Project

General

Profile

Bug #4704

IKEv2 to Cisco ASA won't bring up multiple P2 networks

Added by Roman H over 4 years ago. Updated almost 4 years ago.

Status:
Resolved
Priority:
High
Category:
IPsec
Target version:
Start date:
05/14/2015
Due date:
% Done:

0%

Estimated time:
Affected Version:
2.2.x
Affected Architecture:

Description

Setup is following:

pFsense firewall - have subnet 192.168.23.0/24 subnet, where host itself have 192.168.23.55

Have 1 ikev2 p1. tunnel itself works absolutely fine - as seen in logs.
Have 3 p2 over ikev2 tunnel - 10.8.67.0/24, 10.14.67.0/24, 10.9.73.0/24. All of them part of con4 in ipsec.conf and appear at GUI

conn con4
fragmentation = yes
keyexchange = ikev2
reauth = yes
forceencaps = no
mobike = no
rekey = yes
installpolicy = yes
type = tunnel
dpdaction = none
auto = route
left = 62.x.x.x
right = 38.y.y.y
leftid = 62.x.x.x
ikelifetime = 86400s
lifetime = 28800s
ike = aes192-sha1-modp1536!
esp = aes192-sha1,aes192-sha1,aes192-sha1!
leftauth = psk
rightauth = psk
rightid = 38.y.y.y
rightsubnet = 10.8.67.0/24,10.14.67.0/24,10.9.73.0/24
leftsubnet = 192.168.23.0/24

So - in this configuration - when I initiate a tunnel from my side - it brings up ONLY last subnet in row with "rightsubnet" - 10.9.73.0/24

If I edit this file, or move subnet within gui - it will bring up different last subnet to live.
If I trying to manually bring all networks via command line - ipsec up con4 - it still brings only LAST one to live.

If I ping any address (10.8.67.2 or 10.14.67.2 ) within subnets, that are not up - pFsense won't bring them up.
If I ping pFsense (192.168.23.55) from 10.8.67.0/24 or from 10.14.67.0/24 hosts - it will bring up those subnets UP.

Other side - cisco asa 5515 (i'm unclear with its firmware version, but I able to retrieve it in case of need).

Bug reproducible both on 2.2.2 and 2.2.3 dev from 10 May.

0001.PNG (38.4 KB) 0001.PNG Roman H, 05/14/2015 04:01 AM
0002.PNG (21.9 KB) 0002.PNG Roman H, 05/14/2015 04:01 AM

Associated revisions

Revision 9d51fcde (diff)
Added by Chris Buechler almost 4 years ago

Add support for splitting ipsec.conf conn entries for IKEv2. Ticket #4704

History

#1 Updated by Ermal Luçi over 4 years ago

Can you also put the logs of the exchange from pfSense.

Can you also please test by disabling the unity plugin and see what happens in this case?

#2 Updated by Roman H over 4 years ago

Ermal Luçi wrote:

Can you also put the logs of the exchange from pfSense.

Can you also please test by disabling the unity plugin and see what happens in this case?

Sure.
Here logs with Unity enabled.

May 14 13:38:59 charon: 02[IKE] <con4|5> IKE_SA deleted
May 14 13:38:59 charon: 02[IKE] <con4|5> IKE_SA deleted
May 14 13:38:59 charon: 02[ENC] <con4|5> parsed INFORMATIONAL response 2 [ D ]
May 14 13:38:59 charon: 02[NET] <con4|5> received packet: from 38.y.y.y500 to 62.x.x.x500 (76 bytes)
May 14 13:38:59 charon: 02[NET] <con4|5> sending packet: from 62.x.x.x500 to 38.y.y.y500 (76 bytes)
May 14 13:38:59 charon: 02[ENC] <con4|5> generating INFORMATIONAL request 2 [ D ]
May 14 13:38:59 charon: 02[IKE] <con4|5> sending DELETE for IKE_SA con45
May 14 13:38:59 charon: 02[IKE] <con4|5> sending DELETE for IKE_SA con45
May 14 13:38:59 charon: 02[IKE] <con4|5> deleting IKE_SA con45 between 62.x.x.x[62.x.x.x]...38.y.y.y[38.y.y.y]
May 14 13:38:59 charon: 02[IKE] <con4|5> deleting IKE_SA con45 between 62.x.x.x[62.x.x.x]...38.y.y.y[38.y.y.y]
May 14 13:38:59 charon: 15[CFG] received stroke: terminate 'con4'
May 14 13:38:49 charon: 15[IKE] <con4|5> CHILD_SA con4{102} established with SPIs c4000ba8_i 1f3be51b_o and TS 192.168.23.0/24|/0 === 10.9.73.0/24|/0
May 14 13:38:49 charon: 15[IKE] <con4|5> CHILD_SA con4{102} established with SPIs c4000ba8_i 1f3be51b_o and TS 192.168.23.0/24|/0 === 10.9.73.0/24|/0
May 14 13:38:49 charon: 15[IKE] <con4|5> received ESP_TFC_PADDING_NOT_SUPPORTED, not using ESPv3 TFC padding
May 14 13:38:49 charon: 15[IKE] <con4|5> received ESP_TFC_PADDING_NOT_SUPPORTED, not using ESPv3 TFC padding
May 14 13:38:49 charon: 15[IKE] <con4|5> maximum IKE_SA lifetime 86111s
May 14 13:38:49 charon: 15[IKE] <con4|5> maximum IKE_SA lifetime 86111s
May 14 13:38:49 charon: 15[IKE] <con4|5> scheduling reauthentication in 85571s
May 14 13:38:49 charon: 15[IKE] <con4|5> scheduling reauthentication in 85571s
May 14 13:38:49 charon: 15[IKE] <con4|5> IKE_SA con45 established between 62.x.x.x[62.x.x.x]...38.y.y.y[38.y.y.y]
May 14 13:38:49 charon: 15[IKE] <con4|5> IKE_SA con45 established between 62.x.x.x[62.x.x.x]...38.y.y.y[38.y.y.y]
May 14 13:38:49 charon: 15[IKE] <con4|5> authentication of '38.y.y.y' with pre-shared key successful
May 14 13:38:49 charon: 15[IKE] <con4|5> authentication of '38.y.y.y' with pre-shared key successful
May 14 13:38:49 charon: 15[ENC] <con4|5> parsed IKE_AUTH response 1 [ V IDr AUTH SA TSi TSr N(ESP_TFC_PAD_N) N(NON_FIRST_FRAG) ]
May 14 13:38:49 charon: 15[NET] <con4|5> received packet: from 38.y.y.y500 to 62.x.x.x500 (236 bytes)
May 14 13:38:48 charon: 15[NET] <con4|5> sending packet: from 62.x.x.x500 to 38.y.y.y500 (332 bytes)
May 14 13:38:48 charon: 15[ENC] <con4|5> generating IKE_AUTH request 1 [ IDi N(INIT_CONTACT) CERTREQ IDr AUTH N(ESP_TFC_PAD_N) SA TSi TSr N(EAP_ONLY) ]
May 14 13:38:48 charon: 15[IKE] <con4|5> establishing CHILD_SA con4
May 14 13:38:48 charon: 15[IKE] <con4|5> establishing CHILD_SA con4
May 14 13:38:48 charon: 15[IKE] <con4|5> authentication of '62.x.x.x' (myself) with pre-shared key
May 14 13:38:48 charon: 15[IKE] <con4|5> authentication of '62.x.x.x' (myself) with pre-shared key
May 14 13:38:48 charon: 15[IKE] <con4|5> sending cert request for "C=IL, ST=haMerkaz, L=Tel Aviv, O=qSpark, E=, CN=pFsenseCA"
May 14 13:38:48 charon: 15[IKE] <con4|5> sending cert request for "C=IL, ST=haMerkaz, L=Tel Aviv, O=qSpark, E=, CN=pFsenseCA"
May 14 13:38:48 charon: 15[IKE] <con4|5> sending cert request for "C=IL, ST=HaMerkaz, L=Tel Aviv, O=qSpark LLC, E=, CN=ExtTraderCA"
May 14 13:38:48 charon: 15[IKE] <con4|5> sending cert request for "C=IL, ST=HaMerkaz, L=Tel Aviv, O=qSpark LLC, E=, CN=ExtTraderCA"
May 14 13:38:48 charon: 15[IKE] <con4|5> sending cert request for "C=IL, ST=HaMerkaz, L=Tel Aviv, O=qSpark LLC, E=, CN=ExternalTradersCA"
May 14 13:38:48 charon: 15[IKE] <con4|5> sending cert request for "C=IL, ST=HaMerkaz, L=Tel Aviv, O=qSpark LLC, E=, CN=ExternalTradersCA"
May 14 13:38:48 charon: 15[IKE] <con4|5> received FRAGMENTATION vendor ID
May 14 13:38:48 charon: 15[IKE] <con4|5> received FRAGMENTATION vendor ID
May 14 13:38:48 charon: 15[IKE] <con4|5> received Cisco Copyright (c) 2009 vendor ID
May 14 13:38:48 charon: 15[IKE] <con4|5> received Cisco Copyright (c) 2009 vendor ID
May 14 13:38:48 charon: 15[IKE] <con4|5> received Cisco Delete Reason vendor ID
May 14 13:38:48 charon: 15[IKE] <con4|5> received Cisco Delete Reason vendor ID
May 14 13:38:48 charon: 15[ENC] <con4|5> parsed IKE_SA_INIT response 0 [ SA KE No V V N(NATD_S_IP) N(NATD_D_IP) V ]
May 14 13:38:48 charon: 15[NET] <con4|5> received packet: from 38.y.y.y500 to 62.x.x.x500 (502 bytes)
May 14 13:38:48 charon: 15[NET] <con4|5> sending packet: from 62.x.x.x500 to 38.y.y.y500 (392 bytes)
May 14 13:38:48 charon: 15[ENC] <con4|5> generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) N(HASH_ALG) ]
May 14 13:38:48 charon: 15[IKE] <con4|5> initiating IKE_SA con45 to 38.y.y.y
May 14 13:38:48 charon: 15[IKE] <con4|5> initiating IKE_SA con45 to 38.y.y.y
May 14 13:38:48 charon: 02[CFG] received stroke: initiate 'con4'
May 14 13:38:48 charon: 15[CFG] no IKE_SA named 'con4' found

And with unity disabled and IPsec restarted:

