEBUG:
|
493
|
0e000018 fdb53b8a 81406f03 71894d46 2c547037 73833849 00000014 0100a8c9
|
494
|
c0880000 40890000 408a0000 dbecda03
|
495
|
2012-12-27 14:23:03: DEBUG: encryption(aes)
|
496
|
2012-12-27 14:23:03: DEBUG: with key:
|
497
|
2012-12-27 14:23:03: DEBUG:
|
498
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
499
|
2012-12-27 14:23:03: DEBUG: encrypted payload by IV:
|
500
|
2012-12-27 14:23:03: DEBUG:
|
501
|
ae2644cd 0f7445ea 752a60ef 1d6b40ce
|
502
|
2012-12-27 14:23:03: DEBUG: save IV for next:
|
503
|
2012-12-27 14:23:03: DEBUG:
|
504
|
9d6bf6be 87e31072 889cbaf7 156033bd
|
505
|
2012-12-27 14:23:03: DEBUG: encrypted.
|
506
|
2012-12-27 14:23:03: DEBUG: 76 bytes from XXX.XXX.XXX.XXX[500] to 181.12.242.251[500]
|
507
|
2012-12-27 14:23:03: DEBUG: sockname XXX.XXX.XXX.XXX[500]
|
508
|
2012-12-27 14:23:03: DEBUG: send packet from XXX.XXX.XXX.XXX[500]
|
509
|
2012-12-27 14:23:03: DEBUG: send packet to 181.12.242.251[500]
|
510
|
2012-12-27 14:23:03: DEBUG: 1 times of 76 bytes message will be sent to 181.12.242.251[500]
|
511
|
2012-12-27 14:23:03: DEBUG:
|
512
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 eefb4e49 0000004c 2b1311dc
|
513
|
aff83d30 ff56a144 b1128a4d 3f13bc93 abe0c7b2 4b1ab36b 180b61dd 9d6bf6be
|
514
|
87e31072 889cbaf7 156033bd
|
515
|
2012-12-27 14:23:03: DEBUG: sendto mode config attr.
|
516
|
2012-12-27 14:23:03: INFO: ISAKMP-SA established XXX.XXX.XXX.XXX[500]-181.12.242.251[500] spi:925b8c8bb4e92e20:3b982c5815994205
|
517
|
2012-12-27 14:23:03: DEBUG: ===
|
518
|
2012-12-27 14:23:04: DEBUG: ===
|
519
|
2012-12-27 14:23:04: DEBUG: 92 bytes message received from 181.12.242.251[500] to XXX.XXX.XXX.XXX[500]
|
520
|
2012-12-27 14:23:04: DEBUG:
|
521
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 eefb4e49 0000005c 265b736f
|
522
|
1992dc90 f68801f2 706a7f43 5b7af6f1 3eea03d0 d27de171 5d9be370 920de657
|
523
|
a8595d30 b9b73442 f35d6371 dcf624a3 9c0c66f3 0346332b 87b854a9
|
524
|
2012-12-27 14:23:04: DEBUG: begin decryption.
|
525
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
526
|
2012-12-27 14:23:04: DEBUG: IV was saved for next processing:
|
527
|
2012-12-27 14:23:04: DEBUG:
|
528
|
dcf624a3 9c0c66f3 0346332b 87b854a9
|
529
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
530
|
2012-12-27 14:23:04: DEBUG: with key:
|
531
|
2012-12-27 14:23:04: DEBUG:
|
532
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
533
|
2012-12-27 14:23:04: DEBUG: decrypted payload by IV:
|
534
|
2012-12-27 14:23:04: DEBUG:
|
535
|
9d6bf6be 87e31072 889cbaf7 156033bd
|
536
|
2012-12-27 14:23:04: DEBUG: decrypted payload, but not trimed.
|
537
|
2012-12-27 14:23:04: DEBUG:
|
538
|
0e000018 923f22c8 8ca89ce8 6e3ce2c7 c7b7fbe3 17c5eeea 0000001c 0200a800
|
539
|
40890005 6a6f7267 65408a00 07647245 73674559 00000000 00000000 0000000c
|
540
|
2012-12-27 14:23:04: DEBUG: padding len=13
|
541
|
2012-12-27 14:23:04: DEBUG: skip to trim padding.
|
542
|
2012-12-27 14:23:04: DEBUG: decrypted.
|
543
|
2012-12-27 14:23:04: DEBUG:
|
544
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 eefb4e49 0000005c 0e000018
|
545
|
923f22c8 8ca89ce8 6e3ce2c7 c7b7fbe3 17c5eeea 0000001c 0200a800 40890005
|
546
|
6a6f7267 65408a00 07647245 73674559 00000000 00000000 0000000c
|
547
|
2012-12-27 14:23:04: DEBUG: MODE_CFG packet
|
548
|
2012-12-27 14:23:04: DEBUG:
|
549
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 eefb4e49 0000005c 0e000018
|
550
|
923f22c8 8ca89ce8 6e3ce2c7 c7b7fbe3 17c5eeea 0000001c 0200a800 40890005
|
551
|
6a6f7267 65408a00 07647245 73674559 00000000 00000000 0000000c
|
552
|
2012-12-27 14:23:04: DEBUG: Seen payload 8
|
553
|
2012-12-27 14:23:04: DEBUG:
|
554
|
0e000018 923f22c8 8ca89ce8 6e3ce2c7 c7b7fbe3 17c5eeea
|
555
|
2012-12-27 14:23:04: DEBUG: HASH with:
|
556
|
2012-12-27 14:23:04: DEBUG:
|
557
|
eefb4e49 0000001c 0200a800 40890005 6a6f7267 65408a00 07647245 73674559
|
558
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
559
|
2012-12-27 14:23:04: DEBUG: HASH computed:
|
560
|
2012-12-27 14:23:04: DEBUG:
|
561
|
923f22c8 8ca89ce8 6e3ce2c7 c7b7fbe3 17c5eeea
|
562
|
2012-12-27 14:23:04: DEBUG: Seen payload 14
|
563
|
2012-12-27 14:23:04: DEBUG:
|
564
|
0000001c 0200a800 40890005 6a6f7267 65408a00 07647245 73674559
|
565
|
2012-12-27 14:23:04: DEBUG: Configuration exchange type mode config REPLY
|
566
|
2012-12-27 14:23:04: DEBUG: Attribute XAUTH_USER_NAME, len 5
|
567
|
2012-12-27 14:23:04: DEBUG: Attribute XAUTH_USER_PASSWORD, len 7
|
568
|
2012-12-27 14:23:04: INFO: Using port 0
|
569
|
2012-12-27 14:23:04: INFO: login succeeded for user "jorge"
|
570
|
2012-12-27 14:23:04: DEBUG: IV freed
|
571
|
2012-12-27 14:23:04: DEBUG: compute IV for phase2
|
572
|
2012-12-27 14:23:04: DEBUG: phase1 last IV:
|
573
|
2012-12-27 14:23:04: DEBUG:
|
574
|
2704201f 4b11177b 5db93955 59d22f9a e509fd80
|
575
|
2012-12-27 14:23:04: DEBUG: hash(sha1)
|
576
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
577
|
2012-12-27 14:23:04: DEBUG: phase2 IV computed:
|
578
|
2012-12-27 14:23:04: DEBUG:
|
579
|
45710b3a e41ceac0 cdf93599 b4495fbc
|
580
|
2012-12-27 14:23:04: DEBUG: HASH with:
|
581
|
2012-12-27 14:23:04: DEBUG:
|
582
|
e509fd80 0000000c 0300a800 c08f0001
|
583
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
584
|
2012-12-27 14:23:04: DEBUG: HASH computed:
|
585
|
2012-12-27 14:23:04: DEBUG:
|
586
|
cc9443c8 d3df94c0 5da45327 cab9de60 f3730e99
|
587
|
2012-12-27 14:23:04: DEBUG: MODE_CFG packet to send
|
588
|
2012-12-27 14:23:04: DEBUG:
|
589
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 e509fd80 00000040 0e000018
|
590
|
cc9443c8 d3df94c0 5da45327 cab9de60 f3730e99 0000000c 0300a800 c08f0001
|
591
|
2012-12-27 14:23:04: DEBUG: begin encryption.
|
592
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
593
|
2012-12-27 14:23:04: DEBUG: pad length = 12
|
594
|
2012-12-27 14:23:04: DEBUG:
|
595
|
0e000018 cc9443c8 d3df94c0 5da45327 cab9de60 f3730e99 0000000c 0300a800
|
596
|
c08f0001 f9a9c487 a59ba0d9 ffd7ae0b
|
597
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
598
|
2012-12-27 14:23:04: DEBUG: with key:
|
599
|
2012-12-27 14:23:04: DEBUG:
|
600
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
601
|
2012-12-27 14:23:04: DEBUG: encrypted payload by IV:
|
602
|
2012-12-27 14:23:04: DEBUG:
|
603
|
45710b3a e41ceac0 cdf93599 b4495fbc
|
604
|
2012-12-27 14:23:04: DEBUG: save IV for next:
|
605
|
2012-12-27 14:23:04: DEBUG:
|
606
|
807fa7c0 6829e7e8 d2faa7f2 6acb6684
|
607
|
2012-12-27 14:23:04: DEBUG: encrypted.
|
608
|
2012-12-27 14:23:04: DEBUG: 76 bytes from XXX.XXX.XXX.XXX[500] to 181.12.242.251[500]
|
609
|
2012-12-27 14:23:04: DEBUG: sockname XXX.XXX.XXX.XXX[500]
|
610
|
2012-12-27 14:23:04: DEBUG: send packet from XXX.XXX.XXX.XXX[500]
|
611
|
2012-12-27 14:23:04: DEBUG: send packet to 181.12.242.251[500]
|
612
|
2012-12-27 14:23:04: DEBUG: 1 times of 76 bytes message will be sent to 181.12.242.251[500]
|
613
|
2012-12-27 14:23:04: DEBUG:
|
614
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 e509fd80 0000004c e46eefb3
|
615
|
41f0352b a134c7b5 b479d997 83f1aa76 bd48dbf2 423c8ae5 b85e7784 807fa7c0
|
616
|
6829e7e8 d2faa7f2 6acb6684
|
617
|
2012-12-27 14:23:04: DEBUG: sendto mode config attr.
|
618
|
2012-12-27 14:23:04: DEBUG: ===
|
619
|
2012-12-27 14:23:04: DEBUG: 76 bytes message received from 181.12.242.251[500] to XXX.XXX.XXX.XXX[500]
|
620
|
2012-12-27 14:23:04: DEBUG:
|
621
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 e509fd80 0000004c 7aba9740
|
622
|
3f5e7759 3f579006 1d4b74c3 898926c1 31976751 2ab90451 00cf3164 66c8ef77
|
623
|
e7d852fb fc02f013 2338f263
|
624
|
2012-12-27 14:23:04: DEBUG: begin decryption.
|
625
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
626
|
2012-12-27 14:23:04: DEBUG: IV was saved for next processing:
|
627
|
2012-12-27 14:23:04: DEBUG:
|
628
|
66c8ef77 e7d852fb fc02f013 2338f263
|
629
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
630
|
2012-12-27 14:23:04: DEBUG: with key:
|
631
|
2012-12-27 14:23:04: DEBUG:
|
632
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
633
|
2012-12-27 14:23:04: DEBUG: decrypted payload by IV:
|
634
|
2012-12-27 14:23:04: DEBUG:
|
635
|
807fa7c0 6829e7e8 d2faa7f2 6acb6684
|
636
|
2012-12-27 14:23:04: DEBUG: decrypted payload, but not trimed.
|
637
|
2012-12-27 14:23:04: DEBUG:
|
638
|
0e000018 9719b789 3c435cac e66e64e8 458dfea8 a1858225 0000000c 0400a800
|
639
|
c08f0000 00000000 00000000 0000000c
|
640
|
2012-12-27 14:23:04: DEBUG: padding len=13
|
641
|
2012-12-27 14:23:04: DEBUG: skip to trim padding.
|
642
|
2012-12-27 14:23:04: DEBUG: decrypted.
|
643
|
2012-12-27 14:23:04: DEBUG:
|
644
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 e509fd80 0000004c 0e000018
|
645
|
9719b789 3c435cac e66e64e8 458dfea8 a1858225 0000000c 0400a800 c08f0000
|
646
|
00000000 00000000 0000000c
|
647
|
2012-12-27 14:23:04: DEBUG: MODE_CFG packet
|
648
|
2012-12-27 14:23:04: DEBUG:
|
649
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 e509fd80 0000004c 0e000018
|
650
|
9719b789 3c435cac e66e64e8 458dfea8 a1858225 0000000c 0400a800 c08f0000
|
651
|
00000000 00000000 0000000c
|
652
|
2012-12-27 14:23:04: DEBUG: Seen payload 8
|
653
|
2012-12-27 14:23:04: DEBUG:
|
654
|
0e000018 9719b789 3c435cac e66e64e8 458dfea8 a1858225
|
655
|
2012-12-27 14:23:04: DEBUG: HASH with:
|
656
|
2012-12-27 14:23:04: DEBUG:
|
657
|
e509fd80 0000000c 0400a800 c08f0000
|
658
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
659
|
2012-12-27 14:23:04: DEBUG: HASH computed:
|
660
|
2012-12-27 14:23:04: DEBUG:
|
661
|
9719b789 3c435cac e66e64e8 458dfea8 a1858225
|
662
|
2012-12-27 14:23:04: DEBUG: Seen payload 14
|
663
|
2012-12-27 14:23:04: DEBUG:
|
664
|
0000000c 0400a800 c08f0000
|
665
|
2012-12-27 14:23:04: DEBUG: Configuration exchange type mode config ACK
|
666
|
2012-12-27 14:23:04: DEBUG: IV freed
|
667
|
2012-12-27 14:23:04: DEBUG: ===
|
668
|
2012-12-27 14:23:04: DEBUG: 172 bytes message received from 181.12.242.251[500] to XXX.XXX.XXX.XXX[500]
|
669
|
2012-12-27 14:23:04: DEBUG:
|
670
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 12bf6f5b 000000ac 5896a130
|
671
|
5efb73ac 1e2d45b2 cf0cd500 d1a3c59c 6c1b4121 0b3237bf 0844e661 76e6688b
|
672
|
c0f22dc7 4a93fa50 bcdc6ca0 c2fc2476 90bbf956 b254c696 5fd90a38 d0312eea
|
673
|
398228bc b7ccae83 fa250c60 33751ff8 0e34ebdb b232114b 57b1c51e 50ac10aa
|
674
|
d98c45e9 9e4410e7 66394873 702c2e87 6a9f7b0c 66a533e7 443c658f a94b0fb0
|
675
|
f67d4ce2 e25c4345 632c8817
|
676
|
2012-12-27 14:23:04: DEBUG: compute IV for phase2
|
677
|
2012-12-27 14:23:04: DEBUG: phase1 last IV:
|
678
|
2012-12-27 14:23:04: DEBUG:
|
679
|
2704201f 4b11177b 5db93955 59d22f9a 12bf6f5b
|
680
|
2012-12-27 14:23:04: DEBUG: hash(sha1)
|
681
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
682
|
2012-12-27 14:23:04: DEBUG: phase2 IV computed:
|
683
|
2012-12-27 14:23:04: DEBUG:
|
684
|
82d413c1 0b471f11 567f4e56 b0053ab2
|
685
|
2012-12-27 14:23:04: DEBUG: begin decryption.
|
686
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
687
|
2012-12-27 14:23:04: DEBUG: IV was saved for next processing:
|
688
|
2012-12-27 14:23:04: DEBUG:
|
689
|
a94b0fb0 f67d4ce2 e25c4345 632c8817
|
690
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
691
|
2012-12-27 14:23:04: DEBUG: with key:
|
692
|
2012-12-27 14:23:04: DEBUG:
|
693
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
694
|
2012-12-27 14:23:04: DEBUG: decrypted payload by IV:
|
695
|
2012-12-27 14:23:04: DEBUG:
|
696
|
82d413c1 0b471f11 567f4e56 b0053ab2
|
697
|
2012-12-27 14:23:04: DEBUG: decrypted payload, but not trimed.
|
698
|
2012-12-27 14:23:04: DEBUG:
|
699
|
0e000018 a5b6c917 db618af4 1ffe91a3 f2b627ae 2bea83fc 00000070 010073d9
|
700
|
00010000 00020000 00030000 00040000 00050000 00070028 43697363 6f205379
|
701
|
7374656d 73205650 4e20436c 69656e74 20352e31 2e313a69 50686f6e 65204f53
|
702
|
70000000 70020000 70030000 70040000 70060000 70070000 70010000 70080000
|
703
|
70090000 700b0000 00000000 00000008
|
704
|
2012-12-27 14:23:04: DEBUG: padding len=9
|
705
|
2012-12-27 14:23:04: DEBUG: skip to trim padding.
|
706
|
2012-12-27 14:23:04: DEBUG: decrypted.
|
707
|
2012-12-27 14:23:04: DEBUG:
|
708
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 12bf6f5b 000000ac 0e000018
|
709
|
a5b6c917 db618af4 1ffe91a3 f2b627ae 2bea83fc 00000070 010073d9 00010000
|
710
|
00020000 00030000 00040000 00050000 00070028 43697363 6f205379 7374656d
|
711
|
73205650 4e20436c 69656e74 20352e31 2e313a69 50686f6e 65204f53 70000000
|
712
|
70020000 70030000 70040000 70060000 70070000 70010000 70080000 70090000
|
713
|
700b0000 00000000 00000008
|
714
|
2012-12-27 14:23:04: DEBUG: MODE_CFG packet
|
715
|
2012-12-27 14:23:04: DEBUG:
|
716
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 12bf6f5b 000000ac 0e000018
|
717
|
a5b6c917 db618af4 1ffe91a3 f2b627ae 2bea83fc 00000070 010073d9 00010000
|
718
|
00020000 00030000 00040000 00050000 00070028 43697363 6f205379 7374656d
|
719
|
73205650 4e20436c 69656e74 20352e31 2e313a69 50686f6e 65204f53 70000000
|
720
|
70020000 70030000 70040000 70060000 70070000 70010000 70080000 70090000
|
721
|
700b0000 00000000 00000008
|
722
|
2012-12-27 14:23:04: DEBUG: Seen payload 8
|
723
|
2012-12-27 14:23:04: DEBUG:
|
724
|
0e000018 a5b6c917 db618af4 1ffe91a3 f2b627ae 2bea83fc
|
725
|
2012-12-27 14:23:04: DEBUG: HASH with:
|
726
|
2012-12-27 14:23:04: DEBUG:
|
727
|
12bf6f5b 00000070 010073d9 00010000 00020000 00030000 00040000 00050000
|
728
|
00070028 43697363 6f205379 7374656d 73205650 4e20436c 69656e74 20352e31
|
729
|
2e313a69 50686f6e 65204f53 70000000 70020000 70030000 70040000 70060000
|
730
|
70070000 70010000 70080000 70090000 700b0000
|
731
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
732
|
2012-12-27 14:23:04: DEBUG: HASH computed:
|
733
|
2012-12-27 14:23:04: DEBUG:
|
734
|
a5b6c917 db618af4 1ffe91a3 f2b627ae 2bea83fc
|
735
|
2012-12-27 14:23:04: DEBUG: Seen payload 14
|
736
|
2012-12-27 14:23:04: DEBUG:
|
737
|
00000070 010073d9 00010000 00020000 00030000 00040000 00050000 00070028
|
738
|
43697363 6f205379 7374656d 73205650 4e20436c 69656e74 20352e31 2e313a69
|
739
|
50686f6e 65204f53 70000000 70020000 70030000 70040000 70060000 70070000
|
740
|
70010000 70080000 70090000 700b0000
|
741
|
2012-12-27 14:23:04: DEBUG: Configuration exchange type mode config REQUEST
|
742
|
2012-12-27 14:23:04: DEBUG: Attribute INTERNAL_IP4_ADDRESS, len 0
|
743
|
2012-12-27 14:23:04: DEBUG: Attribute INTERNAL_IP4_NETMASK, len 0
|
744
|
2012-12-27 14:23:04: DEBUG: Attribute INTERNAL_IP4_DNS, len 0
|
745
|
2012-12-27 14:23:04: DEBUG: Attribute INTERNAL_IP4_NBNS, len 0
|
746
|
2012-12-27 14:23:04: DEBUG: Attribute INTERNAL_ADDRESS_EXPIRY, len 0
|
747
|
2012-12-27 14:23:04: WARNING: Ignored attribute INTERNAL_ADDRESS_EXPIRY
|
748
|
2012-12-27 14:23:04: DEBUG: Attribute APPLICATION_VERSION, len 40
|
749
|
2012-12-27 14:23:04: DEBUG: Attribute UNITY_BANNER, len 0
|
750
|
2012-12-27 14:23:04: DEBUG: Attribute UNITY_DEF_DOMAIN, len 0
|
751
|
2012-12-27 14:23:04: DEBUG: Attribute UNITY_SPLITDNS_NAME, len 0
|
752
|
2012-12-27 14:23:04: DEBUG: Attribute UNITY_SPLIT_INCLUDE, len 0
|
753
|
2012-12-27 14:23:04: DEBUG: splitnet: 172.21.2.0/255.255.255.0
|
754
|
2012-12-27 14:23:04: DEBUG: Attribute UNITY_LOCAL_LAN, len 0
|
755
|
2012-12-27 14:23:04: DEBUG: Attribute UNITY_PFS, len 0
|
756
|
2012-12-27 14:23:04: DEBUG: Attribute UNITY_SAVE_PASSWD, len 0
|
757
|
2012-12-27 14:23:04: DEBUG: Attribute UNITY_FW_TYPE, len 0
|
758
|
2012-12-27 14:23:04: DEBUG: Ignored attribute UNITY_FW_TYPE
|
759
|
2012-12-27 14:23:04: DEBUG: Attribute UNITY_BACKUP_SERVERS, len 0
|
760
|
2012-12-27 14:23:04: DEBUG: Ignored attribute UNITY_BACKUP_SERVERS
|
761
|
2012-12-27 14:23:04: DEBUG: Attribute 28683, len 0
|
762
|
2012-12-27 14:23:04: WARNING: Ignored attribute 28683
|
763
|
2012-12-27 14:23:04: DEBUG: Sending MODE_CFG REPLY
|
764
|
2012-12-27 14:23:04: DEBUG: HASH with:
|
765
|
2012-12-27 14:23:04: DEBUG:
|
766
|
12bf6f5b 000000b7 020073d9 00010004 0ab8d801 00020004 ffffff00 00030004
|
767
|
ac1502fe 00040004 ac1502fb 00070014 7261636f 6f6e202f 20495073 65632d74
|
768
|
6f6f6c73 70000034 4269656e 76656e69 646f2061 20474553 494e434f 2e205072
|
769
|
6f686962 69646f20 73752075 736f206e 6f206175 746f7269 7a61646f 7002000e
|
770
|
67657369 6e636f2e 636f6d2e 61727003 000f6765 73696e63 6f2e636f 6d2e6172
|
771
|
00700400 0eac1502 00ffffff 00000000 000000f0 070000f0 010001
|
772
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
773
|
2012-12-27 14:23:04: DEBUG: HASH computed:
|
774
|
2012-12-27 14:23:04: DEBUG:
|
775
|
ec21ebec e0e43808 c96ecae0 24891152 db38d759
|
776
|
2012-12-27 14:23:04: DEBUG: MODE_CFG packet to send
|
777
|
2012-12-27 14:23:04: DEBUG:
|
778
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 12bf6f5b 000000eb 0e000018
|
779
|
ec21ebec e0e43808 c96ecae0 24891152 db38d759 000000b7 020073d9 00010004
|
780
|
0ab8d801 00020004 ffffff00 00030004 ac1502fe 00040004 ac1502fb 00070014
|
781
|
7261636f 6f6e202f 20495073 65632d74 6f6f6c73 70000034 4269656e 76656e69
|
782
|
646f2061 20474553 494e434f 2e205072 6f686962 69646f20 73752075 736f206e
|
783
|
6f206175 746f7269 7a61646f 7002000e 67657369 6e636f2e 636f6d2e 61727003
|
784
|
000f6765 73696e63 6f2e636f 6d2e6172 00700400 0eac1502 00ffffff 00000000
|
785
|
000000f0 070000f0 010001
|
786
|
2012-12-27 14:23:04: DEBUG: begin encryption.