May 14 13:43:10 charon: 15[CFG] SMP XML connection closed
May 14 13:43:10 charon: 15[CFG] SMP XML connection closed
May 14 13:43:10 charon: 15[KNL] <con4|7> querying SAD entry with SPI fd37761e
May 14 13:43:10 charon: 15[KNL] <con4|7> querying SAD entry with SPI fd37761e
May 14 13:43:10 charon: 15[KNL] <con4|7> querying SAD entry with SPI ca235438
May 14 13:43:10 charon: 15[KNL] <con4|7> querying SAD entry with SPI ca235438
May 14 13:43:04 charon: 15[CFG] SMP XML connection closed
May 14 13:43:04 charon: 15[CFG] SMP XML connection closed
May 14 13:43:04 charon: 15[KNL] <con4|7> received PF_KEY message with unexpected sequence number, was 0 expected 535
May 14 13:43:04 charon: 15[KNL] <con4|7> received PF_KEY message with unexpected sequence number, was 0 expected 535
May 14 13:43:04 charon: 15[KNL] <con4|7> querying policy 192.168.23.0/24|/0 === 10.9.73.0/24|/0 out
May 14 13:43:04 charon: 15[KNL] <con4|7> querying policy 192.168.23.0/24|/0 === 10.9.73.0/24|/0 out
May 14 13:43:04 charon: 15[KNL] <con4|7> querying SAD entry with SPI fd37761e
May 14 13:43:04 charon: 15[KNL] <con4|7> querying SAD entry with SPI fd37761e
May 14 13:43:04 charon: 15[KNL] <con4|7> querying SAD entry with SPI ca235438
May 14 13:43:04 charon: 15[KNL] <con4|7> querying SAD entry with SPI ca235438
May 14 13:42:52 charon: 01[JOB] next event in 91s 436ms, waiting
May 14 13:42:52 charon: 01[JOB] next event in 91s 436ms, waiting
May 14 13:42:52 charon: 01[JOB] got event, queuing job for execution
May 14 13:42:52 charon: 01[JOB] got event, queuing job for execution
May 14 13:42:52 charon: 01[JOB] next event in 62ms, waiting
May 14 13:42:52 charon: 01[JOB] next event in 62ms, waiting
May 14 13:42:52 charon: 01[JOB] got event, queuing job for execution
May 14 13:42:52 charon: 01[JOB] got event, queuing job for execution
May 14 13:42:48 charon: 02[CFG] SMP XML connection closed
May 14 13:42:48 charon: 02[CFG] SMP XML connection closed
May 14 13:42:48 charon: 02[KNL] <con4|7> querying SAD entry with SPI fd37761e
May 14 13:42:48 charon: 02[KNL] <con4|7> querying SAD entry with SPI fd37761e
May 14 13:42:48 charon: 02[KNL] <con4|7> querying SAD entry with SPI ca235438
May 14 13:42:48 charon: 02[KNL] <con4|7> querying SAD entry with SPI ca235438
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watched FD 12 ready to read
May 14 13:42:48 charon: 05[JOB] watched FD 12 ready to read
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watched FD 12 ready to read
May 14 13:42:48 charon: 05[JOB] watched FD 12 ready to read
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watched FD 12 ready to read
May 14 13:42:48 charon: 05[JOB] watched FD 12 ready to read
May 14 13:42:48 charon: 10[IKE] <con4|7> CHILD_SA con4{39} established with SPIs ca235438_i fd37761e_o and TS 192.168.23.0/24|/0 === 10.9.73.0/24|/0
May 14 13:42:48 charon: 10[IKE] <con4|7> CHILD_SA con4{39} established with SPIs ca235438_i fd37761e_o and TS 192.168.23.0/24|/0 === 10.9.73.0/24|/0
May 14 13:42:48 charon: 10[KNL] <con4|7> updating policy 10.9.73.0/24|/0 === 192.168.23.0/24|/0 in
May 14 13:42:48 charon: 10[KNL] <con4|7> updating policy 10.9.73.0/24|/0 === 192.168.23.0/24|/0 in
May 14 13:42:48 charon: 10[KNL] <con4|7> policy 10.9.73.0/24|/0 === 192.168.23.0/24|/0 in already exists, increasing refcount
May 14 13:42:48 charon: 10[KNL] <con4|7> policy 10.9.73.0/24|/0 === 192.168.23.0/24|/0 in already exists, increasing refcount
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watched FD 12 ready to read
May 14 13:42:48 charon: 05[JOB] watched FD 12 ready to read
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 10[KNL] <con4|7> updating policy 192.168.23.0/24|/0 === 10.9.73.0/24|/0 out
May 14 13:42:48 charon: 10[KNL] <con4|7> updating policy 192.168.23.0/24|/0 === 10.9.73.0/24|/0 out
May 14 13:42:48 charon: 10[KNL] <con4|7> policy 192.168.23.0/24|/0 === 10.9.73.0/24|/0 out already exists, increasing refcount
May 14 13:42:48 charon: 10[KNL] <con4|7> policy 192.168.23.0/24|/0 === 10.9.73.0/24|/0 out already exists, increasing refcount
May 14 13:42:48 charon: 10[KNL] <con4|7> policy 10.9.73.0/24|/0 === 192.168.23.0/24|/0 in already exists, increasing refcount
May 14 13:42:48 charon: 10[KNL] <con4|7> policy 10.9.73.0/24|/0 === 192.168.23.0/24|/0 in already exists, increasing refcount
May 14 13:42:48 charon: 10[KNL] <con4|7> policy 192.168.23.0/24|/0 === 10.9.73.0/24|/0 out already exists, increasing refcount
May 14 13:42:48 charon: 10[KNL] <con4|7> policy 192.168.23.0/24|/0 === 10.9.73.0/24|/0 out already exists, increasing refcount
May 14 13:42:48 charon: 10[KNL] <con4|7> using integrity algorithm HMAC_SHA1_96 with key size 160
May 14 13:42:48 charon: 10[KNL] <con4|7> using integrity algorithm HMAC_SHA1_96 with key size 160
May 14 13:42:48 charon: 10[KNL] <con4|7> using encryption algorithm AES_CBC with key size 192
May 14 13:42:48 charon: 10[KNL] <con4|7> using encryption algorithm AES_CBC with key size 192
May 14 13:42:48 charon: 10[KNL] <con4|7> adding SAD entry with SPI fd37761e and reqid {19}
May 14 13:42:48 charon: 10[KNL] <con4|7> adding SAD entry with SPI fd37761e and reqid {19}
May 14 13:42:48 charon: 10[CHD] <con4|7> SPI 0xfd37761e, src 62.x.x.x dst 38.y.y.y
May 14 13:42:48 charon: 10[CHD] <con4|7> SPI 0xfd37761e, src 62.x.x.x dst 38.y.y.y
May 14 13:42:48 charon: 10[CHD] <con4|7> adding outbound ESP SA
May 14 13:42:48 charon: 10[CHD] <con4|7> adding outbound ESP SA
May 14 13:42:48 charon: 10[KNL] <con4|7> using integrity algorithm HMAC_SHA1_96 with key size 160
May 14 13:42:48 charon: 10[KNL] <con4|7> using integrity algorithm HMAC_SHA1_96 with key size 160
May 14 13:42:48 charon: 10[KNL] <con4|7> using encryption algorithm AES_CBC with key size 192
May 14 13:42:48 charon: 10[KNL] <con4|7> using encryption algorithm AES_CBC with key size 192
May 14 13:42:48 charon: 10[KNL] <con4|7> adding SAD entry with SPI ca235438 and reqid {19}
May 14 13:42:48 charon: 10[KNL] <con4|7> adding SAD entry with SPI ca235438 and reqid {19}
May 14 13:42:48 charon: 10[KNL] <con4|7> deleted SAD entry with SPI ca235438
May 14 13:42:48 charon: 10[KNL] <con4|7> deleted SAD entry with SPI ca235438
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 01[JOB] next event in 3s 698ms, waiting
May 14 13:42:48 charon: 01[JOB] next event in 3s 698ms, waiting
May 14 13:42:48 charon: 05[JOB] watched FD 12 ready to read
May 14 13:42:48 charon: 05[JOB] watched FD 12 ready to read
May 14 13:42:48 charon: 10[KNL] <con4|7> deleting SAD entry with SPI ca235438
May 14 13:42:48 charon: 10[KNL] <con4|7> deleting SAD entry with SPI ca235438
May 14 13:42:48 charon: 10[CHD] <con4|7> SPI 0xca235438, src 38.y.y.y dst 62.x.x.x
May 14 13:42:48 charon: 10[CHD] <con4|7> SPI 0xca235438, src 38.y.y.y dst 62.x.x.x
May 14 13:42:48 charon: 10[CHD] <con4|7> adding inbound ESP SA
May 14 13:42:48 charon: 10[CHD] <con4|7> adding inbound ESP SA
May 14 13:42:48 charon: 10[CHD] <con4|7> using HMAC_SHA1_96 for integrity
May 14 13:42:48 charon: 10[CHD] <con4|7> using HMAC_SHA1_96 for integrity
May 14 13:42:48 charon: 10[CHD] <con4|7> using AES_CBC for encryption
May 14 13:42:48 charon: 10[CHD] <con4|7> using AES_CBC for encryption
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 10.9.73.0/24|/0, received: 10.9.73.0/24|/0 => match: 10.9.73.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 10.9.73.0/24|/0, received: 10.9.73.0/24|/0 => match: 10.9.73.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 10.14.67.0/24|/0, received: 10.9.73.0/24|/0 => no match
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 10.14.67.0/24|/0, received: 10.9.73.0/24|/0 => no match
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 10.8.67.0/24|/0, received: 10.9.73.0/24|/0 => no match
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 10.8.67.0/24|/0, received: 10.9.73.0/24|/0 => no match
May 14 13:42:48 charon: 10[CFG] <con4|7> selecting traffic selectors for other:
May 14 13:42:48 charon: 10[CFG] <con4|7> selecting traffic selectors for other:
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 192.168.23.0/24|/0, received: 192.168.23.0/24|/0 => match: 192.168.23.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 192.168.23.0/24|/0, received: 192.168.23.0/24|/0 => match: 192.168.23.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> selecting traffic selectors for us:
May 14 13:42:48 charon: 10[CFG] <con4|7> selecting traffic selectors for us:
May 14 13:42:48 charon: 10[CFG] <con4|7> selected proposal: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 14 13:42:48 charon: 10[CFG] <con4|7> selected proposal: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 14 13:42:48 charon: 10[CFG] <con4|7> configured proposals: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ, ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ, ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 14 13:42:48 charon: 10[CFG] <con4|7> configured proposals: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ, ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ, ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 14 13:42:48 charon: 10[CFG] <con4|7> received proposals: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 14 13:42:48 charon: 10[CFG] <con4|7> received proposals: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 14 13:42:48 charon: 10[CFG] <con4|7> proposal matches
May 14 13:42:48 charon: 10[CFG] <con4|7> proposal matches
May 14 13:42:48 charon: 10[CFG] <con4|7> selecting proposal:
May 14 13:42:48 charon: 10[CFG] <con4|7> selecting proposal:
May 14 13:42:48 charon: 10[IKE] <con4|7> received ESP_TFC_PADDING_NOT_SUPPORTED, not using ESPv3 TFC padding
May 14 13:42:48 charon: 10[IKE] <con4|7> received ESP_TFC_PADDING_NOT_SUPPORTED, not using ESPv3 TFC padding
May 14 13:42:48 charon: 10[IKE] <con4|7> maximum IKE_SA lifetime 86376s
May 14 13:42:48 charon: 10[IKE] <con4|7> maximum IKE_SA lifetime 86376s
May 14 13:42:48 charon: 10[IKE] <con4|7> scheduling reauthentication in 85836s
May 14 13:42:48 charon: 10[IKE] <con4|7> scheduling reauthentication in 85836s
May 14 13:42:48 charon: 10[IKE] <con4|7> IKE_SA con47 established between 62.x.x.x[62.x.x.x]...38.y.y.y[38.y.y.y]
May 14 13:42:48 charon: 10[IKE] <con4|7> IKE_SA con47 established between 62.x.x.x[62.x.x.x]...38.y.y.y[38.y.y.y]
May 14 13:42:48 charon: 10[IKE] <con4|7> authentication of '38.y.y.y' with pre-shared key successful
May 14 13:42:48 charon: 10[IKE] <con4|7> authentication of '38.y.y.y' with pre-shared key successful
May 14 13:42:48 charon: 01[JOB] next event in 3s 842ms, waiting
May 14 13:42:48 charon: 01[JOB] next event in 3s 842ms, waiting
May 14 13:42:48 charon: 10[KNL] <con4|7> got SPI ca235438
May 14 13:42:48 charon: 10[KNL] <con4|7> got SPI ca235438
May 14 13:42:48 charon: 10[CFG] <con4|7> configured proposals: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 14 13:42:48 charon: 10[CFG] <con4|7> configured proposals: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 14 13:42:48 charon: 10[CFG] <con4|7> 10.9.73.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> 10.9.73.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> 10.14.67.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> 10.14.67.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> 10.8.67.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> 10.8.67.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> proposing traffic selectors for other:
May 14 13:42:48 charon: 10[CFG] <con4|7> proposing traffic selectors for other:
May 14 13:42:48 charon: 10[CFG] <con4|7> 192.168.23.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> 192.168.23.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> proposing traffic selectors for us:
May 14 13:42:48 charon: 10[CFG] <con4|7> proposing traffic selectors for us:
May 14 13:42:48 charon: 10[IKE] <con4|7> establishing CHILD_SA con4
May 14 13:42:48 charon: 10[IKE] <con4|7> establishing CHILD_SA con4
May 14 13:42:48 charon: 10[IKE] <con4|7> authentication of '62.x.x.x' (myself) with pre-shared key
May 14 13:42:48 charon: 10[IKE] <con4|7> authentication of '62.x.x.x' (myself) with pre-shared key
May 14 13:42:48 charon: 10[IKE] <con4|7> sending cert request for "CERTIFICATE"
May 14 13:42:48 charon: 10[IKE] <con4|7> sending cert request for "CERTIFICATE"
May 14 13:42:48 charon: 10[IKE] <con4|7> sending cert request for "CERTIFICATE"
May 14 13:42:48 charon: 10[IKE] <con4|7> sending cert request for "CERTIFICATE"
May 14 13:42:48 charon: 10[IKE] <con4|7> sending cert request for "CERTIFICATE"
May 14 13:42:48 charon: 10[IKE] <con4|7> sending cert request for "CERTIFICATE"
May 14 13:42:48 charon: 10[CFG] <con4|7> selected proposal: IKE:AES_CBC_192/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1536
May 14 13:42:48 charon: 10[CFG] <con4|7> selected proposal: IKE:AES_CBC_192/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1536
May 14 13:42:48 charon: 10[CFG] <con4|7> configured proposals: IKE:AES_CBC_192/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1536
May 14 13:42:48 charon: 10[CFG] <con4|7> configured proposals: IKE:AES_CBC_192/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1536
May 14 13:42:48 charon: 10[CFG] <con4|7> received proposals: IKE:AES_CBC_192/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1536
May 14 13:42:48 charon: 10[CFG] <con4|7> received proposals: IKE:AES_CBC_192/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1536
May 14 13:42:48 charon: 10[CFG] <con4|7> proposal matches
May 14 13:42:48 charon: 10[CFG] <con4|7> proposal matches
May 14 13:42:48 charon: 10[CFG] <con4|7> selecting proposal:
May 14 13:42:48 charon: 10[CFG] <con4|7> selecting proposal:
May 14 13:42:48 charon: 10[IKE] <con4|7> received FRAGMENTATION vendor ID
May 14 13:42:48 charon: 10[IKE] <con4|7> received FRAGMENTATION vendor ID
May 14 13:42:48 charon: 10[IKE] <con4|7> received Cisco Copyright (c) 2009 vendor ID
May 14 13:42:48 charon: 10[IKE] <con4|7> received Cisco Copyright (c) 2009 vendor ID
May 14 13:42:48 charon: 10[IKE] <con4|7> received Cisco Delete Reason vendor ID
May 14 13:42:48 charon: 10[IKE] <con4|7> received Cisco Delete Reason vendor ID
May 14 13:42:48 charon: 01[JOB] next event in 3s 999ms, waiting
May 14 13:42:48 charon: 01[JOB] next event in 3s 999ms, waiting
May 14 13:42:48 charon: 10[CFG] <con4|7> configured proposals: IKE:AES_CBC_192/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1536
May 14 13:42:48 charon: 10[CFG] <con4|7> configured proposals: IKE:AES_CBC_192/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1536
May 14 13:42:48 charon: 10[LIB] <con4|7> size of DH secret exponent: 1535 bits
May 14 13:42:48 charon: 10[LIB] <con4|7> size of DH secret exponent: 1535 bits
May 14 13:42:48 charon: 10[IKE] <con4|7> initiating IKE_SA con47 to 38.y.y.y
May 14 13:42:48 charon: 10[IKE] <con4|7> initiating IKE_SA con47 to 38.y.y.y
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 02[CFG] received stroke: initiate 'con4'
May 14 13:42:48 charon: 02[CFG] received stroke: initiate 'con4'
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watched FD 22 ready to read
May 14 13:42:48 charon: 05[JOB] watched FD 22 ready to read
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 02[CFG] no IKE_SA named 'con4' found
May 14 13:42:48 charon: 02[CFG] no IKE_SA named 'con4' found
May 14 13:42:48 charon: 02[CFG] received stroke: terminate 'con4'
May 14 13:42:48 charon: 02[CFG] received stroke: terminate 'con4'
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 5 fds
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher got notification, rebuilding
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watcher going to poll() 4 fds
May 14 13:42:48 charon: 05[JOB] watched FD 22 ready to read