|
787
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
788
|
2012-12-27 14:23:04: DEBUG: pad length = 1
|
789
|
2012-12-27 14:23:04: DEBUG:
|
790
|
0e000018 ec21ebec e0e43808 c96ecae0 24891152 db38d759 000000b7 020073d9
|
791
|
00010004 0ab8d801 00020004 ffffff00 00030004 ac1502fe 00040004 ac1502fb
|
792
|
00070014 7261636f 6f6e202f 20495073 65632d74 6f6f6c73 70000034 4269656e
|
793
|
76656e69 646f2061 20474553 494e434f 2e205072 6f686962 69646f20 73752075
|
794
|
736f206e 6f206175 746f7269 7a61646f 7002000e 67657369 6e636f2e 636f6d2e
|
795
|
61727003 000f6765 73696e63 6f2e636f 6d2e6172 00700400 0eac1502 00ffffff
|
796
|
00000000 000000f0 070000f0 01000100
|
797
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
798
|
2012-12-27 14:23:04: DEBUG: with key:
|
799
|
2012-12-27 14:23:04: DEBUG:
|
800
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
801
|
2012-12-27 14:23:04: DEBUG: encrypted payload by IV:
|
802
|
2012-12-27 14:23:04: DEBUG:
|
803
|
a94b0fb0 f67d4ce2 e25c4345 632c8817
|
804
|
2012-12-27 14:23:04: DEBUG: save IV for next:
|
805
|
2012-12-27 14:23:04: DEBUG:
|
806
|
2395dd1f 07179a5a 3c2c093e 1d635a17
|
807
|
2012-12-27 14:23:04: DEBUG: encrypted.
|
808
|
2012-12-27 14:23:04: DEBUG: 236 bytes from XXX.XXX.XXX.XXX[500] to 181.12.242.251[500]
|
809
|
2012-12-27 14:23:04: DEBUG: sockname XXX.XXX.XXX.XXX[500]
|
810
|
2012-12-27 14:23:04: DEBUG: send packet from XXX.XXX.XXX.XXX[500]
|
811
|
2012-12-27 14:23:04: DEBUG: send packet to 181.12.242.251[500]
|
812
|
2012-12-27 14:23:04: DEBUG: 1 times of 236 bytes message will be sent to 181.12.242.251[500]
|
813
|
2012-12-27 14:23:04: DEBUG:
|
814
|
925b8c8b b4e92e20 3b982c58 15994205 08100601 12bf6f5b 000000ec adde3920
|
815
|
50f6acdc 9d0b99a9 60713dbe 8590fd95 7fc7b6aa aa1181b7 663587fb 24de3d5a
|
816
|
afcc9932 6a2f82d3 d0e53364 7e87ba1e 58b9982c d77e40d9 e75cca67 0a5984f8
|
817
|
333ef061 2276ce0c c50e2784 8a9ce791 48599ba2 094101be 2cfa52b3 f20d123e
|
818
|
1e0760db 8791d7ce 867a8730 8f71dc97 a70c93b7 b55bebff d0e7384a 71fc1a01
|
819
|
21ae8c72 39ef51d2 436c3ed8 0836dae0 2a8b7bd8 740b2a5e 0b0b28b0 69d659f8
|
820
|
0e4d6b37 66e95fc2 f18fe64d cf881a35 338b2636 3e66e5c3 bc2fc3c4 2395dd1f
|
821
|
07179a5a 3c2c093e 1d635a17
|
822
|
2012-12-27 14:23:04: DEBUG: sendto mode config attr.
|
823
|
2012-12-27 14:23:04: DEBUG: ===
|
824
|
2012-12-27 14:23:04: DEBUG: 300 bytes message received from 181.12.242.251[500] to XXX.XXX.XXX.XXX[500]
|
825
|
2012-12-27 14:23:04: DEBUG:
|
826
|
925b8c8b b4e92e20 3b982c58 15994205 08102001 0878c0f0 0000012c 84573eb1
|
827
|
899c212d 4e40ba80 57c78d83 1f2721a5 62016df5 cb9317cd 5aeb305f 43e71344
|
828
|
8a389c4a cd0632d1 1d32489a 39802789 ad5560cd 65df18b0 9fc7482d ef0e356a
|
829
|
35c9389c 38fb413a 5e620e24 7ddd59d8 a799c95c 7307643c ceeab85a 6769818e
|
830
|
f805094e 63cd0607 ca0b2a74 0aef9693 f948e585 cec4b26e 1aa67c55 627a26ae
|
831
|
c241ca60 b4897bde 3b0adcf7 882f1327 a6b32286 6a6a58d0 e3c954d5 4d4f4445
|
832
|
7b022eec 78eb6aec 46322336 028fcc8f 5eb5b90d 3d034467 11b8cae0 c8314173
|
833
|
54ab24a0 f695fc0a 4ccf1a22 d3343ae3 08e60cb6 0160faaf 1e50ec89 cd2aa979
|
834
|
5d5c2ef3 838a71cc bfb69603 ebb40f9b 57ff8ab6 0db20ed5 dff06077 9c073701
|
835
|
ef30f97b a86c8091 84f8264d
|
836
|
2012-12-27 14:23:04: DEBUG: IV freed
|
837
|
2012-12-27 14:23:04: DEBUG: compute IV for phase2
|
838
|
2012-12-27 14:23:04: DEBUG: phase1 last IV:
|
839
|
2012-12-27 14:23:04: DEBUG:
|
840
|
2704201f 4b11177b 5db93955 59d22f9a 0878c0f0
|
841
|
2012-12-27 14:23:04: DEBUG: hash(sha1)
|
842
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
843
|
2012-12-27 14:23:04: DEBUG: phase2 IV computed:
|
844
|
2012-12-27 14:23:04: DEBUG:
|
845
|
ce2cde17 659ff14a 250970af e5ca10f2
|
846
|
2012-12-27 14:23:04: DEBUG: ===
|
847
|
2012-12-27 14:23:04: INFO: respond new phase 2 negotiation: XXX.XXX.XXX.XXX[500]<=>181.12.242.251[500]
|
848
|
2012-12-27 14:23:04: DEBUG: begin decryption.
|
849
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
850
|
2012-12-27 14:23:04: DEBUG: IV was saved for next processing:
|
851
|
2012-12-27 14:23:04: DEBUG:
|
852
|
9c073701 ef30f97b a86c8091 84f8264d
|
853
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
854
|
2012-12-27 14:23:04: DEBUG: with key:
|
855
|
2012-12-27 14:23:04: DEBUG:
|
856
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
857
|
2012-12-27 14:23:04: DEBUG: decrypted payload by IV:
|
858
|
2012-12-27 14:23:04: DEBUG:
|
859
|
ce2cde17 659ff14a 250970af e5ca10f2
|
860
|
2012-12-27 14:23:04: DEBUG: decrypted payload, but not trimed.
|
861
|
2012-12-27 14:23:04: DEBUG:
|
862
|
01000018 749a2453 2b3c5c71 b72fcf7f 38014014 0f790f65 0a0000b8 00000001
|
863
|
00000001 000000ac 01030406 000543c4 0300001c 010c0000 80010001 80020e10
|
864
|
80040001 80060100 80050002 0300001c 020c0000 80010001 80020e10 80040001
|
865
|
80060100 80050001 0300001c 030c0000 80010001 80020e10 80040001 80060080
|
866
|
80050002 0300001c 040c0000 80010001 80020e10 80040001 80060080 80050001
|
867
|
03000018 05030000 80010001 80020e10 80040001 80050002 00000018 06030000
|
868
|
80010001 80020e10 80040001 80050001 05000014 9ccb2f2b 6d00e5c0 7b58f881
|
869
|
fe9e951c 0500000c 01000000 0ab8d801 00000010 04000000 ac150200 ffffff00
|
870
|
00000000 00000000 00000000 00000010
|
871
|
2012-12-27 14:23:04: DEBUG: padding len=17
|
872
|
2012-12-27 14:23:04: DEBUG: skip to trim padding.
|
873
|
2012-12-27 14:23:04: DEBUG: decrypted.
|
874
|
2012-12-27 14:23:04: DEBUG:
|
875
|
925b8c8b b4e92e20 3b982c58 15994205 08102001 0878c0f0 0000012c 01000018
|
876
|
749a2453 2b3c5c71 b72fcf7f 38014014 0f790f65 0a0000b8 00000001 00000001
|
877
|
000000ac 01030406 000543c4 0300001c 010c0000 80010001 80020e10 80040001
|
878
|
80060100 80050002 0300001c 020c0000 80010001 80020e10 80040001 80060100
|
879
|
80050001 0300001c 030c0000 80010001 80020e10 80040001 80060080 80050002
|
880
|
0300001c 040c0000 80010001 80020e10 80040001 80060080 80050001 03000018
|
881
|
05030000 80010001 80020e10 80040001 80050002 00000018 06030000 80010001
|
882
|
80020e10 80040001 80050001 05000014 9ccb2f2b 6d00e5c0 7b58f881 fe9e951c
|
883
|
0500000c 01000000 0ab8d801 00000010 04000000 ac150200 ffffff00 00000000
|
884
|
00000000 00000000 00000010
|
885
|
2012-12-27 14:23:04: DEBUG: begin.
|
886
|
2012-12-27 14:23:04: DEBUG: seen nptype=8(hash)
|
887
|
2012-12-27 14:23:04: DEBUG: seen nptype=1(sa)
|
888
|
2012-12-27 14:23:04: DEBUG: seen nptype=10(nonce)
|
889
|
2012-12-27 14:23:04: DEBUG: seen nptype=5(id)
|
890
|
2012-12-27 14:23:04: DEBUG: seen nptype=5(id)
|
891
|
2012-12-27 14:23:04: DEBUG: succeed.
|
892
|
2012-12-27 14:23:04: DEBUG: received IDci2:2012-12-27 14:23:04: DEBUG:
|
893
|
01000000 0ab8d801
|
894
|
2012-12-27 14:23:04: DEBUG: received IDcr2:2012-12-27 14:23:04: DEBUG:
|
895
|
04000000 ac150200 ffffff00
|
896
|
2012-12-27 14:23:04: DEBUG: HASH(1) validate:2012-12-27 14:23:04: DEBUG:
|
897
|
749a2453 2b3c5c71 b72fcf7f 38014014 0f790f65
|
898
|
2012-12-27 14:23:04: DEBUG: HASH with:
|
899
|
2012-12-27 14:23:04: DEBUG:
|
900
|
0878c0f0 0a0000b8 00000001 00000001 000000ac 01030406 000543c4 0300001c
|
901
|
010c0000 80010001 80020e10 80040001 80060100 80050002 0300001c 020c0000
|
902
|
80010001 80020e10 80040001 80060100 80050001 0300001c 030c0000 80010001
|
903
|
80020e10 80040001 80060080 80050002 0300001c 040c0000 80010001 80020e10
|
904
|
80040001 80060080 80050001 03000018 05030000 80010001 80020e10 80040001
|
905
|
80050002 00000018 06030000 80010001 80020e10 80040001 80050001 05000014
|
906
|
9ccb2f2b 6d00e5c0 7b58f881 fe9e951c 0500000c 01000000 0ab8d801 00000010
|
907
|
04000000 ac150200 ffffff00
|
908
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
909
|
2012-12-27 14:23:04: DEBUG: HASH computed:
|
910
|
2012-12-27 14:23:04: DEBUG:
|
911
|
749a2453 2b3c5c71 b72fcf7f 38014014 0f790f65
|
912
|
2012-12-27 14:23:04: DEBUG: getsainfo params: loc='172.21.2.0/24' rmt='10.184.216.1' peer='<KEY-ID>' client='10.184.216.1' id=1
|
913
|
2012-12-27 14:23:04: DEBUG: evaluating sainfo: loc='ANONYMOUS', rmt='ANONYMOUS', peer='ANY', id=1
|
914
|
2012-12-27 14:23:04: DEBUG: check and compare ids : values matched (ANONYMOUS)
|
915
|
2012-12-27 14:23:04: DEBUG: check and compare ids : values matched (ANONYMOUS)
|
916
|
2012-12-27 14:23:04: DEBUG: selected sainfo: loc='ANONYMOUS', rmt='ANONYMOUS', peer='ANY', id=1
|
917
|
2012-12-27 14:23:04: DEBUG: Either family (2 - 2), types (1 - 0) of ID from initiator differ or matching sainfo has no id_i defined for the peer. Not filling iph2->sa_src and iph2->sa_dst.
|
918
|
2012-12-27 14:23:04: DEBUG: get src address from ID payload 10.184.216.1[0] prefixlen=32 ul_proto=255
|
919
|
2012-12-27 14:23:04: DEBUG: get dst address from ID payload 172.21.2.0[0] prefixlen=24 ul_proto=255
|
920
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe380: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
921
|
2012-12-27 14:23:04: DEBUG: db :0x2854b148: 172.21.2.0/24[0] 172.21.2.254/32[0] proto=any dir=in
|
922
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe380: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
923
|
2012-12-27 14:23:04: DEBUG: db: 0x2854b148: 172.21.2.0/24[0] 172.21.2.254/32[0] proto=any dir=in
|
924
|
2012-12-27 14:23:04: DEBUG: 0xbfbfe380 masked with /24: 10.184.216.0[0]
|
925
|
2012-12-27 14:23:04: DEBUG: 0x2854b148 masked with /24: 172.21.2.0[0]
|
926
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe380: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
927
|
2012-12-27 14:23:04: DEBUG: db :0x2854b288: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
928
|
2012-12-27 14:23:04: INFO: Update the generated policy : 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
929
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe380: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
930
|
2012-12-27 14:23:04: DEBUG: db :0x2854b148: 172.21.2.0/24[0] 172.21.2.254/32[0] proto=any dir=in
|
931
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe380: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
932
|
2012-12-27 14:23:04: DEBUG: db: 0x2854b148: 172.21.2.0/24[0] 172.21.2.254/32[0] proto=any dir=in
|
933
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe380: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
934
|
2012-12-27 14:23:04: DEBUG: db :0x2854b288: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
935
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe380: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
936
|
2012-12-27 14:23:04: DEBUG: db: 0x2854b288: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
937
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe380: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
938
|
2012-12-27 14:23:04: DEBUG: db :0x2854b508: 172.21.2.254/32[0] 172.21.2.0/24[0] proto=any dir=out
|
939
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe380: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
940
|
2012-12-27 14:23:04: DEBUG: db: 0x2854b508: 172.21.2.254/32[0] 172.21.2.0/24[0] proto=any dir=out
|
941
|
2012-12-27 14:23:04: DEBUG: 0xbfbfe380 masked with /32: 172.21.2.0[0]
|
942
|
2012-12-27 14:23:04: DEBUG: 0x2854b508 masked with /32: 172.21.2.254[0]
|
943
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe380: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
944
|
2012-12-27 14:23:04: DEBUG: db :0x2854b648: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
945
|
2012-12-27 14:23:04: DEBUG: suitable SP found:172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
946
|
2012-12-27 14:23:04: DEBUG: (proto_id=ESP spisize=4 spi=00000000 spi_p=00000000 encmode=Tunnel reqid=1:1)
|
947
|
2012-12-27 14:23:04: DEBUG: (trns_id=AES encklen=128 authtype=hmac-sha)
|
948
|
2012-12-27 14:23:04: DEBUG: total SA len=180
|
949
|
2012-12-27 14:23:04: DEBUG:
|
950
|
00000001 00000001 000000ac 01030406 000543c4 0300001c 010c0000 80010001
|
951
|
80020e10 80040001 80060100 80050002 0300001c 020c0000 80010001 80020e10
|
952
|
80040001 80060100 80050001 0300001c 030c0000 80010001 80020e10 80040001
|
953
|
80060080 80050002 0300001c 040c0000 80010001 80020e10 80040001 80060080
|
954
|
80050001 03000018 05030000 80010001 80020e10 80040001 80050002 00000018
|
955
|
06030000 80010001 80020e10 80040001 80050001
|
956
|
2012-12-27 14:23:04: DEBUG: begin.
|
957
|
2012-12-27 14:23:04: DEBUG: seen nptype=2(prop)
|
958
|
2012-12-27 14:23:04: DEBUG: succeed.
|
959
|
2012-12-27 14:23:04: DEBUG: proposal #1 len=172
|
960
|
2012-12-27 14:23:04: DEBUG: begin.
|
961
|
2012-12-27 14:23:04: DEBUG: seen nptype=3(trns)
|
962
|
2012-12-27 14:23:04: DEBUG: seen nptype=3(trns)
|
963
|
2012-12-27 14:23:04: DEBUG: seen nptype=3(trns)
|
964
|
2012-12-27 14:23:04: DEBUG: seen nptype=3(trns)
|
965
|
2012-12-27 14:23:04: DEBUG: seen nptype=3(trns)
|
966
|
2012-12-27 14:23:04: DEBUG: seen nptype=3(trns)
|
967
|
2012-12-27 14:23:04: DEBUG: succeed.
|
968
|
2012-12-27 14:23:04: DEBUG: transform #1 len=28
|
969
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
970
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
971
|
2012-12-27 14:23:04: DEBUG: life duration was in TLV.
|
972
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
973
|
2012-12-27 14:23:04: DEBUG: type=Key Length, flag=0x8000, lorv=256
|
974
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-sha
|
975
|
2012-12-27 14:23:04: DEBUG: transform #2 len=28
|
976
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
977
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
978
|
2012-12-27 14:23:04: DEBUG: life duration was in TLV.
|
979
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
980
|
2012-12-27 14:23:04: DEBUG: type=Key Length, flag=0x8000, lorv=256
|
981
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-md5
|
982
|
2012-12-27 14:23:04: DEBUG: transform #3 len=28
|
983
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
984
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
985
|
2012-12-27 14:23:04: DEBUG: life duration was in TLV.
|
986
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
987
|
2012-12-27 14:23:04: DEBUG: type=Key Length, flag=0x8000, lorv=128
|
988
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-sha
|
989
|
2012-12-27 14:23:04: DEBUG: transform #4 len=28
|
990
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
991
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
992
|
2012-12-27 14:23:04: DEBUG: life duration was in TLV.
|
993
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
994
|
2012-12-27 14:23:04: DEBUG: type=Key Length, flag=0x8000, lorv=128
|
995
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-md5
|
996
|
2012-12-27 14:23:04: DEBUG: transform #5 len=24
|
997
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
998
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
999
|
2012-12-27 14:23:04: DEBUG: life duration was in TLV.
|
1000
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
1001
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-sha
|
1002
|
2012-12-27 14:23:04: DEBUG: transform #6 len=24
|
1003
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
1004
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
1005
|
2012-12-27 14:23:04: DEBUG: life duration was in TLV.
|
1006
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
1007
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-md5
|
1008
|
2012-12-27 14:23:04: DEBUG: pair 1:
|
1009
|
2012-12-27 14:23:04: DEBUG: 0x285246a0: next=0x0 tnext=0x285246b0
|
1010
|
2012-12-27 14:23:04: DEBUG: 0x285246b0: next=0x0 tnext=0x285246c0
|
1011
|
2012-12-27 14:23:04: DEBUG: 0x285246c0: next=0x0 tnext=0x285246d0
|
1012
|
2012-12-27 14:23:04: DEBUG: 0x285246d0: next=0x0 tnext=0x285246e0
|
1013
|
2012-12-27 14:23:04: DEBUG: 0x285246e0: next=0x0 tnext=0x285246f0
|
1014
|
2012-12-27 14:23:04: DEBUG: 0x285246f0: next=0x0 tnext=0x0
|
1015
|
2012-12-27 14:23:04: DEBUG: proposal #1: 6 transform
|
1016
|
2012-12-27 14:23:04: DEBUG: begin compare proposals.
|
1017
|
2012-12-27 14:23:04: DEBUG: pair[1]: 0x285246a0
|
1018
|
2012-12-27 14:23:04: DEBUG: 0x285246a0: next=0x0 tnext=0x285246b0
|
1019
|
2012-12-27 14:23:04: DEBUG: 0x285246b0: next=0x0 tnext=0x285246c0
|
1020
|
2012-12-27 14:23:04: DEBUG: 0x285246c0: next=0x0 tnext=0x285246d0
|
1021
|
2012-12-27 14:23:04: DEBUG: 0x285246d0: next=0x0 tnext=0x285246e0
|
1022
|
2012-12-27 14:23:04: DEBUG: 0x285246e0: next=0x0 tnext=0x285246f0
|
1023
|
2012-12-27 14:23:04: DEBUG: 0x285246f0: next=0x0 tnext=0x0
|
1024
|
2012-12-27 14:23:04: DEBUG: prop#=1 prot-id=ESP spi-size=4 #trns=6 trns#=1 trns-id=AES
|
1025
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
1026
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
1027
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
1028
|
2012-12-27 14:23:04: DEBUG: type=Key Length, flag=0x8000, lorv=256
|
1029
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-sha
|
1030
|
2012-12-27 14:23:04: DEBUG: prop#=1 prot-id=ESP spi-size=4 #trns=6 trns#=2 trns-id=AES
|
1031
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
1032
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
1033
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
1034
|
2012-12-27 14:23:04: DEBUG: type=Key Length, flag=0x8000, lorv=256
|
1035
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-md5
|
1036
|
2012-12-27 14:23:04: DEBUG: prop#=1 prot-id=ESP spi-size=4 #trns=6 trns#=3 trns-id=AES
|
1037
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
1038
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
1039
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
1040
|
2012-12-27 14:23:04: DEBUG: type=Key Length, flag=0x8000, lorv=128
|
1041
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-sha
|
1042
|
2012-12-27 14:23:04: DEBUG: prop#=1 prot-id=ESP spi-size=4 #trns=6 trns#=4 trns-id=AES
|
1043
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
1044
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
1045
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
1046
|
2012-12-27 14:23:04: DEBUG: type=Key Length, flag=0x8000, lorv=128
|
1047
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-md5
|
1048
|
2012-12-27 14:23:04: DEBUG: prop#=1 prot-id=ESP spi-size=4 #trns=6 trns#=5 trns-id=3DES
|
1049
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
1050
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
1051
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
1052
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-sha
|
1053
|
2012-12-27 14:23:04: DEBUG: prop#=1 prot-id=ESP spi-size=4 #trns=6 trns#=6 trns-id=3DES
|
1054
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
1055
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
1056
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
1057
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-md5
|
1058
|
2012-12-27 14:23:04: DEBUG: peer's single bundle:
|
1059
|
2012-12-27 14:23:04: DEBUG: (proto_id=ESP spisize=4 spi=000543c4 spi_p=00000000 encmode=Tunnel reqid=0:0)
|
1060
|
2012-12-27 14:23:04: DEBUG: (trns_id=AES encklen=256 authtype=hmac-sha)
|
1061
|
2012-12-27 14:23:04: DEBUG: (trns_id=AES encklen=256 authtype=hmac-md5)
|
1062
|
2012-12-27 14:23:04: DEBUG: (trns_id=AES encklen=128 authtype=hmac-sha)
|
1063
|
2012-12-27 14:23:04: DEBUG: (trns_id=AES encklen=128 authtype=hmac-md5)
|
1064
|
2012-12-27 14:23:04: DEBUG: (trns_id=3DES encklen=0 authtype=hmac-sha)
|
1065
|
2012-12-27 14:23:04: DEBUG: (trns_id=3DES encklen=0 authtype=hmac-md5)
|
1066
|
2012-12-27 14:23:04: DEBUG: my single bundle:
|
1067
|
2012-12-27 14:23:04: DEBUG: (proto_id=ESP spisize=4 spi=00000000 spi_p=00000000 encmode=Tunnel reqid=1:1)
|
1068
|
2012-12-27 14:23:04: DEBUG: (trns_id=AES encklen=128 authtype=hmac-sha)
|
1069
|
2012-12-27 14:23:04: DEBUG: matched
|
1070
|
2012-12-27 14:23:04: DEBUG: ===
|
1071
|
2012-12-27 14:23:04: DEBUG: call pfkey_send_getspi
|
1072
|
2012-12-27 14:23:04: DEBUG: pfkey GETSPI sent: ESP/Tunnel 181.12.242.251[500]->XXX.XXX.XXX.XXX[500]
|
1073
|
2012-12-27 14:23:04: DEBUG: pfkey getspi sent.
|
1074
|
2012-12-27 14:23:04: DEBUG: pk_recv: retry[0] recv()
|
1075
|
2012-12-27 14:23:04: DEBUG: got pfkey GETSPI message
|
1076
|
2012-12-27 14:23:04: DEBUG: pfkey GETSPI succeeded: ESP/Tunnel 181.12.242.251[500]->XXX.XXX.XXX.XXX[500] spi=201647856(0xc04e6f0)
|
1077
|
2012-12-27 14:23:04: DEBUG: total SA len=48
|
1078
|
2012-12-27 14:23:04: DEBUG:
|
1079
|
00000001 00000001 00000028 01030401 00000000 0000001c 010c0000 80010001
|
1080
|
80020e10 80040001 80060100 80050002
|
1081
|
2012-12-27 14:23:04: DEBUG: begin.
|
1082
|
2012-12-27 14:23:04: DEBUG: seen nptype=2(prop)
|
1083
|
2012-12-27 14:23:04: DEBUG: succeed.
|
1084
|
2012-12-27 14:23:04: DEBUG: proposal #1 len=40
|
1085
|
2012-12-27 14:23:04: DEBUG: begin.