#3 Updated by Roman H over 4 years ago

Dont be confused by :

May 14 13:42:48 charon: 10[CFG] <con4|7> config: 10.9.73.0/24|/0, received: 10.9.73.0/24|/0 => match: 10.9.73.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 10.9.73.0/24|/0, received: 10.9.73.0/24|/0 => match: 10.9.73.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 10.14.67.0/24|/0, received: 10.9.73.0/24|/0 => no match
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 10.14.67.0/24|/0, received: 10.9.73.0/24|/0 => no match
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 10.8.67.0/24|/0, received: 10.9.73.0/24|/0 => no match
May 14 13:42:48 charon: 10[CFG] <con4|7> config: 10.8.67.0/24|/0, received: 10.9.73.0/24|/0 => no match

If i will move 10.14.67.0 to be last one in configuration - then there will be matching to that sunbet and only it will be up.

#4 Updated by Ermal Luçi over 4 years ago

Can you increase the debug level and send me the log.
I want to see what the ASA side is sending as matching traffic proposals, to be matched during exchange.

May 14 13:42:48 charon: 10[CFG] <con4|7> configured proposals: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 14 13:42:48 charon: 10[CFG] <con4|7> configured proposals: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 14 13:42:48 charon: 10[CFG] <con4|7> 10.9.73.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> 10.9.73.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> 10.14.67.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> 10.14.67.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> 10.8.67.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> 10.8.67.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> proposing traffic selectors for other:
May 14 13:42:48 charon: 10[CFG] <con4|7> proposing traffic selectors for other:
May 14 13:42:48 charon: 10[CFG] <con4|7> 192.168.23.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> 192.168.23.0/24|/0
May 14 13:42:48 charon: 10[CFG] <con4|7> proposing traffic selectors for us:
May 14 13:42:48 charon: 10[CFG] <con4|7> proposing traffic selectors for us:

#5 Updated by Ermal Luçi over 4 years ago

  • Priority changed from High to Normal

#6 Updated by Roman H over 4 years ago

Hmmm. Can't post somewhy.