|
1086
|
2012-12-27 14:23:04: DEBUG: seen nptype=3(trns)
|
1087
|
2012-12-27 14:23:04: DEBUG: succeed.
|
1088
|
2012-12-27 14:23:04: DEBUG: transform #1 len=28
|
1089
|
2012-12-27 14:23:04: DEBUG: type=SA Life Type, flag=0x8000, lorv=seconds
|
1090
|
2012-12-27 14:23:04: DEBUG: type=SA Life Duration, flag=0x8000, lorv=3600
|
1091
|
2012-12-27 14:23:04: DEBUG: life duration was in TLV.
|
1092
|
2012-12-27 14:23:04: DEBUG: type=Encryption Mode, flag=0x8000, lorv=Tunnel
|
1093
|
2012-12-27 14:23:04: DEBUG: type=Key Length, flag=0x8000, lorv=256
|
1094
|
2012-12-27 14:23:04: DEBUG: type=Authentication Algorithm, flag=0x8000, lorv=hmac-sha
|
1095
|
2012-12-27 14:23:04: DEBUG: pair 1:
|
1096
|
2012-12-27 14:23:04: DEBUG: 0x285246a0: next=0x0 tnext=0x0
|
1097
|
2012-12-27 14:23:04: DEBUG: proposal #1: 1 transform
|
1098
|
2012-12-27 14:23:04: DEBUG: add payload of len 48, next type 10
|
1099
|
2012-12-27 14:23:04: DEBUG: add payload of len 16, next type 5
|
1100
|
2012-12-27 14:23:04: DEBUG: add payload of len 8, next type 5
|
1101
|
2012-12-27 14:23:04: DEBUG: add payload of len 12, next type 0
|
1102
|
2012-12-27 14:23:04: DEBUG: HASH with:
|
1103
|
2012-12-27 14:23:04: DEBUG:
|
1104
|
0878c0f0 9ccb2f2b 6d00e5c0 7b58f881 fe9e951c 0a000034 00000001 00000001
|
1105
|
00000028 01030401 0c04e6f0 0000001c 010c0000 80010001 80020e10 80040001
|
1106
|
80060100 80050002 05000014 8c96c826 6d69fb11 ae41d374 9f063dc8 0500000c
|
1107
|
01000000 0ab8d801 00000010 04000000 ac150200 ffffff00
|
1108
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
1109
|
2012-12-27 14:23:04: DEBUG: HASH computed:
|
1110
|
2012-12-27 14:23:04: DEBUG:
|
1111
|
a710f1e1 52c2b592 434536b5 ba867be8 533a8e69
|
1112
|
2012-12-27 14:23:04: DEBUG: add payload of len 20, next type 1
|
1113
|
2012-12-27 14:23:04: DEBUG: begin encryption.
|
1114
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
1115
|
2012-12-27 14:23:04: DEBUG: pad length = 4
|
1116
|
2012-12-27 14:23:04: DEBUG:
|
1117
|
01000018 a710f1e1 52c2b592 434536b5 ba867be8 533a8e69 0a000034 00000001
|
1118
|
00000001 00000028 01030401 0c04e6f0 0000001c 010c0000 80010001 80020e10
|
1119
|
80040001 80060100 80050002 05000014 8c96c826 6d69fb11 ae41d374 9f063dc8
|
1120
|
0500000c 01000000 0ab8d801 00000010 04000000 ac150200 ffffff00 99f0b803
|
1121
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
1122
|
2012-12-27 14:23:04: DEBUG: with key:
|
1123
|
2012-12-27 14:23:04: DEBUG:
|
1124
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
1125
|
2012-12-27 14:23:04: DEBUG: encrypted payload by IV:
|
1126
|
2012-12-27 14:23:04: DEBUG:
|
1127
|
9c073701 ef30f97b a86c8091 84f8264d
|
1128
|
2012-12-27 14:23:04: DEBUG: save IV for next:
|
1129
|
2012-12-27 14:23:04: DEBUG:
|
1130
|
c40037a9 a1ca3824 b98c1777 8426908a
|
1131
|
2012-12-27 14:23:04: DEBUG: encrypted.
|
1132
|
2012-12-27 14:23:04: DEBUG: 156 bytes from XXX.XXX.XXX.XXX[500] to 181.12.242.251[500]
|
1133
|
2012-12-27 14:23:04: DEBUG: sockname XXX.XXX.XXX.XXX[500]
|
1134
|
2012-12-27 14:23:04: DEBUG: send packet from XXX.XXX.XXX.XXX[500]
|
1135
|
2012-12-27 14:23:04: DEBUG: send packet to 181.12.242.251[500]
|
1136
|
2012-12-27 14:23:04: DEBUG: 1 times of 156 bytes message will be sent to 181.12.242.251[500]
|
1137
|
2012-12-27 14:23:04: DEBUG:
|
1138
|
925b8c8b b4e92e20 3b982c58 15994205 08102001 0878c0f0 0000009c cd9e86ec
|
1139
|
184221c8 585fd09d f44816ed fdd52263 49fbfe55 33f2aa58 bfd1fd9d 534930ae
|
1140
|
57d1d88a 3754a8cf 18b6681b 46d9f83c 4f83f4ec 5aafa8cf c115493f 3012ea0e
|
1141
|
ea80f272 fd67b212 0c0df69a 40124ca2 155aae25 67c6f777 e11df442 99613730
|
1142
|
ee07f303 d90b8fc4 c4659517 c40037a9 a1ca3824 b98c1777 8426908a
|
1143
|
2012-12-27 14:23:04: DEBUG: resend phase2 packet 925b8c8bb4e92e20:3b982c5815994205:00000878
|
1144
|
2012-12-27 14:23:04: DEBUG: ===
|
1145
|
2012-12-27 14:23:04: DEBUG: 60 bytes message received from 181.12.242.251[500] to XXX.XXX.XXX.XXX[500]
|
1146
|
2012-12-27 14:23:04: DEBUG:
|
1147
|
925b8c8b b4e92e20 3b982c58 15994205 08102001 0878c0f0 0000003c afa6e35b
|
1148
|
5ab6fcf1 57e9bac7 39510805 3fee8d79 5f10cf60 d1f58e9e 66d94b7a
|
1149
|
2012-12-27 14:23:04: DEBUG: begin decryption.
|
1150
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
1151
|
2012-12-27 14:23:04: DEBUG: IV was saved for next processing:
|
1152
|
2012-12-27 14:23:04: DEBUG:
|
1153
|
3fee8d79 5f10cf60 d1f58e9e 66d94b7a
|
1154
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
1155
|
2012-12-27 14:23:04: DEBUG: with key:
|
1156
|
2012-12-27 14:23:04: DEBUG:
|
1157
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
1158
|
2012-12-27 14:23:04: DEBUG: decrypted payload by IV:
|
1159
|
2012-12-27 14:23:04: DEBUG:
|
1160
|
c40037a9 a1ca3824 b98c1777 8426908a
|
1161
|
2012-12-27 14:23:04: DEBUG: decrypted payload, but not trimed.
|
1162
|
2012-12-27 14:23:04: DEBUG:
|
1163
|
00000018 ae32bdd6 83cf54d3 a99fe8fd 67c7fac7 dc894e4f 00000000 00000008
|
1164
|
2012-12-27 14:23:04: DEBUG: padding len=9
|
1165
|
2012-12-27 14:23:04: DEBUG: skip to trim padding.
|
1166
|
2012-12-27 14:23:04: DEBUG: decrypted.
|
1167
|
2012-12-27 14:23:04: DEBUG:
|
1168
|
925b8c8b b4e92e20 3b982c58 15994205 08102001 0878c0f0 0000003c 00000018
|
1169
|
ae32bdd6 83cf54d3 a99fe8fd 67c7fac7 dc894e4f 00000000 00000008
|
1170
|
2012-12-27 14:23:04: DEBUG: begin.
|
1171
|
2012-12-27 14:23:04: DEBUG: seen nptype=8(hash)
|
1172
|
2012-12-27 14:23:04: DEBUG: succeed.
|
1173
|
2012-12-27 14:23:04: DEBUG: HASH(3) validate:2012-12-27 14:23:04: DEBUG:
|
1174
|
ae32bdd6 83cf54d3 a99fe8fd 67c7fac7 dc894e4f
|
1175
|
2012-12-27 14:23:04: DEBUG: HASH with:
|
1176
|
2012-12-27 14:23:04: DEBUG:
|
1177
|
000878c0 f09ccb2f 2b6d00e5 c07b58f8 81fe9e95 1c8c96c8 266d69fb 11ae41d3
|
1178
|
749f063d c8
|
1179
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
1180
|
2012-12-27 14:23:04: DEBUG: HASH computed:
|
1181
|
2012-12-27 14:23:04: DEBUG:
|
1182
|
ae32bdd6 83cf54d3 a99fe8fd 67c7fac7 dc894e4f
|
1183
|
2012-12-27 14:23:04: DEBUG: ===
|
1184
|
2012-12-27 14:23:04: DEBUG: KEYMAT compute with
|
1185
|
2012-12-27 14:23:04: DEBUG:
|
1186
|
030c04e6 f09ccb2f 2b6d00e5 c07b58f8 81fe9e95 1c8c96c8 266d69fb 11ae41d3
|
1187
|
749f063d c8
|
1188
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
1189
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
1190
|
2012-12-27 14:23:04: DEBUG: hmac(sha1)
|
1191
|
2012-12-27 14:23:04: DEBUG: encklen=256 authklen=160
|
1192
|
2012-12-27 14:23:04: DEBUG: generating 640 bits of key (dupkeymat=4)
|
1193
|
2012-12-27 14:23:04: DEBUG: generating K1...K4 for KEYMAT.
|
1194
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
1195
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
1196
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
1197
|
2012-12-27 14:23:04: DEBUG:
|
1198
|
05ae3bfb cbe63bc7 8613ee0e 9498daa4 bbba6e28 fcb482f5 e3feec41 872c0be6
|
1199
|
d69828db 70ccc8d5 929277a2 04a05fba b7176b1c 20b2e232 f2d32754 f8ce8fd2
|
1200
|
c9268bbc e1ecd9b9 5d073803 ca71c32c
|
1201
|
2012-12-27 14:23:04: DEBUG: KEYMAT compute with
|
1202
|
2012-12-27 14:23:04: DEBUG:
|
1203
|
03000543 c49ccb2f 2b6d00e5 c07b58f8 81fe9e95 1c8c96c8 266d69fb 11ae41d3
|
1204
|
749f063d c8
|
1205
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
1206
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
1207
|
2012-12-27 14:23:04: DEBUG: hmac(sha1)
|
1208
|
2012-12-27 14:23:04: DEBUG: encklen=256 authklen=160
|
1209
|
2012-12-27 14:23:04: DEBUG: generating 640 bits of key (dupkeymat=4)
|
1210
|
2012-12-27 14:23:04: DEBUG: generating K1...K4 for KEYMAT.
|
1211
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
1212
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
1213
|
2012-12-27 14:23:04: DEBUG: hmac(hmac_sha1)
|
1214
|
2012-12-27 14:23:04: DEBUG:
|
1215
|
18dd4123 9fa3069e a3b80fac 70f4bff3 be95cbca e3e0b440 4a45fffa 164c735a
|
1216
|
426b0843 487eeeae a92d2fec 6a14081a 822d4a21 51a1eaa3 183c2bcd 6bc2af1b
|
1217
|
1d6f6abb 5946ed0c 728f2191 39ebf035
|
1218
|
2012-12-27 14:23:04: DEBUG: KEYMAT computed.
|
1219
|
2012-12-27 14:23:04: DEBUG: call pk_sendupdate
|
1220
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
1221
|
2012-12-27 14:23:04: DEBUG: hmac(sha1)
|
1222
|
2012-12-27 14:23:04: DEBUG: call pfkey_send_update2
|
1223
|
2012-12-27 14:23:04: DEBUG: pfkey update sent.
|
1224
|
2012-12-27 14:23:04: DEBUG: encryption(aes)
|
1225
|
2012-12-27 14:23:04: DEBUG: hmac(sha1)
|
1226
|
2012-12-27 14:23:04: DEBUG: call pfkey_send_add2 (NAT flavor)
|
1227
|
2012-12-27 14:23:04: DEBUG: call pfkey_send_add2
|
1228
|
2012-12-27 14:23:04: DEBUG: pfkey add sent.
|
1229
|
2012-12-27 14:23:04: DEBUG: call pfkey_send_spdupdate2
|
1230
|
2012-12-27 14:23:04: DEBUG: pfkey spdupdate2(inbound) sent.