This is test only

#7 Updated by Roman H over 4 years ago

Here it comes, with "Highest" settings, without Unity.
May 17 02:57:01 charon: 01[JOB] next event in 2s 621ms, waiting
May 17 02:57:01 charon: 01[JOB] next event in 2s 621ms, waiting
May 17 02:57:01 charon: 01[JOB] got event, queuing job for execution
May 17 02:57:01 charon: 01[JOB] got event, queuing job for execution
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 5 fds
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 5 fds
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 12 for reading
May 17 02:57:00 charon: 05[JOB] watching 12 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watcher got notification, rebuilding
May 17 02:57:00 charon: 05[JOB] watcher got notification, rebuilding
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 4 fds
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 4 fds
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watched FD 12 ready to read
May 17 02:57:00 charon: 05[JOB] watched FD 12 ready to read
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 5 fds
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 5 fds
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 12 for reading
May 17 02:57:00 charon: 05[JOB] watching 12 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watcher got notification, rebuilding
May 17 02:57:00 charon: 05[JOB] watcher got notification, rebuilding
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 4 fds
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 4 fds
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watched FD 12 ready to read
May 17 02:57:00 charon: 05[JOB] watched FD 12 ready to read
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 5 fds
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 5 fds
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 12 for reading
May 17 02:57:00 charon: 05[JOB] watching 12 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watcher got notification, rebuilding
May 17 02:57:00 charon: 05[JOB] watcher got notification, rebuilding
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 4 fds
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 4 fds
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watched FD 12 ready to read
May 17 02:57:00 charon: 05[JOB] watched FD 12 ready to read
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 5 fds
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 5 fds
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 12 for reading
May 17 02:57:00 charon: 05[JOB] watching 12 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watcher got notification, rebuilding
May 17 02:57:00 charon: 05[JOB] watcher got notification, rebuilding
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 5 fds
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 5 fds
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 12 for reading
May 17 02:57:00 charon: 05[JOB] watching 12 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 11[CFG] SMP XML connection closed
May 17 02:57:00 charon: 11[CFG] SMP XML connection closed
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_NAT_T_DPORT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_NAT_T_DPORT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_NAT_T_SPORT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_NAT_T_SPORT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_NAT_T_TYPE
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_NAT_T_TYPE
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_KEY_ENCRYPT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_KEY_ENCRYPT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_KEY_AUTH
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_KEY_AUTH
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_ADDRESS_DST
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_ADDRESS_DST
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_ADDRESS_SRC
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_ADDRESS_SRC
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_LIFETIME_CURRENT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_LIFETIME_CURRENT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_LIFETIME_SOFT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_LIFETIME_SOFT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_LIFETIME_HARD
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_LIFETIME_HARD
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_SA2
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_SA2
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_SA
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_SA
May 17 02:57:00 charon: 11[KNL] <con4|18> querying SAD entry with SPI 79a6f3c9
May 17 02:57:00 charon: 11[KNL] <con4|18> querying SAD entry with SPI 79a6f3c9
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_NAT_T_DPORT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_NAT_T_DPORT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_NAT_T_SPORT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_NAT_T_SPORT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_NAT_T_TYPE
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_NAT_T_TYPE
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_KEY_ENCRYPT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_KEY_ENCRYPT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_KEY_AUTH
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_KEY_AUTH
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_ADDRESS_DST
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_ADDRESS_DST
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_ADDRESS_SRC
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_ADDRESS_SRC
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_LIFETIME_CURRENT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_LIFETIME_CURRENT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_LIFETIME_SOFT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_LIFETIME_SOFT
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_LIFETIME_HARD
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_LIFETIME_HARD
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_SA2
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_X_EXT_SA2
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_SA
May 17 02:57:00 charon: 11[KNL] <con4|18> SADB_EXT_SA
May 17 02:57:00 charon: 11[KNL] <con4|18> querying SAD entry with SPI c63f8b22
May 17 02:57:00 charon: 11[KNL] <con4|18> querying SAD entry with SPI c63f8b22
May 17 02:57:00 charon: 11[CFG] 128: 67 65 3E ge>
May 17 02:57:00 charon: 11[CFG] 112: 3E 3C 2F 71 75 65 72 79 3E 3C 2F 6D 65 73 73 61 ></query></messa
May 17 02:57:00 charon: 11[CFG] 96: 75 65 72 79 3E 3C 69 6B 65 73 61 6C 69 73 74 2F uery><ikesalist/
May 17 02:57:00 charon: 11[CFG] 80: 71 75 65 73 74 22 20 69 64 3D 22 31 22 3E 3C 71 quest" id="1"><q
May 17 02:57:00 charon: 11[CFG] 64: 6D 70 2F 31 2E 30 22 20 74 79 70 65 3D 22 72 65 mp/1.0" type="re
May 17 02:57:00 charon: 11[CFG] 48: 73 74 72 6F 6E 67 73 77 61 6E 2E 6F 72 67 2F 73 strongswan.org/s
May 17 02:57:00 charon: 11[CFG] 32: 6C 6E 73 3D 22 68 74 74 70 3A 2F 2F 77 77 77 2E lns="http://www.
May 17 02:57:00 charon: 11[CFG] 16: 2E 30 22 3F 3E 3C 6D 65 73 73 61 67 65 20 78 6D .0"?><message xm
May 17 02:57:00 charon: 11[CFG] 0: 3C 3F 78 6D 6C 20 76 65 72 73 69 6F 6E 3D 22 31 May 17 02:57:00 charon: 11[CFG] got XML request: => 131 bytes
0x7ffffe7f2e90
May 17 02:57:00 charon: 11[CFG] 128: 67 65 3E ge>
May 17 02:57:00 charon: 11[CFG] 112: 3E 3C 2F 71 75 65 72 79 3E 3C 2F 6D 65 73 73 61 ></query></messa
May 17 02:57:00 charon: 11[CFG] 96: 75 65 72 79 3E 3C 69 6B 65 73 61 6C 69 73 74 2F uery><ikesalist/
May 17 02:57:00 charon: 11[CFG] 80: 71 75 65 73 74 22 20 69 64 3D 22 31 22 3E 3C 71 quest" id="1"><q
May 17 02:57:00 charon: 11[CFG] 64: 6D 70 2F 31 2E 30 22 20 74 79 70 65 3D 22 72 65 mp/1.0" type="re
May 17 02:57:00 charon: 11[CFG] 48: 73 74 72 6F 6E 67 73 77 61 6E 2E 6F 72 67 2F 73 strongswan.org/s
May 17 02:57:00 charon: 11[CFG] 32: 6C 6E 73 3D 22 68 74 74 70 3A 2F 2F 77 77 77 2E lns="http://www.
May 17 02:57:00 charon: 11[CFG] 16: 2E 30 22 3F 3E 3C 6D 65 73 73 61 67 65 20 78 6D .0"?><message xm
May 17 02:57:00 charon: 11[CFG] 0: 3C 3F 78 6D 6C 20 76 65 72 73 69 6F 6E 3D 22 31 May 17 02:57:00 charon: 11[CFG] got XML request: => 131 bytes 0x7ffffe7f2e90
May 17 02:57:00 charon: 05[JOB] watcher got notification, rebuilding
May 17 02:57:00 charon: 05[JOB] watcher got notification, rebuilding
May 17 02:57:00 charon: 06[IKE] <con4|18> CHILD_SA con4{4} established with SPIs c63f8b22_i 79a6f3c9_o and TS 192.168.23.0/24|/0 === 10.14.67.0/24|/0
May 17 02:57:00 charon: 06[IKE] <con4|18> CHILD_SA con4{4} established with SPIs c63f8b22_i 79a6f3c9_o and TS 192.168.23.0/24|/0 === 10.14.67.0/24|/0
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_EXT_ADDRESS_DST
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_EXT_ADDRESS_DST
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_EXT_ADDRESS_SRC
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_EXT_ADDRESS_SRC
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_EXT_LIFETIME_HARD
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_EXT_LIFETIME_HARD
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_X_EXT_POLICY
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_X_EXT_POLICY
May 17 02:57:00 charon: 06[KNL] <con4|18> updating policy 10.14.67.0/24|/0 === 192.168.23.0/24|/0 in
May 17 02:57:00 charon: 06[KNL] <con4|18> updating policy 10.14.67.0/24|/0 === 192.168.23.0/24|/0 in
May 17 02:57:00 charon: 06[KNL] <con4|18> policy 10.14.67.0/24|/0 === 192.168.23.0/24|/0 in already exists, increasing refcount
May 17 02:57:00 charon: 06[KNL] <con4|18> policy 10.14.67.0/24|/0 === 192.168.23.0/24|/0 in already exists, increasing refcount
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_EXT_ADDRESS_DST
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_EXT_ADDRESS_DST
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_EXT_ADDRESS_SRC
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_EXT_ADDRESS_SRC
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_EXT_LIFETIME_HARD
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_EXT_LIFETIME_HARD
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_X_EXT_POLICY
May 17 02:57:00 charon: 06[KNL] <con4|18> SADB_X_EXT_POLICY
May 17 02:57:00 charon: 06[KNL] <con4|18> updating policy 192.168.23.0/24|/0 === 10.14.67.0/24|/0 out
May 17 02:57:00 charon: 06[KNL] <con4|18> updating policy 192.168.23.0/24|/0 === 10.14.67.0/24|/0 out
May 17 02:57:00 charon: 06[KNL] <con4|18> policy 192.168.23.0/24|/0 === 10.14.67.0/24|/0 out already exists, increasing refcount
May 17 02:57:00 charon: 06[KNL] <con4|18> policy 192.168.23.0/24|/0 === 10.14.67.0/24|/0 out already exists, increasing refcount
May 17 02:57:00 charon: 06[KNL] <con4|18> policy 10.14.67.0/24|/0 === 192.168.23.0/24|/0 in already exists, increasing refcount
May 17 02:57:00 charon: 06[KNL] <con4|18> policy 10.14.67.0/24|/0 === 192.168.23.0/24|/0 in already exists, increasing refcount
May 17 02:57:00 charon: 06[KNL] <con4|18> policy 192.168.23.0/24|/0 === 10.14.67.0/24|/0 out already exists, increasing refcount
May 17 02:57:00 charon: 06[KNL] <con4|18> policy 192.168.23.0/24|/0 === 10.14.67.0/24|/0 out already exists, increasing refcount
May 17 02:57:00 charon: 06[KNL] <con4|18> using integrity algorithm HMAC_SHA1_96 with key size 160
May 17 02:57:00 charon: 06[KNL] <con4|18> using integrity algorithm HMAC_SHA1_96 with key size 160
May 17 02:57:00 charon: 06[KNL] <con4|18> using encryption algorithm AES_CBC with key size 192
May 17 02:57:00 charon: 06[KNL] <con4|18> using encryption algorithm AES_CBC with key size 192
May 17 02:57:00 charon: 06[KNL] <con4|18> adding SAD entry with SPI 79a6f3c9 and reqid {1}
May 17 02:57:00 charon: 06[KNL] <con4|18> adding SAD entry with SPI 79a6f3c9 and reqid {1}
May 17 02:57:00 charon: 06[CHD] <con4|18> SPI 0x79a6f3c9, src 62.x.x.x dst 38.y.y.y
May 17 02:57:00 charon: 06[CHD] <con4|18> SPI 0x79a6f3c9, src 62.x.x.x dst 38.y.y.y
May 17 02:57:00 charon: 06[CHD] <con4|18> adding outbound ESP SA
May 17 02:57:00 charon: 06[CHD] <con4|18> adding outbound ESP SA
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 4 fds
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 4 fds
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watched FD 12 ready to read
May 17 02:57:00 charon: 05[JOB] watched FD 12 ready to read
May 17 02:57:00 charon: 06[KNL] <con4|18> using integrity algorithm HMAC_SHA1_96 with key size 160
May 17 02:57:00 charon: 06[KNL] <con4|18> using integrity algorithm HMAC_SHA1_96 with key size 160
May 17 02:57:00 charon: 06[KNL] <con4|18> using encryption algorithm AES_CBC with key size 192
May 17 02:57:00 charon: 06[KNL] <con4|18> using encryption algorithm AES_CBC with key size 192
May 17 02:57:00 charon: 06[KNL] <con4|18> adding SAD entry with SPI c63f8b22 and reqid {1}
May 17 02:57:00 charon: 06[KNL] <con4|18> adding SAD entry with SPI c63f8b22 and reqid {1}
May 17 02:57:00 charon: 06[KNL] <con4|18> deleted SAD entry with SPI c63f8b22
May 17 02:57:00 charon: 06[KNL] <con4|18> deleted SAD entry with SPI c63f8b22
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 5 fds
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 5 fds
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 12 for reading
May 17 02:57:00 charon: 05[JOB] watching 12 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watcher got notification, rebuilding
May 17 02:57:00 charon: 05[JOB] watcher got notification, rebuilding
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 4 fds
May 17 02:57:00 charon: 05[JOB] watcher going to poll() 4 fds
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 22 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 17 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watching 10 for reading
May 17 02:57:00 charon: 05[JOB] watched FD 12 ready to read
May 17 02:57:00 charon: 05[JOB] watched FD 12 ready to read
May 17 02:57:00 charon: 06[KNL] <con4|18> deleting SAD entry with SPI c63f8b22
May 17 02:57:00 charon: 06[KNL] <con4|18> deleting SAD entry with SPI c63f8b22
May 17 02:57:00 charon: 06[CHD] <con4|18> SPI 0xc63f8b22, src 38.y.y.y dst 62.x.x.x
May 17 02:57:00 charon: 06[CHD] <con4|18> SPI 0xc63f8b22, src 38.y.y.y dst 62.x.x.x
May 17 02:57:00 charon: 06[CHD] <con4|18> adding inbound ESP SA
May 17 02:57:00 charon: 06[CHD] <con4|18> adding inbound ESP SA
May 17 02:57:00 charon: 06[CHD] <con4|18> 0: CA DB DE 98 52 7E 37 7C A1 EF 0D 45 F2 9B F9 FE ....R~7|...E....
May 17 02:57:00 charon: 06[CHD] <con4|18> integrity responder key => 20 bytes
0x80cc2b280
May 17 02:57:00 charon: 06[CHD] <con4|18> 0: CA DB DE 98 52 7E 37 7C A1 EF 0D 45 F2 9B F9 FE ....R~7|...E....
May 17 02:57:00 charon: 06[CHD] <con4|18> integrity responder key => 20 bytes 0x80cc2b280
May 17 02:57:00 charon: 06[CHD] <con4|18> 0: 24 26 E8 A9 DB C9 A6 28 4E 95 C1 77 3D 1F 2A 38 $&.....(N..w=.*8
May 17 02:57:00 charon: 06[CHD] <con4|18> integrity initiator key => 20 bytes
0x80cc2b300
May 17 02:57:00 charon: 06[CHD] <con4|18> 0: 24 26 E8 A9 DB C9 A6 28 4E 95 C1 77 3D 1F 2A 38 $&.....(N..w=.*8
May 17 02:57:00 charon: 06[CHD] <con4|18> integrity initiator key => 20 bytes 0x80cc2b300
May 17 02:57:00 charon: 06[CHD] <con4|18> 0: C6 64 63 14 C2 A9 26 59 0A 82 69 F1 0E BF 31 FA .dc...&Y..i...1.
May 17 02:57:00 charon: 06[CHD] <con4|18> encryption responder key => 24 bytes
0x80cc2b260
May 17 02:57:00 charon: 06[CHD] <con4|18> 0: C6 64 63 14 C2 A9 26 59 0A 82 69 F1 0E BF 31 FA .dc...&Y..i...1.
May 17 02:57:00 charon: 06[CHD] <con4|18> encryption responder key => 24 bytes 0x80cc2b260
May 17 02:57:00 charon: 06[CHD] <con4|18> 0: A3 91 14 33 AD 44 6D 51 AD F4 7E D2 7E E0 F8 EA ...3.DmQ..~.~...
May 17 02:57:00 charon: 06[CHD] <con4|18> encryption initiator key => 24 bytes
0x80cc2b340
May 17 02:57:00 charon: 06[CHD] <con4|18> 0: A3 91 14 33 AD 44 6D 51 AD F4 7E D2 7E E0 F8 EA ...3.DmQ..~.~...
May 17 02:57:00 charon: 06[CHD] <con4|18> encryption initiator key => 24 bytes 0x80cc2b340
May 17 02:57:00 charon: 06[CHD] <con4|18> 0: 10 6D 7C 00 7E EB A5 F4 C6 9B 6A 65 8B 0B 66 6E .m|.~.....je..fn
May 17 02:57:00 charon: 06[CHD] <con4|18> seed => 96 bytes
0x7fffff1f8b30
May 17 02:57:00 charon: 06[CHD] <con4|18> 0: 10 6D 7C 00 7E EB A5 F4 C6 9B 6A 65 8B 0B 66 6E .m|.~.....je..fn
May 17 02:57:00 charon: 06[CHD] <con4|18> seed => 96 bytes 0x7fffff1f8b30
May 17 02:57:00 charon: 06[CHD] <con4|18> using HMAC_SHA1_96 for integrity
May 17 02:57:00 charon: 06[CHD] <con4|18> using HMAC_SHA1_96 for integrity
May 17 02:57:00 charon: 06[CHD] <con4|18> using AES_CBC for encryption
May 17 02:57:00 charon: 06[CHD] <con4|18> using AES_CBC for encryption
May 17 02:57:00 charon: 06[CFG] <con4|18> config: 10.14.67.0/24|/0, received: 10.14.67.0/24|/0 => match: 10.14.67.0/24|/0
May 17 02:57:00 charon: 06[CFG] <con4|18> config: 10.14.67.0/24|/0, received: 10.14.67.0/24|/0 => match: 10.14.67.0/24|/0
May 17 02:57:00 charon: 06[CFG] <con4|18> config: 10.8.67.0/24|/0, received: 10.14.67.0/24|/0 => no match
May 17 02:57:00 charon: 06[CFG] <con4|18> config: 10.8.67.0/24|/0, received: 10.14.67.0/24|/0 => no match
May 17 02:57:00 charon: 06[CFG] <con4|18> config: 10.9.73.0/24|/0, received: 10.14.67.0/24|/0 => no match
May 17 02:57:00 charon: 06[CFG] <con4|18> config: 10.9.73.0/24|/0, received: 10.14.67.0/24|/0 => no match
May 17 02:57:00 charon: 06[CFG] <con4|18> selecting traffic selectors for other:
May 17 02:57:00 charon: 06[CFG] <con4|18> selecting traffic selectors for other:
May 17 02:57:00 charon: 06[CFG] <con4|18> config: 192.168.23.0/24|/0, received: 192.168.23.0/24|/0 => match: 192.168.23.0/24|/0
May 17 02:57:00 charon: 06[CFG] <con4|18> config: 192.168.23.0/24|/0, received: 192.168.23.0/24|/0 => match: 192.168.23.0/24|/0
May 17 02:57:00 charon: 06[CFG] <con4|18> selecting traffic selectors for us:
May 17 02:57:00 charon: 06[CFG] <con4|18> selecting traffic selectors for us:
May 17 02:57:00 charon: 06[CFG] <con4|18> selected proposal: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 17 02:57:00 charon: 06[CFG] <con4|18> selected proposal: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 17 02:57:00 charon: 06[CFG] <con4|18> configured proposals: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ, ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ, ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 17 02:57:00 charon: 06[CFG] <con4|18> configured proposals: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ, ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ, ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 17 02:57:00 charon: 06[CFG] <con4|18> received proposals: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 17 02:57:00 charon: 06[CFG] <con4|18> received proposals: ESP:AES_CBC_192/HMAC_SHA1_96/NO_EXT_SEQ
May 17 02:57:00 charon: 01[JOB] next event in 1s 65ms, waiting
May 17 02:57:00 charon: 01[JOB] next event in 1s 65ms, waiting
May 17 02:57:00 charon: 06[CFG] <con4|18> proposal matches
May 17 02:57:00 charon: 06[CFG] <con4|18> proposal matches
May 17 02:57:00 charon: 06[CFG] <con4|18> selecting proposal:
May 17 02:57:00 charon: 06[CFG] <con4|18> selecting proposal:
May 17 02:57:00 charon: 06[IKE] <con4|18> received ESP_TFC_PADDING_NOT_SUPPORTED, not using ESPv3 TFC padding
May 17 02:57:00 charon: 06[IKE] <con4|18> received ESP_TFC_PADDING_NOT_SUPPORTED, not using ESPv3 TFC padding
May 17 02:57:00 charon: 06[IKE] <con4|18> maximum IKE_SA lifetime 86318s
May 17 02:57:00 charon: 06[IKE] <con4|18> maximum IKE_SA lifetime 86318s
May 17 02:57:00 charon: 06[IKE] <con4|18> scheduling reauthentication in 85778s
May 17 02:57:00 charon: 06[IKE] <con4|18> scheduling reauthentication in 85778s
May 17 02:57:00 charon: 06[IKE] <con4|18> IKE_SA con4[18] established between 62.x.x.x[62.x.x.x]...38.y.y.y[38.y.y.y]
May 17 02:57:00 charon: 06[IKE] <con4|18> IKE_SA con4[18] established between 62.x.x.x[62.x.x.x]...38.y.y.y[38.y.y.y]
May 17 02:57:00 charon: 06[IKE] <con4|18> authentication of '38.y.y.y' with pre-shared key successful
May 17 02:57:00 charon: 06[IKE] <con4|18> authentication of '38.y.y.y' with pre-shared key successful
May 17 02:57:00 charon: 06[ENC] <con4|18> parsed IKE_AUTH response 1 [ V IDr AUTH SA TSi TSr N(ESP_TFC_PAD_N) N(NON_FIRST_FRAG) ]
May 17 02:57:00 charon: 06[ENC] <con4|18> parsed IKE_AUTH response 1 [ V IDr AUTH SA TSi TSr N(ESP_TFC_PAD_N) N(NON_FIRST_FRAG) ]
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type VENDOR_ID
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type TS_RESPONDER
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type TS_INITIATOR
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type TS_INITIATOR
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type SECURITY_ASSOCIATION
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type SECURITY_ASSOCIATION
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type ID_RESPONDER
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type ID_RESPONDER
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type AUTH
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type AUTH
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type NOTIFY
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type NOTIFY
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type NOTIFY
May 17 02:57:00 charon: 06[ENC] <con4|18> found payload of type NOTIFY
May 17 02:57:00 charon: 06[ENC] <con4|18> verifying message structure
May 17 02:57:00 charon: 06[ENC] <con4|18> verifying message structure
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type NOTIFY at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type NOTIFY at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type NOTIFY at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type NOTIFY at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type TS_RESPONDER at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type TS_RESPONDER at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type TS_INITIATOR at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type TS_INITIATOR at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type SECURITY_ASSOCIATION at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type SECURITY_ASSOCIATION at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type AUTH at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type AUTH at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type ID_RESPONDER at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type ID_RESPONDER at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type VENDOR_ID at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> insert decrypted payload of type VENDOR_ID at end of list
May 17 02:57:00 charon: 06[ENC] <con4|18> parsed content of encrypted payload
May 17 02:57:00 charon: 06[ENC] <con4|18> parsed content of encrypted payload
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing NOTIFY payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing NOTIFY payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0 bytes
0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0 bytes 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 14 CHUNK_DATA
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 14 CHUNK_DATA
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0 bytes
0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0 bytes 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 13 SPI
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 13 SPI
May 17 02:57:00 charon: 06[ENC] <con4|18> => 16395
May 17 02:57:00 charon: 06[ENC] <con4|18> => 16395
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 12 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 12 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 11 SPI_SIZE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 11 SPI_SIZE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 00 00 00 08 01 00 40 0B ......
.
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 8 bytes 0x80d82d9f0
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 00 00 00 08 01 00 40 0B ......
.
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 8 bytes 0x80d82d9f0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing NOTIFY payload, 8 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing NOTIFY payload, 8 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing NOTIFY payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing NOTIFY payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0 bytes
0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0 bytes 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 14 CHUNK_DATA
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 14 CHUNK_DATA
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0 bytes
0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0 bytes 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 13 SPI
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 13 SPI
May 17 02:57:00 charon: 06[ENC] <con4|18> => 16394
May 17 02:57:00 charon: 06[ENC] <con4|18> => 16394