|
1231
|
2012-12-27 14:23:04: DEBUG: call pfkey_send_spdupdate2
|
1232
|
2012-12-27 14:23:04: DEBUG: pfkey spdupdate2(outbound) sent.
|
1233
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe258: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
1234
|
2012-12-27 14:23:04: DEBUG: db :0x2854b148: 172.21.2.0/24[0] 172.21.2.254/32[0] proto=any dir=in
|
1235
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe258: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
1236
|
2012-12-27 14:23:04: DEBUG: db :0x2854b288: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
1237
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe258: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
1238
|
2012-12-27 14:23:04: DEBUG: db :0x2854b148: 172.21.2.0/24[0] 172.21.2.254/32[0] proto=any dir=in
|
1239
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe258: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
1240
|
2012-12-27 14:23:04: DEBUG: db :0x2854b508: 172.21.2.254/32[0] 172.21.2.0/24[0] proto=any dir=out
|
1241
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe258: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
1242
|
2012-12-27 14:23:04: DEBUG: db :0x2854b648: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
1243
|
2012-12-27 14:23:04: DEBUG: pk_recv: retry[0] recv()
|
1244
|
2012-12-27 14:23:04: DEBUG: got pfkey UPDATE message
|
1245
|
2012-12-27 14:23:04: ERROR: pfkey UPDATE failed: Invalid argument
|
1246
|
2012-12-27 14:23:04: DEBUG: pk_recv: retry[0] recv()
|
1247
|
2012-12-27 14:23:04: DEBUG: got pfkey ADD message
|
1248
|
2012-12-27 14:23:04: ERROR: pfkey ADD failed: Invalid argument
|
1249
|
2012-12-27 14:23:04: DEBUG: pk_recv: retry[0] recv()
|
1250
|
2012-12-27 14:23:04: DEBUG: got pfkey X_SPDUPDATE message
|
1251
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe5b4: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
1252
|
2012-12-27 14:23:04: DEBUG: db :0x2854b148: 172.21.2.0/24[0] 172.21.2.254/32[0] proto=any dir=in
|
1253
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe5b4: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
1254
|
2012-12-27 14:23:04: DEBUG: db :0x2854b508: 172.21.2.254/32[0] 172.21.2.0/24[0] proto=any dir=out
|
1255
|
2012-12-27 14:23:04: DEBUG: this policy did not exist for removal: "10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in"
|
1256
|
2012-12-27 14:23:04: DEBUG: pk_recv: retry[0] recv()
|
1257
|
2012-12-27 14:23:04: DEBUG: got pfkey X_SPDUPDATE message
|
1258
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe5b4: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
1259
|
2012-12-27 14:23:04: DEBUG: db :0x2854b148: 172.21.2.0/24[0] 172.21.2.254/32[0] proto=any dir=in
|
1260
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe5b4: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
1261
|
2012-12-27 14:23:04: DEBUG: db :0x2854b508: 172.21.2.254/32[0] 172.21.2.0/24[0] proto=any dir=out
|
1262
|
2012-12-27 14:23:04: DEBUG: sub:0xbfbfe5b4: 172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out
|
1263
|
2012-12-27 14:23:04: DEBUG: db :0x2854b288: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
1264
|
2012-12-27 14:23:04: DEBUG: this policy did not exist for removal: "172.21.2.0/24[0] 10.184.216.1/32[0] proto=any dir=out"
|
1265
|
2012-12-27 14:23:13: [181.12.242.251] DEBUG: DPD monitoring....
|
1266
|
2012-12-27 14:23:13: DEBUG: compute IV for phase2
|
1267
|
2012-12-27 14:23:13: DEBUG: phase1 last IV:
|
1268
|
2012-12-27 14:23:13: DEBUG:
|
1269
|
2704201f 4b11177b 5db93955 59d22f9a a62f96ec
|
1270
|
2012-12-27 14:23:13: DEBUG: hash(sha1)
|
1271
|
2012-12-27 14:23:13: DEBUG: encryption(aes)
|
1272
|
2012-12-27 14:23:13: DEBUG: phase2 IV computed:
|
1273
|
2012-12-27 14:23:13: DEBUG:
|
1274
|
cfadc2a4 d4ddb842 88689088 91ae4f2b
|
1275
|
2012-12-27 14:23:13: DEBUG: HASH with:
|
1276
|
2012-12-27 14:23:13: DEBUG:
|
1277
|
a62f96ec 00000020 00000001 01108d28 925b8c8b b4e92e20 3b982c58 15994205
|
1278
|
000001a8
|
1279
|
2012-12-27 14:23:13: DEBUG: hmac(hmac_sha1)
|
1280
|
2012-12-27 14:23:13: DEBUG: HASH computed:
|
1281
|
2012-12-27 14:23:13: DEBUG:
|
1282
|
b381cdf6 2db37f1a ac83017c 0798de00 73412518
|
1283
|
2012-12-27 14:23:13: DEBUG: begin encryption.
|
1284
|
2012-12-27 14:23:13: DEBUG: encryption(aes)
|
1285
|
2012-12-27 14:23:13: DEBUG: pad length = 8
|
1286
|
2012-12-27 14:23:13: DEBUG:
|
1287
|
0b000018 b381cdf6 2db37f1a ac83017c 0798de00 73412518 00000020 00000001
|
1288
|
01108d28 925b8c8b b4e92e20 3b982c58 15994205 000001a8 fed2c2bf d5cdf907
|
1289
|
2012-12-27 14:23:13: DEBUG: encryption(aes)
|
1290
|
2012-12-27 14:23:13: DEBUG: with key:
|
1291
|
2012-12-27 14:23:13: DEBUG:
|
1292
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
1293
|
2012-12-27 14:23:13: DEBUG: encrypted payload by IV:
|
1294
|
2012-12-27 14:23:13: DEBUG:
|
1295
|
cfadc2a4 d4ddb842 88689088 91ae4f2b
|
1296
|
2012-12-27 14:23:13: DEBUG: save IV for next:
|
1297
|
2012-12-27 14:23:13: DEBUG:
|
1298
|
3f0cd1de 70c74409 722aca7b c64a193f
|
1299
|
2012-12-27 14:23:13: DEBUG: encrypted.
|
1300
|
2012-12-27 14:23:13: DEBUG: 92 bytes from XXX.XXX.XXX.XXX[500] to 181.12.242.251[500]
|
1301
|
2012-12-27 14:23:13: DEBUG: sockname XXX.XXX.XXX.XXX[500]
|
1302
|
2012-12-27 14:23:13: DEBUG: send packet from XXX.XXX.XXX.XXX[500]
|
1303
|
2012-12-27 14:23:13: DEBUG: send packet to 181.12.242.251[500]
|
1304
|
2012-12-27 14:23:13: DEBUG: 1 times of 92 bytes message will be sent to 181.12.242.251[500]
|
1305
|
2012-12-27 14:23:13: DEBUG:
|
1306
|
925b8c8b b4e92e20 3b982c58 15994205 08100501 a62f96ec 0000005c 0ac4aba0
|
1307
|
38e6c1a5 51add86c c0119fa3 870eae19 a56b0d3d 69636dfc c36018e3 f7bd7f20
|
1308
|
5234006e 0e1c2fbd 0bb75bf0 3f0cd1de 70c74409 722aca7b c64a193f
|
1309
|
2012-12-27 14:23:13: DEBUG: sendto Information notify.
|
1310
|
2012-12-27 14:23:13: DEBUG: IV freed
|
1311
|
2012-12-27 14:23:13: [181.12.242.251] DEBUG: DPD R-U-There sent (0)
|
1312
|
2012-12-27 14:23:13: [181.12.242.251] DEBUG: rescheduling send_r_u (5).
|
1313
|
2012-12-27 14:23:14: DEBUG: ===
|
1314
|
2012-12-27 14:23:14: DEBUG: 92 bytes message received from 181.12.242.251[500] to XXX.XXX.XXX.XXX[500]
|
1315
|
2012-12-27 14:23:14: DEBUG:
|
1316
|
925b8c8b b4e92e20 3b982c58 15994205 08100501 7bbab246 0000005c 5dd13710
|
1317
|
b192b15d 77aae08d 93df91d3 b3a70dbf 60b960c1 1ea0fabd d8b75670 180901a9
|
1318
|
f6bdd060 ad035052 8feec933 d98d272d 7c6cac19 51128c98 5142a724
|
1319
|
2012-12-27 14:23:14: DEBUG: receive Information.
|
1320
|
2012-12-27 14:23:14: DEBUG: compute IV for phase2
|
1321
|
2012-12-27 14:23:14: DEBUG: phase1 last IV:
|
1322
|
2012-12-27 14:23:14: DEBUG:
|
1323
|
2704201f 4b11177b 5db93955 59d22f9a 7bbab246
|
1324
|
2012-12-27 14:23:14: DEBUG: hash(sha1)
|
1325
|
2012-12-27 14:23:14: DEBUG: encryption(aes)
|
1326
|
2012-12-27 14:23:14: DEBUG: phase2 IV computed:
|
1327
|
2012-12-27 14:23:14: DEBUG:
|
1328
|
6c3f954f 454d488c a21eaeb4 a81e999c
|
1329
|
2012-12-27 14:23:14: DEBUG: begin decryption.
|
1330
|
2012-12-27 14:23:14: DEBUG: encryption(aes)
|
1331
|
2012-12-27 14:23:14: DEBUG: IV was saved for next processing:
|
1332
|
2012-12-27 14:23:14: DEBUG:
|
1333
|
d98d272d 7c6cac19 51128c98 5142a724
|
1334
|
2012-12-27 14:23:14: DEBUG: encryption(aes)
|
1335
|
2012-12-27 14:23:14: DEBUG: with key:
|
1336
|
2012-12-27 14:23:14: DEBUG:
|
1337
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
1338
|
2012-12-27 14:23:14: DEBUG: decrypted payload by IV:
|
1339
|
2012-12-27 14:23:14: DEBUG:
|
1340
|
6c3f954f 454d488c a21eaeb4 a81e999c
|
1341
|
2012-12-27 14:23:14: DEBUG: decrypted payload, but not trimed.
|
1342
|
2012-12-27 14:23:14: DEBUG:
|
1343
|
0b000018 6cf4e5eb 27c32f97 7a418677 49ef9400 4eed8cdc 00000020 00000001
|
1344
|
01108d29 925b8c8b b4e92e20 3b982c58 15994205 000001a8 00000000 00000008
|
1345
|
2012-12-27 14:23:14: DEBUG: padding len=9
|
1346
|
2012-12-27 14:23:14: DEBUG: skip to trim padding.
|
1347
|
2012-12-27 14:23:14: DEBUG: decrypted.
|
1348
|
2012-12-27 14:23:14: DEBUG:
|
1349
|
925b8c8b b4e92e20 3b982c58 15994205 08100501 7bbab246 0000005c 0b000018
|
1350
|
6cf4e5eb 27c32f97 7a418677 49ef9400 4eed8cdc 00000020 00000001 01108d29
|
1351
|
925b8c8b b4e92e20 3b982c58 15994205 000001a8 00000000 00000008
|
1352
|
2012-12-27 14:23:14: DEBUG: IV freed
|
1353
|
2012-12-27 14:23:14: DEBUG: HASH with:
|
1354
|
2012-12-27 14:23:14: DEBUG:
|
1355
|
7bbab246 00000020 00000001 01108d29 925b8c8b b4e92e20 3b982c58 15994205
|
1356
|
000001a8
|
1357
|
2012-12-27 14:23:14: DEBUG: hmac(hmac_sha1)
|
1358
|
2012-12-27 14:23:14: DEBUG: HASH computed:
|
1359
|
2012-12-27 14:23:14: DEBUG:
|
1360
|
6cf4e5eb 27c32f97 7a418677 49ef9400 4eed8cdc
|
1361
|
2012-12-27 14:23:14: DEBUG: hash validated.
|
1362
|
2012-12-27 14:23:14: DEBUG: begin.
|
1363
|
2012-12-27 14:23:14: DEBUG: seen nptype=8(hash)
|
1364
|
2012-12-27 14:23:14: DEBUG: seen nptype=11(notify)
|
1365
|
2012-12-27 14:23:14: DEBUG: succeed.
|
1366
|
2012-12-27 14:23:14: [181.12.242.251] DEBUG: DPD R-U-There-Ack received
|
1367
|
2012-12-27 14:23:14: DEBUG: received an R-U-THERE-ACK
|
1368
|
2012-12-27 14:23:23: DEBUG: ===
|
1369
|
2012-12-27 14:23:23: DEBUG: 92 bytes message received from 181.12.242.251[500] to XXX.XXX.XXX.XXX[500]
|
1370
|
2012-12-27 14:23:23: DEBUG:
|
1371
|
925b8c8b b4e92e20 3b982c58 15994205 08100501 8f1f32f6 0000005c 1afb4065
|
1372
|
1fd28a7f 1f4aeca0 5309bbca 2c6f7b47 3ba8dfb4 8cad16ff 984f18c0 f36e129f
|
1373
|
834847a7 b4a0882d 4dc52b84 cf802b40 42692690 f3403ce6 52d4685c
|
1374
|
2012-12-27 14:23:23: DEBUG: receive Information.
|
1375
|
2012-12-27 14:23:23: DEBUG: compute IV for phase2
|
1376
|
2012-12-27 14:23:23: DEBUG: phase1 last IV:
|
1377
|
2012-12-27 14:23:23: DEBUG:
|
1378
|
2704201f 4b11177b 5db93955 59d22f9a 8f1f32f6
|
1379
|
2012-12-27 14:23:23: DEBUG: hash(sha1)
|
1380
|
2012-12-27 14:23:23: DEBUG: encryption(aes)
|
1381
|
2012-12-27 14:23:23: DEBUG: phase2 IV computed:
|
1382
|
2012-12-27 14:23:23: DEBUG:
|
1383
|
0b064b58 1d2e2247 af4868d5 1b967dda
|
1384
|
2012-12-27 14:23:23: DEBUG: begin decryption.
|
1385
|
2012-12-27 14:23:23: DEBUG: encryption(aes)
|
1386
|
2012-12-27 14:23:23: DEBUG: IV was saved for next processing:
|
1387
|
2012-12-27 14:23:23: DEBUG:
|
1388
|
cf802b40 42692690 f3403ce6 52d4685c
|
1389
|
2012-12-27 14:23:23: DEBUG: encryption(aes)
|
1390
|
2012-12-27 14:23:23: DEBUG: with key:
|
1391
|
2012-12-27 14:23:23: DEBUG:
|
1392
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
1393
|
2012-12-27 14:23:23: DEBUG: decrypted payload by IV:
|
1394
|
2012-12-27 14:23:23: DEBUG:
|
1395
|
0b064b58 1d2e2247 af4868d5 1b967dda
|
1396
|
2012-12-27 14:23:23: DEBUG: decrypted payload, but not trimed.
|
1397
|
2012-12-27 14:23:23: DEBUG:
|
1398
|
0b000018 d52dd34f 26fab832 f11f6f9d 5f2bc466 b35033cc 00000020 00000001
|
1399
|
01108d28 925b8c8b b4e92e20 3b982c58 15994205 00000af4 00000000 00000008
|
1400
|
2012-12-27 14:23:23: DEBUG: padding len=9
|
1401
|
2012-12-27 14:23:23: DEBUG: skip to trim padding.
|
1402
|
2012-12-27 14:23:23: DEBUG: decrypted.
|
1403
|
2012-12-27 14:23:23: DEBUG:
|
1404
|
925b8c8b b4e92e20 3b982c58 15994205 08100501 8f1f32f6 0000005c 0b000018
|
1405
|
d52dd34f 26fab832 f11f6f9d 5f2bc466 b35033cc 00000020 00000001 01108d28
|
1406
|
925b8c8b b4e92e20 3b982c58 15994205 00000af4 00000000 00000008
|
1407
|
2012-12-27 14:23:23: DEBUG: IV freed
|
1408
|
2012-12-27 14:23:23: DEBUG: HASH with:
|
1409
|
2012-12-27 14:23:23: DEBUG:
|
1410
|
8f1f32f6 00000020 00000001 01108d28 925b8c8b b4e92e20 3b982c58 15994205
|
1411
|
00000af4
|
1412
|
2012-12-27 14:23:23: DEBUG: hmac(hmac_sha1)
|
1413
|
2012-12-27 14:23:23: DEBUG: HASH computed:
|
1414
|
2012-12-27 14:23:23: DEBUG:
|
1415
|
d52dd34f 26fab832 f11f6f9d 5f2bc466 b35033cc
|
1416
|
2012-12-27 14:23:23: DEBUG: hash validated.
|
1417
|
2012-12-27 14:23:23: DEBUG: begin.
|
1418
|
2012-12-27 14:23:23: DEBUG: seen nptype=8(hash)
|
1419
|
2012-12-27 14:23:23: DEBUG: seen nptype=11(notify)
|
1420
|
2012-12-27 14:23:23: DEBUG: succeed.
|
1421
|
2012-12-27 14:23:23: [181.12.242.251] DEBUG: DPD R-U-There received
|
1422
|
2012-12-27 14:23:23: DEBUG: compute IV for phase2
|
1423
|
2012-12-27 14:23:23: DEBUG: phase1 last IV:
|
1424
|
2012-12-27 14:23:23: DEBUG:
|
1425
|
2704201f 4b11177b 5db93955 59d22f9a fa3654f8
|
1426
|
2012-12-27 14:23:23: DEBUG: hash(sha1)
|
1427
|
2012-12-27 14:23:23: DEBUG: encryption(aes)
|
1428
|
2012-12-27 14:23:23: DEBUG: phase2 IV computed:
|
1429
|
2012-12-27 14:23:23: DEBUG:
|
1430
|
5002ec9c 67d061fd d784eaee d7f96670
|
1431
|
2012-12-27 14:23:23: DEBUG: HASH with:
|
1432
|
2012-12-27 14:23:23: DEBUG:
|
1433
|
fa3654f8 00000020 00000001 01108d29 925b8c8b b4e92e20 3b982c58 15994205
|
1434
|
00000af4
|
1435
|
2012-12-27 14:23:23: DEBUG: hmac(hmac_sha1)
|
1436
|
2012-12-27 14:23:23: DEBUG: HASH computed:
|
1437
|
2012-12-27 14:23:23: DEBUG:
|
1438
|
f4b0f200 b0d91d75 bdd6e42a c74c42d1 42b7e868
|
1439
|
2012-12-27 14:23:23: DEBUG: begin encryption.
|
1440
|
2012-12-27 14:23:23: DEBUG: encryption(aes)
|
1441
|
2012-12-27 14:23:23: DEBUG: pad length = 8
|
1442
|
2012-12-27 14:23:23: DEBUG:
|
1443
|
0b000018 f4b0f200 b0d91d75 bdd6e42a c74c42d1 42b7e868 00000020 00000001
|
1444
|
01108d29 925b8c8b b4e92e20 3b982c58 15994205 00000af4 8bf9f790 9a88b507
|
1445
|
2012-12-27 14:23:23: DEBUG: encryption(aes)
|
1446
|
2012-12-27 14:23:23: DEBUG: with key:
|
1447
|
2012-12-27 14:23:23: DEBUG:
|
1448
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
1449
|
2012-12-27 14:23:23: DEBUG: encrypted payload by IV:
|
1450
|
2012-12-27 14:23:23: DEBUG:
|
1451
|
5002ec9c 67d061fd d784eaee d7f96670
|
1452
|
2012-12-27 14:23:23: DEBUG: save IV for next:
|
1453
|
2012-12-27 14:23:23: DEBUG:
|
1454
|
247e0b0f 519fb431 4750b147 1fa3eb92
|
1455
|
2012-12-27 14:23:23: DEBUG: encrypted.
|
1456
|
2012-12-27 14:23:23: DEBUG: 92 bytes from XXX.XXX.XXX.XXX[500] to 181.12.242.251[500]
|
1457
|
2012-12-27 14:23:23: DEBUG: sockname XXX.XXX.XXX.XXX[500]
|
1458
|
2012-12-27 14:23:23: DEBUG: send packet from XXX.XXX.XXX.XXX[500]
|
1459
|
2012-12-27 14:23:23: DEBUG: send packet to 181.12.242.251[500]
|
1460
|
2012-12-27 14:23:23: DEBUG: 1 times of 92 bytes message will be sent to 181.12.242.251[500]
|
1461
|
2012-12-27 14:23:23: DEBUG:
|
1462
|
925b8c8b b4e92e20 3b982c58 15994205 08100501 fa3654f8 0000005c 077d798f
|
1463
|
c1613c57 7fe03491 d29c926a 6e8cd4b2 9a6272c4 04bef8fb 251e9b2a 955ae874
|
1464
|
62d3c539 d2ec5677 120b2a96 247e0b0f 519fb431 4750b147 1fa3eb92
|
1465
|
2012-12-27 14:23:23: DEBUG: sendto Information notify.
|
1466
|
2012-12-27 14:23:23: DEBUG: IV freed
|
1467
|
2012-12-27 14:23:23: DEBUG: received a valid R-U-THERE, ACK sent
|
1468
|
2012-12-27 14:23:24: [181.12.242.251] DEBUG: DPD monitoring....
|
1469
|
2012-12-27 14:23:24: DEBUG: compute IV for phase2
|
1470
|
2012-12-27 14:23:24: DEBUG: phase1 last IV:
|
1471
|
2012-12-27 14:23:24: DEBUG:
|
1472
|
2704201f 4b11177b 5db93955 59d22f9a 9538b20b
|
1473
|
2012-12-27 14:23:24: DEBUG: hash(sha1)
|
1474
|
2012-12-27 14:23:24: DEBUG: encryption(aes)
|
1475
|
2012-12-27 14:23:24: DEBUG: phase2 IV computed:
|
1476
|
2012-12-27 14:23:24: DEBUG:
|
1477
|
e432b6a4 62062ea3 9570259e 400d93dd
|
1478
|
2012-12-27 14:23:24: DEBUG: HASH with:
|
1479
|
2012-12-27 14:23:24: DEBUG:
|
1480
|
9538b20b 00000020 00000001 01108d28 925b8c8b b4e92e20 3b982c58 15994205
|
1481
|
000001a9
|
1482
|
2012-12-27 14:23:24: DEBUG: hmac(hmac_sha1)
|
1483
|
2012-12-27 14:23:24: DEBUG: HASH computed:
|
1484
|
2012-12-27 14:23:24: DEBUG:
|
1485
|
eacf58a5 3ba4b2bb 3e88d786 03358b13 a6a2483e
|
1486
|
2012-12-27 14:23:24: DEBUG: begin encryption.
|
1487
|
2012-12-27 14:23:24: DEBUG: encryption(aes)
|
1488
|
2012-12-27 14:23:24: DEBUG: pad length = 8
|
1489
|
2012-12-27 14:23:24: DEBUG:
|
1490
|
0b000018 eacf58a5 3ba4b2bb 3e88d786 03358b13 a6a2483e 00000020 00000001
|
1491
|
01108d28 925b8c8b b4e92e20 3b982c58 15994205 000001a9 d3a4d5b8 e4e9f207
|
1492
|
2012-12-27 14:23:24: DEBUG: encryption(aes)
|
1493
|
2012-12-27 14:23:24: DEBUG: with key:
|
1494
|
2012-12-27 14:23:24: DEBUG:
|
1495
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
1496
|
2012-12-27 14:23:24: DEBUG: encrypted payload by IV:
|
1497
|
2012-12-27 14:23:24: DEBUG:
|
1498
|
e432b6a4 62062ea3 9570259e 400d93dd
|
1499
|
2012-12-27 14:23:24: DEBUG: save IV for next:
|
1500
|
2012-12-27 14:23:24: DEBUG:
|
1501
|
1db6d10e 53a56f35 07737c76 283adcf0
|
1502
|
2012-12-27 14:23:24: DEBUG: encrypted.
|
1503
|
2012-12-27 14:23:24: DEBUG: 92 bytes from XXX.XXX.XXX.XXX[500] to 181.12.242.251[500]
|
1504
|
2012-12-27 14:23:24: DEBUG: sockname XXX.XXX.XXX.XXX[500]
|
1505
|
2012-12-27 14:23:24: DEBUG: send packet from XXX.XXX.XXX.XXX[500]
|
1506
|
2012-12-27 14:23:24: DEBUG: send packet to 181.12.242.251[500]
|
1507
|
2012-12-27 14:23:24: DEBUG: 1 times of 92 bytes message will be sent to 181.12.242.251[500]
|
1508
|
2012-12-27 14:23:24: DEBUG:
|
1509
|
925b8c8b b4e92e20 3b982c58 15994205 08100501 9538b20b 0000005c 75651bb0
|
1510
|
c0d96f26 48bd7bd8 2e91447b 22ff28bf 9ca9e9dd 19b8b67c bc04ad1a 034437ca
|
1511
|
0b4d6159 62a85153 bf30c611 1db6d10e 53a56f35 07737c76 283adcf0
|
1512
|
2012-12-27 14:23:24: DEBUG: sendto Information notify.