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 12 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 12 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 11 SPI_SIZE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 11 SPI_SIZE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> => 41
May 17 02:57:00 charon: 06[ENC] <con4|18> => 41
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 29 00 00 08 01 00 40 0A 00 00 00 08 01 00 40 0B ).....
........
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 16 bytes
0x80d82d9e8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 29 00 00 08 01 00 40 0A 00 00 00 08 01 00 40 0B ).............
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 16 bytes 0x80d82d9e8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing NOTIFY payload, 16 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing NOTIFY payload, 16 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TS_RESPONDER payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TS_RESPONDER payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRAFFIC_SELECTOR_SUBSTRUCTURE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRAFFIC_SELECTOR_SUBSTRUCTURE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 0A 0E 43 FF ..C.
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4 bytes
0x80cc6b0b8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 0A 0E 43 FF ..C.
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4 bytes 0x80cc6b0b8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 ADDRESS
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 ADDRESS
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 0A 0E 43 00 ..C.
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4 bytes
0x80cc6b0c0
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 0A 0E 43 00 ..C.
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4 bytes 0x80cc6b0c0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 ADDRESS
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 ADDRESS
May 17 02:57:00 charon: 06[ENC] <con4|18> => 65535
May 17 02:57:00 charon: 06[ENC] <con4|18> => 65535
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> => 16
May 17 02:57:00 charon: 06[ENC] <con4|18> => 16
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 7
May 17 02:57:00 charon: 06[ENC] <con4|18> => 7
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 TS_TYPE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 TS_TYPE
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 29 00 00 08 01 00 40 0A 00 00 00 08 01 00 40 0B ).....
........
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 07 00 00 10 00 00 FF FF 0A 0E 43 00 0A 0E 43 FF ..........C...C.
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 32 bytes
0x80d82d9d8
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 29 00 00 08 01 00 40 0A 00 00 00 08 01 00 40 0B ).............
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 07 00 00 10 00 00 FF FF 0A 0E 43 00 0A 0E 43 FF ..........C...C.
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 32 bytes 0x80d82d9d8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRAFFIC_SELECTOR_SUBSTRUCTURE payload, 32 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRAFFIC_SELECTOR_SUBSTRUCTURE payload, 32 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> 16 bytes left, parsing recursively TRAFFIC_SELECTOR_SUBSTRUCTURE
May 17 02:57:00 charon: 06[ENC] <con4|18> 16 bytes left, parsing recursively TRAFFIC_SELECTOR_SUBSTRUCTURE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 14 (1263)
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 14 (1263)
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 13 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 13 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 12 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 12 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 11 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 11 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 24
May 17 02:57:00 charon: 06[ENC] <con4|18> => 24
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> => 41
May 17 02:57:00 charon: 06[ENC] <con4|18> => 41
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 32: 00 00 00 08 01 00 40 0B ......
.
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 0A 0E 43 00 0A 0E 43 FF 29 00 00 08 01 00 40 0A ..C...C.)......
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 29 00 00 18 01 00 00 00 07 00 00 10 00 00 FF FF )...............
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 40 bytes
0x80d82d9d0
May 17 02:57:00 charon: 06[ENC] <con4|18> 32: 00 00 00 08 01 00 40 0B .......
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 0A 0E 43 00 0A 0E 43 FF 29 00 00 08 01 00 40 0A ..C...C.).....
.
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 29 00 00 18 01 00 00 00 07 00 00 10 00 00 FF FF )...............
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 40 bytes 0x80d82d9d0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TS_RESPONDER payload, 40 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TS_RESPONDER payload, 40 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TS_INITIATOR payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TS_INITIATOR payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRAFFIC_SELECTOR_SUBSTRUCTURE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRAFFIC_SELECTOR_SUBSTRUCTURE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: C0 A8 17 FF ....
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4 bytes
0x80cc6b078
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: C0 A8 17 FF ....
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4 bytes 0x80cc6b078
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 ADDRESS
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 ADDRESS
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: C0 A8 17 00 ....
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4 bytes
0x80cc6b0e0
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: C0 A8 17 00 ....
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4 bytes 0x80cc6b0e0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 ADDRESS
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 ADDRESS
May 17 02:57:00 charon: 06[ENC] <con4|18> => 65535
May 17 02:57:00 charon: 06[ENC] <con4|18> => 65535
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> => 16
May 17 02:57:00 charon: 06[ENC] <con4|18> => 16
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 7
May 17 02:57:00 charon: 06[ENC] <con4|18> => 7
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 TS_TYPE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 TS_TYPE
May 17 02:57:00 charon: 06[ENC] <con4|18> 48: 00 00 00 08 01 00 40 0B ......
.
May 17 02:57:00 charon: 06[ENC] <con4|18> 32: 0A 0E 43 00 0A 0E 43 FF 29 00 00 08 01 00 40 0A ..C...C.)......
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 29 00 00 18 01 00 00 00 07 00 00 10 00 00 FF FF )...............
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 07 00 00 10 00 00 FF FF C0 A8 17 00 C0 A8 17 FF ................
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 56 bytes
0x80d82d9c0
May 17 02:57:00 charon: 06[ENC] <con4|18> 48: 00 00 00 08 01 00 40 0B .......
May 17 02:57:00 charon: 06[ENC] <con4|18> 32: 0A 0E 43 00 0A 0E 43 FF 29 00 00 08 01 00 40 0A ..C...C.).....
.
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 29 00 00 18 01 00 00 00 07 00 00 10 00 00 FF FF )...............
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 07 00 00 10 00 00 FF FF C0 A8 17 00 C0 A8 17 FF ................
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 56 bytes 0x80d82d9c0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRAFFIC_SELECTOR_SUBSTRUCTURE payload, 56 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRAFFIC_SELECTOR_SUBSTRUCTURE payload, 56 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> 16 bytes left, parsing recursively TRAFFIC_SELECTOR_SUBSTRUCTURE
May 17 02:57:00 charon: 06[ENC] <con4|18> 16 bytes left, parsing recursively TRAFFIC_SELECTOR_SUBSTRUCTURE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 14 (1263)
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 14 (1263)
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 13 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 13 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 12 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 12 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 11 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 11 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 24
May 17 02:57:00 charon: 06[ENC] <con4|18> => 24
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> => 45
May 17 02:57:00 charon: 06[ENC] <con4|18> => 45
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 48: 29 00 00 08 01 00 40 0A 00 00 00 08 01 00 40 0B ).....
........
May 17 02:57:00 charon: 06[ENC] <con4|18> 32: 07 00 00 10 00 00 FF FF 0A 0E 43 00 0A 0E 43 FF ..........C...C.
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: C0 A8 17 00 C0 A8 17 FF 29 00 00 18 01 00 00 00 ........).......
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 2D 00 00 18 01 00 00 00 07 00 00 10 00 00 FF FF -...............
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 64 bytes
0x80d82d9b8
May 17 02:57:00 charon: 06[ENC] <con4|18> 48: 29 00 00 08 01 00 40 0A 00 00 00 08 01 00 40 0B ).............
May 17 02:57:00 charon: 06[ENC] <con4|18> 32: 07 00 00 10 00 00 FF FF 0A 0E 43 00 0A 0E 43 FF ..........C...C.
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: C0 A8 17 00 C0 A8 17 FF 29 00 00 18 01 00 00 00 ........).......
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 2D 00 00 18 01 00 00 00 07 00 00 10 00 00 FF FF ...............
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 64 bytes 0x80d82d9b8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TS_INITIATOR payload, 64 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TS_INITIATOR payload, 64 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing SECURITY_ASSOCIATION payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing SECURITY_ASSOCIATION payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing PROPOSAL_SUBSTRUCTURE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing PROPOSAL_SUBSTRUCTURE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_SUBSTRUCTURE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_SUBSTRUCTURE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 (1261)
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 (1261)
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 5
May 17 02:57:00 charon: 06[ENC] <con4|18> => 5
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 00 00 00 08 05 00 00 00 2D 00 00 18 01 00 00 00 ........-.......
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 72 bytes
0x80d82d9b0
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 00 00 00 08 05 00 00 00 2D 00 00 18 01 00 00 00 ........
.......
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 72 bytes 0x80d82d9b0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_SUBSTRUCTURE payload, 72 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_SUBSTRUCTURE payload, 72 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> 8 bytes left, parsing recursively TRANSFORM_SUBSTRUCTURE
May 17 02:57:00 charon: 06[ENC] <con4|18> 8 bytes left, parsing recursively TRANSFORM_SUBSTRUCTURE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_SUBSTRUCTURE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_SUBSTRUCTURE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 (1261)
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 (1261)
May 17 02:57:00 charon: 06[ENC] <con4|18> => 2
May 17 02:57:00 charon: 06[ENC] <con4|18> => 2
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 3
May 17 02:57:00 charon: 06[ENC] <con4|18> => 3
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 3
May 17 02:57:00 charon: 06[ENC] <con4|18> => 3
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 64: 29 00 00 08 01 00 40 0A 00 00 00 08 01 00 40 0B ).....
........
May 17 02:57:00 charon: 06[ENC] <con4|18> 48: 07 00 00 10 00 00 FF FF 0A 0E 43 00 0A 0E 43 FF ..........C...C.
May 17 02:57:00 charon: 06[ENC] <con4|18> 32: C0 A8 17 00 C0 A8 17 FF 29 00 00 18 01 00 00 00 ........).......
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 2D 00 00 18 01 00 00 00 07 00 00 10 00 00 FF FF -...............
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 03 00 00 08 03 00 00 02 00 00 00 08 05 00 00 00 ................
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 80 bytes
0x80d82d9a8
May 17 02:57:00 charon: 06[ENC] <con4|18> 64: 29 00 00 08 01 00 40 0A 00 00 00 08 01 00 40 0B ).............@