|
1513
|
2012-12-27 14:23:24: DEBUG: IV freed
|
1514
|
2012-12-27 14:23:24: [181.12.242.251] DEBUG: DPD R-U-There sent (0)
|
1515
|
2012-12-27 14:23:24: [181.12.242.251] DEBUG: rescheduling send_r_u (5).
|
1516
|
2012-12-27 14:23:24: DEBUG: ===
|
1517
|
2012-12-27 14:23:24: DEBUG: 92 bytes message received from 181.12.242.251[500] to XXX.XXX.XXX.XXX[500]
|
1518
|
2012-12-27 14:23:24: DEBUG:
|
1519
|
925b8c8b b4e92e20 3b982c58 15994205 08100501 6b3d4079 0000005c 0bc5b55d
|
1520
|
50589bb6 21f8e12c 4c090a09 5640c124 afd4a736 505df943 a9e3098d 30c15f7a
|
1521
|
286e1ef9 55a10967 7214365c df7300c7 d794dbb7 b140a922 a0b07437
|
1522
|
2012-12-27 14:23:24: DEBUG: receive Information.
|
1523
|
2012-12-27 14:23:24: DEBUG: compute IV for phase2
|
1524
|
2012-12-27 14:23:24: DEBUG: phase1 last IV:
|
1525
|
2012-12-27 14:23:24: DEBUG:
|
1526
|
2704201f 4b11177b 5db93955 59d22f9a 6b3d4079
|
1527
|
2012-12-27 14:23:24: DEBUG: hash(sha1)
|
1528
|
2012-12-27 14:23:24: DEBUG: encryption(aes)
|
1529
|
2012-12-27 14:23:24: DEBUG: phase2 IV computed:
|
1530
|
2012-12-27 14:23:24: DEBUG:
|
1531
|
4e8b74ca 61260011 eaa55d98 51278f15
|
1532
|
2012-12-27 14:23:24: DEBUG: begin decryption.
|
1533
|
2012-12-27 14:23:24: DEBUG: encryption(aes)
|
1534
|
2012-12-27 14:23:24: DEBUG: IV was saved for next processing:
|
1535
|
2012-12-27 14:23:24: DEBUG:
|
1536
|
df7300c7 d794dbb7 b140a922 a0b07437
|
1537
|
2012-12-27 14:23:24: DEBUG: encryption(aes)
|
1538
|
2012-12-27 14:23:24: DEBUG: with key:
|
1539
|
2012-12-27 14:23:24: DEBUG:
|
1540
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
1541
|
2012-12-27 14:23:24: DEBUG: decrypted payload by IV:
|
1542
|
2012-12-27 14:23:24: DEBUG:
|
1543
|
4e8b74ca 61260011 eaa55d98 51278f15
|
1544
|
2012-12-27 14:23:24: DEBUG: decrypted payload, but not trimed.
|
1545
|
2012-12-27 14:23:24: DEBUG:
|
1546
|
0b000018 861d728a 330e5477 cea52db1 ba4238e1 8b7bc853 00000020 00000001
|
1547
|
01108d29 925b8c8b b4e92e20 3b982c58 15994205 000001a9 00000000 00000008
|
1548
|
2012-12-27 14:23:24: DEBUG: padding len=9
|
1549
|
2012-12-27 14:23:24: DEBUG: skip to trim padding.
|
1550
|
2012-12-27 14:23:24: DEBUG: decrypted.
|
1551
|
2012-12-27 14:23:24: DEBUG:
|
1552
|
925b8c8b b4e92e20 3b982c58 15994205 08100501 6b3d4079 0000005c 0b000018
|
1553
|
861d728a 330e5477 cea52db1 ba4238e1 8b7bc853 00000020 00000001 01108d29
|
1554
|
925b8c8b b4e92e20 3b982c58 15994205 000001a9 00000000 00000008
|
1555
|
2012-12-27 14:23:24: DEBUG: IV freed
|
1556
|
2012-12-27 14:23:24: DEBUG: HASH with:
|
1557
|
2012-12-27 14:23:24: DEBUG:
|
1558
|
6b3d4079 00000020 00000001 01108d29 925b8c8b b4e92e20 3b982c58 15994205
|
1559
|
000001a9
|
1560
|
2012-12-27 14:23:24: DEBUG: hmac(hmac_sha1)
|
1561
|
2012-12-27 14:23:24: DEBUG: HASH computed:
|
1562
|
2012-12-27 14:23:24: DEBUG:
|
1563
|
861d728a 330e5477 cea52db1 ba4238e1 8b7bc853
|
1564
|
2012-12-27 14:23:24: DEBUG: hash validated.
|
1565
|
2012-12-27 14:23:24: DEBUG: begin.
|
1566
|
2012-12-27 14:23:24: DEBUG: seen nptype=8(hash)
|
1567
|
2012-12-27 14:23:24: DEBUG: seen nptype=11(notify)
|
1568
|
2012-12-27 14:23:24: DEBUG: succeed.
|
1569
|
2012-12-27 14:23:24: [181.12.242.251] DEBUG: DPD R-U-There-Ack received
|
1570
|
2012-12-27 14:23:24: DEBUG: received an R-U-THERE-ACK
|
1571
|
2012-12-27 14:23:32: DEBUG: ===
|
1572
|
2012-12-27 14:23:32: DEBUG: 92 bytes message received from 181.12.242.251[500] to XXX.XXX.XXX.XXX[500]
|
1573
|
2012-12-27 14:23:32: DEBUG:
|
1574
|
925b8c8b b4e92e20 3b982c58 15994205 08100501 8def9ceb 0000005c 4570707b
|
1575
|
9be6e7d7 94536cfb 49969c05 8f072990 18100e98 b037704e 7966d0b8 46521675
|
1576
|
c6e442e5 1fe9cec2 cd0dca3b 7c45b565 712d6528 4f092c97 bc7f4e4b
|
1577
|
2012-12-27 14:23:32: DEBUG: receive Information.
|
1578
|
2012-12-27 14:23:32: DEBUG: compute IV for phase2
|
1579
|
2012-12-27 14:23:32: DEBUG: phase1 last IV:
|
1580
|
2012-12-27 14:23:32: DEBUG:
|
1581
|
2704201f 4b11177b 5db93955 59d22f9a 8def9ceb
|
1582
|
2012-12-27 14:23:32: DEBUG: hash(sha1)
|
1583
|
2012-12-27 14:23:32: DEBUG: encryption(aes)
|
1584
|
2012-12-27 14:23:32: DEBUG: phase2 IV computed:
|
1585
|
2012-12-27 14:23:32: DEBUG:
|
1586
|
8c7b26ff 0ce5fb3f 18883c4e 003e3a18
|
1587
|
2012-12-27 14:23:32: DEBUG: begin decryption.
|
1588
|
2012-12-27 14:23:32: DEBUG: encryption(aes)
|
1589
|
2012-12-27 14:23:32: DEBUG: IV was saved for next processing:
|
1590
|
2012-12-27 14:23:32: DEBUG:
|
1591
|
7c45b565 712d6528 4f092c97 bc7f4e4b
|
1592
|
2012-12-27 14:23:32: DEBUG: encryption(aes)
|
1593
|
2012-12-27 14:23:32: DEBUG: with key:
|
1594
|
2012-12-27 14:23:32: DEBUG:
|
1595
|
dba485a6 3b4e9f91 9f17989f a570fdc3 8427244c 52563aa2 6b3adb8f 92ab159b
|
1596
|
2012-12-27 14:23:32: DEBUG: decrypted payload by IV:
|
1597
|
2012-12-27 14:23:32: DEBUG:
|
1598
|
8c7b26ff 0ce5fb3f 18883c4e 003e3a18
|
1599
|
2012-12-27 14:23:32: DEBUG: decrypted payload, but not trimed.
|
1600
|
2012-12-27 14:23:32: DEBUG:
|
1601
|
0c000018 9e95f384 5e3dd82c cca62387 c0c16654 7bcf5b70 0000001c 00000001
|
1602
|
01100001 925b8c8b b4e92e20 3b982c58 15994205 00000000 00000000 0000000c
|
1603
|
2012-12-27 14:23:32: DEBUG: padding len=13
|
1604
|
2012-12-27 14:23:32: DEBUG: skip to trim padding.
|
1605
|
2012-12-27 14:23:32: DEBUG: decrypted.
|
1606
|
2012-12-27 14:23:32: DEBUG:
|
1607
|
925b8c8b b4e92e20 3b982c58 15994205 08100501 8def9ceb 0000005c 0c000018
|
1608
|
9e95f384 5e3dd82c cca62387 c0c16654 7bcf5b70 0000001c 00000001 01100001
|
1609
|
925b8c8b b4e92e20 3b982c58 15994205 00000000 00000000 0000000c
|
1610
|
2012-12-27 14:23:32: DEBUG: IV freed
|
1611
|
2012-12-27 14:23:32: DEBUG: HASH with:
|
1612
|
2012-12-27 14:23:32: DEBUG:
|
1613
|
8def9ceb 0000001c 00000001 01100001 925b8c8b b4e92e20 3b982c58 15994205
|
1614
|
2012-12-27 14:23:32: DEBUG: hmac(hmac_sha1)
|
1615
|
2012-12-27 14:23:32: DEBUG: HASH computed:
|
1616
|
2012-12-27 14:23:32: DEBUG:
|
1617
|
9e95f384 5e3dd82c cca62387 c0c16654 7bcf5b70
|
1618
|
2012-12-27 14:23:32: DEBUG: hash validated.
|
1619
|
2012-12-27 14:23:32: DEBUG: begin.
|
1620
|
2012-12-27 14:23:32: DEBUG: seen nptype=8(hash)
|
1621
|
2012-12-27 14:23:32: DEBUG: seen nptype=12(delete)
|
1622
|
2012-12-27 14:23:32: DEBUG: succeed.
|
1623
|
2012-12-27 14:23:32: [181.12.242.251] DEBUG: delete payload for protocol ISAKMP
|
1624
|
2012-12-27 14:23:32: INFO: purging ISAKMP-SA spi=925b8c8bb4e92e20:3b982c5815994205:000012bf.
|
1625
|
2012-12-27 14:23:32: DEBUG: call pfkey_send_dump
|
1626
|
2012-12-27 14:23:32: DEBUG: pk_recv: retry[0] recv()
|
1627
|
2012-12-27 14:23:32: INFO: purged ISAKMP-SA spi=925b8c8bb4e92e20:3b982c5815994205:000012bf.
|
1628
|
2012-12-27 14:23:32: INFO: deleting a generated policy.
|
1629
|
2012-12-27 14:23:32: DEBUG: get a src address from ID payload 10.184.216.1[0] prefixlen=32 ul_proto=255
|
1630
|
2012-12-27 14:23:32: DEBUG: get dst address from ID payload 172.21.2.0[0] prefixlen=24 ul_proto=255
|
1631
|
2012-12-27 14:23:32: DEBUG: sub:0xbfbfe1e4: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
1632
|
2012-12-27 14:23:32: DEBUG: db :0x2854b148: 172.21.2.0/24[0] 172.21.2.254/32[0] proto=any dir=in
|
1633
|
2012-12-27 14:23:32: DEBUG: sub:0xbfbfe1e4: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
1634
|
2012-12-27 14:23:32: DEBUG: db :0x2854b508: 172.21.2.254/32[0] 172.21.2.0/24[0] proto=any dir=out
|
1635
|
2012-12-27 14:23:32: DEBUG: sub:0xbfbfe1e4: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
1636
|
2012-12-27 14:23:32: DEBUG: db :0x2854b288: 10.184.216.1/32[0] 172.21.2.0/24[0] proto=any dir=in
|
1637
|
2012-12-27 14:23:32: DEBUG: IV freed
|
1638
|
2012-12-27 14:23:32: INFO: ISAKMP-SA deleted XXX.XXX.XXX.XXX[500]-181.12.242.251[500] spi:925b8c8bb4e92e20:3b982c5815994205
|
1639
|
2012-12-27 14:23:32: INFO: Released port 0
|
1640
|
2012-12-27 14:23:32: DEBUG: IV freed
|
1641
|
2012-12-27 14:23:32: DEBUG: purged SAs.
|
1642
|
2012-12-27 14:23:42: INFO: caught signal 2
|
1643
|
2012-12-27 14:23:42: INFO: racoon process 1566 shutdown
|