#8 Updated by Roman H over 4 years ago

and part 2:
May 17 02:57:00 charon: 06[ENC] <con4|18> 48: 07 00 00 10 00 00 FF FF 0A 0E 43 00 0A 0E 43 FF ..........C...C.
May 17 02:57:00 charon: 06[ENC] <con4|18> 32: C0 A8 17 00 C0 A8 17 FF 29 00 00 18 01 00 00 00 ........).......
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 2D 00 00 18 01 00 00 00 07 00 00 10 00 00 FF FF -...............
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 03 00 00 08 03 00 00 02 00 00 00 08 05 00 00 00 ................
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 80 bytes
0x80d82d9a8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_SUBSTRUCTURE payload, 80 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_SUBSTRUCTURE payload, 80 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> 16 bytes left, parsing recursively TRANSFORM_SUBSTRUCTURE
May 17 02:57:00 charon: 06[ENC] <con4|18> 16 bytes left, parsing recursively TRANSFORM_SUBSTRUCTURE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_SUBSTRUCTURE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_SUBSTRUCTURE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_ATTRIBUTE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_ATTRIBUTE payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 ATTRIBUTE_VALUE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 ATTRIBUTE_VALUE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 192
May 17 02:57:00 charon: 06[ENC] <con4|18> => 192
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 ATTRIBUTE_LENGTH_OR_VALUE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 ATTRIBUTE_LENGTH_OR_VALUE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 14
May 17 02:57:00 charon: 06[ENC] <con4|18> => 14
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 ATTRIBUTE_TYPE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 ATTRIBUTE_TYPE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 ATTRIBUTE_FORMAT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 ATTRIBUTE_FORMAT
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 80 0E 00 C0 03 00 00 08 03 00 00 02 00 00 00 08 ................
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 84 bytes 0x80d82d9a4
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 80 0E 00 C0 03 00 00 08 03 00 00 02 00 00 00 08 ................
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 84 bytes
0x80d82d9a4
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_ATTRIBUTE payload, 84 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_ATTRIBUTE payload, 84 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> 4 bytes left, parsing recursively TRANSFORM_ATTRIBUTE
May 17 02:57:00 charon: 06[ENC] <con4|18> 4 bytes left, parsing recursively TRANSFORM_ATTRIBUTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 (1261)
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 (1261)
May 17 02:57:00 charon: 06[ENC] <con4|18> => 12
May 17 02:57:00 charon: 06[ENC] <con4|18> => 12
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 U_INT_16
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 12
May 17 02:57:00 charon: 06[ENC] <con4|18> => 12
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 3
May 17 02:57:00 charon: 06[ENC] <con4|18> => 3
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 80: 01 00 40 0A 00 00 00 08 01 00 40 0B ..........
May 17 02:57:00 charon: 06[ENC] <con4|18> 64: 00 00 FF FF 0A 0E 43 00 0A 0E 43 FF 29 00 00 08 ......C...C.)...
May 17 02:57:00 charon: 06[ENC] <con4|18> 48: C0 A8 17 FF 29 00 00 18 01 00 00 00 07 00 00 10 ....)...........
May 17 02:57:00 charon: 06[ENC] <con4|18> 32: 01 00 00 00 07 00 00 10 00 00 FF FF C0 A8 17 00 ................
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 03 00 00 02 00 00 00 08 05 00 00 00 2D 00 00 18 ............-...
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 03 00 00 0C 01 00 00 0C 80 0E 00 C0 03 00 00 08 ................
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 92 bytes 0x80d82d99c
May 17 02:57:00 charon: 06[ENC] <con4|18> 80: 01 00 40 0A 00 00 00 08 01 00 40 0B ..
........
May 17 02:57:00 charon: 06[ENC] <con4|18> 64: 00 00 FF FF 0A 0E 43 00 0A 0E 43 FF 29 00 00 08 ......C...C.)...
May 17 02:57:00 charon: 06[ENC] <con4|18> 48: C0 A8 17 FF 29 00 00 18 01 00 00 00 07 00 00 10 ....)...........
May 17 02:57:00 charon: 06[ENC] <con4|18> 32: 01 00 00 00 07 00 00 10 00 00 FF FF C0 A8 17 00 ................
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 03 00 00 02 00 00 00 08 05 00 00 00 2D 00 00 18 ............-...
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 03 00 00 0C 01 00 00 0C 80 0E 00 C0 03 00 00 08 ................
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 92 bytes
0x80d82d99c
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_SUBSTRUCTURE payload, 92 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing TRANSFORM_SUBSTRUCTURE payload, 92 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> 28 bytes left, parsing recursively TRANSFORM_SUBSTRUCTURE
May 17 02:57:00 charon: 06[ENC] <con4|18> 28 bytes left, parsing recursively TRANSFORM_SUBSTRUCTURE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 (1259)
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 (1259)
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 79 A6 F3 C9 y...
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4 bytes 0x80cc6b0d0
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 79 A6 F3 C9 y...
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4 bytes
0x80cc6b0d0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 SPI
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 SPI
May 17 02:57:00 charon: 06[ENC] <con4|18> => 3
May 17 02:57:00 charon: 06[ENC] <con4|18> => 3
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 SPI_SIZE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 SPI_SIZE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 3
May 17 02:57:00 charon: 06[ENC] <con4|18> => 3
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 40
May 17 02:57:00 charon: 06[ENC] <con4|18> => 40
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 96: 00 00 00 08 01 00 40 0B .......
May 17 02:57:00 charon: 06[ENC] <con4|18> 80: 0A 0E 43 00 0A 0E 43 FF 29 00 00 08 01 00 40 0A ..C...C.).....
.
May 17 02:57:00 charon: 06[ENC] <con4|18> 64: 29 00 00 18 01 00 00 00 07 00 00 10 00 00 FF FF )...............
May 17 02:57:00 charon: 06[ENC] <con4|18> 48: 07 00 00 10 00 00 FF FF C0 A8 17 00 C0 A8 17 FF ................
May 17 02:57:00 charon: 06[ENC] <con4|18> 32: 00 00 00 08 05 00 00 00 2D 00 00 18 01 00 00 00 ........-.......
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 01 00 00 0C 80 0E 00 C0 03 00 00 08 03 00 00 02 ................
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 00 00 00 28 01 03 04 03 79 A6 F3 C9 03 00 00 0C ...(....y.......
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 104 bytes 0x80d82d990
May 17 02:57:00 charon: 06[ENC] <con4|18> 96: 00 00 00 08 01 00 40 0B ......
.
May 17 02:57:00 charon: 06[ENC] <con4|18> 80: 0A 0E 43 00 0A 0E 43 FF 29 00 00 08 01 00 40 0A ..C...C.)......
May 17 02:57:00 charon: 06[ENC] <con4|18> 64: 29 00 00 18 01 00 00 00 07 00 00 10 00 00 FF FF )...............
May 17 02:57:00 charon: 06[ENC] <con4|18> 48: 07 00 00 10 00 00 FF FF C0 A8 17 00 C0 A8 17 FF ................
May 17 02:57:00 charon: 06[ENC] <con4|18> 32: 00 00 00 08 05 00 00 00 2D 00 00 18 01 00 00 00 ........-.......
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 01 00 00 0C 80 0E 00 C0 03 00 00 08 03 00 00 02 ................
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 00 00 00 28 01 03 04 03 79 A6 F3 C9 03 00 00 0C ...(....y.......
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 104 bytes
0x80d82d990
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing PROPOSAL_SUBSTRUCTURE payload, 104 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing PROPOSAL_SUBSTRUCTURE payload, 104 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> 40 bytes left, parsing recursively PROPOSAL_SUBSTRUCTURE
May 17 02:57:00 charon: 06[ENC] <con4|18> 40 bytes left, parsing recursively PROPOSAL_SUBSTRUCTURE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 (1257)
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 (1257)
May 17 02:57:00 charon: 06[ENC] <con4|18> => 44
May 17 02:57:00 charon: 06[ENC] <con4|18> => 44
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> => 44
May 17 02:57:00 charon: 06[ENC] <con4|18> => 44
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 2C 00 00 2C 00 00 00 28 01 03 04 03 79 A6 F3 C9 ,..,...(....y...
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 108 bytes 0x80d82d98c
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 2C 00 00 2C 00 00 00 28 01 03 04 03 79 A6 F3 C9 ,..,...(....y...
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 108 bytes
0x80d82d98c
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing SECURITY_ASSOCIATION payload, 108 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing SECURITY_ASSOCIATION payload, 108 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing AUTH payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing AUTH payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: E8 7D 53 84 .}S.
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: B0 D0 77 5F 6E E4 2D 8A 42 D6 DB 76 16 8F 52 19 ..w_n.-.B..v..R.
May 17 02:57:00 charon: 06[ENC] <con4|18> => 20 bytes 0x80cc10e20
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: E8 7D 53 84 .}S.
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: B0 D0 77 5F 6E E4 2D 8A 42 D6 DB 76 16 8F 52 19 ..w_n.-.B..v..R.
May 17 02:57:00 charon: 06[ENC] <con4|18> => 20 bytes
0x80cc10e20
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 14 CHUNK_DATA
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 14 CHUNK_DATA
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 13 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 13 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 12 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 12 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 11 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 11 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 2
May 17 02:57:00 charon: 06[ENC] <con4|18> => 2
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 28
May 17 02:57:00 charon: 06[ENC] <con4|18> => 28
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> => 33
May 17 02:57:00 charon: 06[ENC] <con4|18> => 33
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 21 00 00 1C 02 00 00 00 B0 D0 77 5F 6E E4 2D 8A !.........w_n.-.
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 136 bytes 0x80d82d970
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 21 00 00 1C 02 00 00 00 B0 D0 77 5F 6E E4 2D 8A !.........w_n.-.
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 136 bytes
0x80d82d970
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing AUTH payload, 136 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing AUTH payload, 136 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing ID_RESPONDER payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing ID_RESPONDER payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 26 7A 75 56 &zuV
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4 bytes 0x80cc6b0d8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 26 7A 75 56 &zuV
May 17 02:57:00 charon: 06[ENC] <con4|18> => 4 bytes
0x80cc6b0d8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 14 CHUNK_DATA
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 14 CHUNK_DATA
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 13 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 13 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 12 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 12 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 11 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 11 RESERVED_BYTE
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> => 1
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 12
May 17 02:57:00 charon: 06[ENC] <con4|18> => 12
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> => 39
May 17 02:57:00 charon: 06[ENC] <con4|18> => 39
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 27 00 00 0C 01 00 00 00 26 7A 75 56 21 00 00 1C '.......&zuV!...
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 148 bytes 0x80d82d964
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 27 00 00 0C 01 00 00 00 26 7A 75 56 21 00 00 1C '.......&zuV!...
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 148 bytes
0x80d82d964
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing ID_RESPONDER payload, 148 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing ID_RESPONDER payload, 148 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing VENDOR_ID payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing VENDOR_ID payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 05
May 17 02:57:00 charon: 06[ENC] <con4|18> => 16 bytes 0x80cc0f680
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 05
May 17 02:57:00 charon: 06[ENC] <con4|18> => 16 bytes
0x80cc0f680
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 CHUNK_DATA
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 10 CHUNK_DATA
May 17 02:57:00 charon: 06[ENC] <con4|18> => 20
May 17 02:57:00 charon: 06[ENC] <con4|18> => 20
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 9 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 8 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 5 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 4 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 RESERVED_BIT
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 FLAG
May 17 02:57:00 charon: 06[ENC] <con4|18> => 36
May 17 02:57:00 charon: 06[ENC] <con4|18> => 36
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 24 00 00 14 05 BE E0 EC 6E 34 3B 5F E0 98 64 AB $.......n4;_..d.
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 168 bytes 0x80d82d950
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 24 00 00 14 05 BE E0 EC 6E 34 3B 5F E0 98 64 AB $.......n4;_..d.
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 168 bytes
0x80d82d950
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing VENDOR_ID payload, 168 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing VENDOR_ID payload, 168 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 00 00 00 00 00 00 00 07 ........
May 17 02:57:00 charon: 06[ENC] <con4|18> padding => 8 bytes 0x80d82d9f8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 00 00 00 00 00 00 00 07 ........
May 17 02:57:00 charon: 06[ENC] <con4|18> padding => 8 bytes
0x80d82d9f8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 24 00 00 14 05 BE E0 EC 6E 34 3B 5F E0 98 64 AB $.......n4;_..d.
May 17 02:57:00 charon: 06[ENC] <con4|18> plain => 168 bytes 0x80d82d950
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 24 00 00 14 05 BE E0 EC 6E 34 3B 5F E0 98 64 AB $.......n4;_..d.
May 17 02:57:00 charon: 06[ENC] <con4|18> plain => 168 bytes
0x80d82d950
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 2E 20 23 20 00 00 00 01 00 00 00 EC 2B 00 00 D0 . # ........+...
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 2D 8D 8E 0D FF 6E E4 82 07 BE E1 EC 7D 03 C8 18 -....n......}...
May 17 02:57:00 charon: 06[ENC] <con4|18> assoc => 32 bytes 0x80cc10fc0
May 17 02:57:00 charon: 06[ENC] <con4|18> 16: 2E 20 23 20 00 00 00 01 00 00 00 EC 2B 00 00 D0 . # ........+...
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 2D 8D 8E 0D FF 6E E4 82 07 BE E1 EC 7D 03 C8 18 -....n......}...
May 17 02:57:00 charon: 06[ENC] <con4|18> assoc => 32 bytes
0x80cc10fc0
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: B7 EC 5E 6F 79 43 4C 44 A6 4D 2C B8 ..^oyCLD.M,.
May 17 02:57:00 charon: 06[ENC] <con4|18> ICV => 12 bytes 0x80d82da00
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: B7 EC 5E 6F 79 43 4C 44 A6 4D 2C B8 ..^oyCLD.M,.
May 17 02:57:00 charon: 06[ENC] <con4|18> ICV => 12 bytes
0x80d82da00
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: FC 81 4E 56 9E 62 0D EA EE 69 1D F8 31 AF 64 30 ..NV.b...i..1.d0
May 17 02:57:00 charon: 06[ENC] <con4|18> encrypted => 188 bytes 0x80d82d950
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: FC 81 4E 56 9E 62 0D EA EE 69 1D F8 31 AF 64 30 ..NV.b...i..1.d0
May 17 02:57:00 charon: 06[ENC] <con4|18> encrypted => 188 bytes
0x80d82d950
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 99 9C BC D6 93 11 3C DB 5A 91 98 71 7C 41 84 64 ......<.Z..q|A.d
May 17 02:57:00 charon: 06[ENC] <con4|18> IV => 16 bytes 0x80d82d940
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 99 9C BC D6 93 11 3C DB 5A 91 98 71 7C 41 84 64 ......<.Z..q|A.d
May 17 02:57:00 charon: 06[ENC] <con4|18> IV => 16 bytes
0x80d82d940
May 17 02:57:00 charon: 06[ENC] <con4|18> encrypted payload decryption:
May 17 02:57:00 charon: 06[ENC] <con4|18> encrypted payload decryption:
May 17 02:57:00 charon: 06[ENC] <con4|18> found an encrypted payload
May 17 02:57:00 charon: 06[ENC] <con4|18> found an encrypted payload
May 17 02:57:00 charon: 06[ENC] <con4|18> process payload of type ENCRYPTED
May 17 02:57:00 charon: 06[ENC] <con4|18> process payload of type ENCRYPTED
May 17 02:57:00 charon: 06[ENC] <con4|18> ENCRYPTED payload found, stop parsing
May 17 02:57:00 charon: 06[ENC] <con4|18> ENCRYPTED payload found, stop parsing
May 17 02:57:00 charon: 06[ENC] <con4|18> ENCRYPTED payload verified, adding to payload list
May 17 02:57:00 charon: 06[ENC] <con4|18> ENCRYPTED payload verified, adding to payload list
May 17 02:57:00 charon: 06[ENC] <con4|18> verifying payload of type ENCRYPTED
May 17 02:57:00 charon: 06[ENC] <con4|18> verifying payload of type ENCRYPTED
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing ENCRYPTED payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing ENCRYPTED payload finished
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 99 9C BC D6 93 11 3C DB 5A 91 98 71 7C 41 84 64 ......<.Z..q|A.d
May 17 02:57:00 charon: 06[ENC] <con4|18> => 204 bytes 0x80d82d940
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 99 9C BC D6 93 11 3C DB 5A 91 98 71 7C 41 84 64 ......<.Z..q|A.d
May 17 02:57:00 charon: 06[ENC] <con4|18> => 204 bytes
0x80d82d940
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 CHUNK_DATA
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 3 CHUNK_DATA
May 17 02:57:00 charon: 06[ENC] <con4|18> => 208
May 17 02:57:00 charon: 06[ENC] <con4|18> => 208
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 2 PAYLOAD_LENGTH
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> => 0
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 1 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> => 43
May 17 02:57:00 charon: 06[ENC] <con4|18> => 43
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing rule 0 U_INT_8
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 2B 00 00 D0 99 9C BC D6 93 11 3C DB 5A 91 98 71 +.........<.Z..q
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 208 bytes 0x80d90c31c
May 17 02:57:00 charon: 06[ENC] <con4|18> 0: 2B 00 00 D0 99 9C BC D6 93 11 3C DB 5A 91 98 71 +.........<.Z..q
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing payload from => 208 bytes
0x80d90c31c
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing ENCRYPTED payload, 208 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing ENCRYPTED payload, 208 bytes left
May 17 02:57:00 charon: 06[ENC] <con4|18> starting parsing a ENCRYPTED payload
May 17 02:57:00 charon: 06[ENC] <con4|18> starting parsing a ENCRYPTED payload
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing body of message, first payload is ENCRYPTED
May 17 02:57:00 charon: 06[ENC] <con4|18> parsing body of message, first payload is ENCRYPTED
May 17 02:57:00 charon: 06[NET] <con4|18> received packet: from 38.y.y.y500 to 62.x.x.x500 (236 bytes)
May 17 02:57:00 charon: 06[NET] <con4|18> received packet: from 38.y.y.y500 to 62.x.x.x500 (236 bytes)
May 17 02:57:00 charon: 07[NET] waiting for data on sockets
May 17 02:57:00 charon: 07[NET] waiting for data on sockets
May 17 02:57:00 charon: 07[ENC] parsed a IKE_AUTH response header
May 17 02:57:00 charon: 07[ENC] parsed a IKE_AUTH response header
May 17 02:57:00 charon: 07[ENC] parsing HEADER payload finished
May 17 02:57:00 charon: 07[ENC] parsing HEADER payload finished
May 17 02:57:00 charon: 07[ENC] => 236
May 17 02:57:00 charon: 07[ENC] => 236
May 17 02:57:00 charon: 07[ENC] parsing rule 15 HEADER_LENGTH
May 17 02:57:00 charon: 07[ENC] parsing rule 15 HEADER_LENGTH
May 17 02:57:00 charon: 07[ENC] => 1
May 17 02:57:00 charon: 07[ENC] => 1
May 17 02:57:00 charon: 07[ENC] parsing rule 14 U_INT_32
May 17 02:57:00 charon: 07[ENC] parsing rule 14 U_INT_32
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] parsing rule 13 FLAG
May 17 02:57:00 charon: 07[ENC] parsing rule 13 FLAG
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] parsing rule 12 FLAG
May 17 02:57:00 charon: 07[ENC] parsing rule 12 FLAG
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] parsing rule 11 FLAG
May 17 02:57:00 charon: 07[ENC] parsing rule 11 FLAG
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] parsing rule 10 FLAG
May 17 02:57:00 charon: 07[ENC] parsing rule 10 FLAG
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] parsing rule 9 FLAG
May 17 02:57:00 charon: 07[ENC] parsing rule 9 FLAG
May 17 02:57:00 charon: 07[ENC] => 1
May 17 02:57:00 charon: 07[ENC] => 1
May 17 02:57:00 charon: 07[ENC] parsing rule 8 FLAG
May 17 02:57:00 charon: 07[ENC] parsing rule 8 FLAG
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 07[ENC] parsing rule 7 RESERVED_BIT
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 07[ENC] parsing rule 6 RESERVED_BIT
May 17 02:57:00 charon: 07[ENC] => 35
May 17 02:57:00 charon: 07[ENC] => 35
May 17 02:57:00 charon: 07[ENC] parsing rule 5 U_INT_8
May 17 02:57:00 charon: 07[ENC] parsing rule 5 U_INT_8
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] => 0
May 17 02:57:00 charon: 07[ENC] parsing rule 4 U_INT_4
May 17 02:57:00 charon: 07[ENC] parsing rule 4 U_INT_4
May 17 02:57:00 charon: 07[ENC] => 2
May 17 02:57:00 charon: 07[ENC] => 2
May 17 02:57:00 charon: 07[ENC] parsing rule 3 U_INT_4
May 17 02:57:00 charon: 07[ENC] parsing rule 3 U_INT_4
May 17 02:57:00 charon: 07[ENC] => 46
May 17 02:57:00 charon: 07[ENC] => 46
May 17 02:57:00 charon: 07[ENC] parsing rule 2 U_INT_8
May 17 02:57:00 charon: 07[ENC] parsing rule 2 U_INT_8
May 17 02:57:00 charon: 07[ENC] 0: 07 BE E1 EC 7D 03 C8 18 ....}...
May 17 02:57:00 charon: 07[ENC] => 8 bytes 0x80d83d250
May 17 02:57:00 charon: 07[ENC] 0: 07 BE E1 EC 7D 03 C8 18 ....}...
May 17 02:57:00 charon: 07[ENC] => 8 bytes
0x80d83d250
May 17 02:57:00 charon: 07[ENC] parsing rule 1 IKE_SPI
May 17 02:57:00 charon: 07[ENC] parsing rule 1 IKE_SPI
May 17 02:57:00 charon: 07[ENC] 0: 2D 8D 8E 0D FF 6E E4 82 -....n..
May 17 02:57:00 charon: 07[ENC] => 8 bytes 0x80d83d248
May 17 02:57:00 charon: 07[ENC] 0: 2D 8D 8E 0D FF 6E E4 82 -....n..
May 17 02:57:00 charon: 07[ENC] => 8 bytes
0x80d83d248
May 17 02:57:00 charon: 07[ENC] parsing rule 0 IKE_SPI
May 17 02:57:00 charon: 07[ENC] parsing rule 0 IKE_SPI
May 17 02:57:00 charon: 07[ENC] 0: 2D 8D 8E 0D FF 6E E4 82 07 BE E1 EC 7D 03 C8 18 -....n......}...
May 17 02:57:00 charon: 07[ENC] parsing payload from => 236 bytes 0x80d90c300
May 17 02:57:00 charon: 07[ENC] 0: 2D 8D 8E 0D FF 6E E4 82 07 BE E1 EC 7D 03 C8 18 -....n......}...
May 17 02:57:00 charon: 07[ENC] parsing payload from => 236 bytes
0x80d90c300
May 17 02:57:00 charon: 07[ENC] parsing HEADER payload, 236 bytes left
May 17 02:57:00 charon: 07[ENC] parsing HEADER payload, 236 bytes left
May 17 02:57:00 charon: 07[ENC] parsing header of message
May 17 02:57:00 charon: 07[ENC] parsing header of message
May 17 02:57:00 charon: 07[NET] received packet: from 38.y.y.y500 to 62.x.x.x500
May 17 02:57:00 charon: 07[NET] received packet: from 38.y.y.y500 to 62.x.x.x500
May 17 02:57:00 charon: 07[NET] 0: 2D 8D 8E 0D FF 6E E4 82 07 BE E1 EC 7D 03 C8 18 -....n......}...
May 17 02:57:00 charon: 07[NET] received packet => 236 bytes 0x7ffffeff55e0
May 17 02:57:00 charon: 07[NET] 0: 2D 8D 8E 0D FF 6E E4 82 07 BE E1 EC 7D 03 C8 18 -....n......}...
May 17 02:57:00 charon: 07[NET] received packet => 236 bytes
0x7ffffeff55e0
May 17 02:56:59 charon: 02[NET] sending packet: from 62.x.x.x500 to 38.y.y.y500
May 17 02:56:59 charon: 02[NET] sending packet: from 62.x.x.x500 to 38.y.y.y500
May 17 02:56:59 charon: 01[JOB] next event in 1s 214ms, waiting
May 17 02:56:59 charon: 01[JOB] next event in 1s 214ms, waiting
May 17 02:56:59 charon: 06[NET] <con4|18> sending packet: from 62.x.x.x500 to 38.y.y.y500 (332 bytes)
May 17 02:56:59 charon: 06[NET] <con4|18> sending packet: from 62.x.x.x500 to 38.y.y.y500 (332 bytes)
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 2D 8D 8E 0D FF 6E E4 82 07 BE E1 EC 7D 03 C8 18 -....n......}...
May 17 02:56:59 charon: 06[ENC] <con4|18> 16: 2E 20 23 08 00 00 00 01 00 00 01 4C 23 00 01 30 . #........L#..0
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data of this generator => 332 bytes 0x80ccbe600
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 304 bytes
0x80ccbe61c
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 23 00 01 30 52 22 71 32 DD 77 01 C7 50 36 0A A0 #..0R"q2.w..P6..
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 304 bytes 0x80ccbe61c
May 17 02:56:59 charon: 06[ENC] <con4|18> generating ENCRYPTED payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> 64: 30 4B B8 3E 02 F2 86 10 F4 0C 20 ED 1C D7 75 3B 0K.>...... ...u;
May 17 02:56:59 charon: 06[ENC] <con4|18> => 300 bytes
0x80cca73c0
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 52 22 71 32 DD 77 01 C7 50 36 0A A0 3E DE 5C 63 R"q2.w..P6..>.\c
May 17 02:56:59 charon: 06[ENC] <con4|18> => 300 bytes 0x80cca73c0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 3 CHUNK_DATA
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 01 30 .0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 35
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 0 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> generating payload of type ENCRYPTED
May 17 02:56:59 charon: 06[ENC] <con4|18> generating payload of type ENCRYPTED
May 17 02:56:59 charon: 06[ENC] <con4|18> ICV => 12 bytes
0x80cca74e0
May 17 02:56:59 charon: 06[ENC] <con4|18> ICV => 12 bytes 0x80cca74e0
May 17 02:56:59 charon: 06[ENC] <con4|18> 32: 59 F7 AE 7A 5A 14 59 85 0A 1F AB 79 14 B5 86 26 Y..zZ.Y....y...&
May 17 02:56:59 charon: 06[ENC] <con4|18> encrypted => 272 bytes
0x80cca73d0
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: EC B8 A6 DF F9 68 6D 4D 8B D6 B0 9A 05 89 3F EC .....hmM......?.
May 17 02:56:59 charon: 06[ENC] <con4|18> encrypted => 272 bytes 0x80cca73d0
May 17 02:56:59 charon: 06[ENC] <con4|18> assoc => 32 bytes
0x80cc2b180
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 2D 8D 8E 0D FF 6E E4 82 07 BE E1 EC 7D 03 C8 18 -....n......}...
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 07 44 9A CC AF 41 06 .D...A.
May 17 02:56:59 charon: 06[ENC] <con4|18> padding => 7 bytes 0x80cca74d9
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 29 00 00 0C 01 00 00 00 3E DB D1 1C 26 00 00 08 ).......>...&...
May 17 02:56:59 charon: 06[ENC] <con4|18> plain => 265 bytes
0x80cca73d0
May 17 02:56:59 charon: 06[ENC] <con4|18> IV => 16 bytes 0x80cca73c0
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 52 22 71 32 DD 77 01 C7 50 36 0A A0 3E DE 5C 63 R"q2.w..P6..>.\c
May 17 02:56:59 charon: 06[ENC] <con4|18> IV => 16 bytes
0x80cca73c0
May 17 02:56:59 charon: 06[ENC] <con4|18> encrypted payload encryption:
May 17 02:56:59 charon: 06[ENC] <con4|18> encrypted payload encryption:
May 17 02:56:59 charon: 06[ENC] <con4|18> generated content in encrypted payload
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 29 00 00 0C 01 00 00 00 3E DB D1 1C 26 00 00 08 ).......>...&...
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data of this generator => 265 bytes 0x80ccbe800
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 8 bytes
0x80ccbe901
May 17 02:56:59 charon: 06[ENC] <con4|18> generating NOTIFY payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0 bytes 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 14 CHUNK_DATA
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0 bytes
0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0 bytes 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 13 SPI
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 40 21
!
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a7e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 12 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 11 SPI_SIZE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 11 SPI_SIZE
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 10 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f8a7e
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a7e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 9 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 8 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 7 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 4 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 3 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 1 FLAG
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 0 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 0 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> generating payload of type NOTIFY
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 56 bytes
0x80ccbe8c9
May 17 02:56:59 charon: 06[ENC] <con4|18> 32: 0A 08 43 00 0A 08 43 FF 07 00 00 10 00 00 FF FF ..C...C.........
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 56 bytes 0x80ccbe8c9
May 17 02:56:59 charon: 06[ENC] <con4|18> generating TS_RESPONDER payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 16 bytes
0x80ccbe8f1
May 17 02:56:59 charon: 06[ENC] <con4|18> generating TRAFFIC_SELECTOR_SUBSTRUCTURE payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 0A 0E 43 FF ..C.
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 0A 0E 43 FF ..C.
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 0A 0E 43 00 ..C.
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 0A 0E 43 00 ..C.
May 17 02:56:59 charon: 06[ENC] <con4|18> => 4 bytes 0x80cc6b0d0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 4 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 4 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 3 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 10 ..
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 10 ..
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 1 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> => 7
May 17 02:56:59 charon: 06[ENC] <con4|18> => 7
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 0 TS_TYPE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating payload of type TRAFFIC_SELECTOR_SUBSTRUCTURE
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 07 00 00 10 00 00 FF FF 0A 08 43 00 0A 08 43 FF ..........C...C.
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 16 bytes
0x80ccbe8e1
May 17 02:56:59 charon: 06[ENC] <con4|18> generating TRAFFIC_SELECTOR_SUBSTRUCTURE payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> => 4 bytes 0x80cc6b0e0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> => 4 bytes
0x80cc6b078
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 3 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 10 ..
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 1 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> => 7
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 0 TS_TYPE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating payload of type TRAFFIC_SELECTOR_SUBSTRUCTURE
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 16 bytes
0x80ccbe8d1
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 16 bytes 0x80ccbe8d1
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 0A 09 49 FF ..I.
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 0A 09 49 FF ..I.
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 0A 09 49 00 ..I.
May 17 02:56:59 charon: 06[ENC] <con4|18> => 4 bytes
0x80cc6b0b8
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 4 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 3 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 10 ..
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 7
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 0 TS_TYPE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating payload of type TRAFFIC_SELECTOR_SUBSTRUCTURE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 14 (1263)
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 14 (1263)
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 13 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 12 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 12 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 11 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 11 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> => 3
May 17 02:56:59 charon: 06[ENC] <con4|18> => 3
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 10 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f8a7e
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a7e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 9 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 8 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 8 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 7 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 4 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 4 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 3 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 1 FLAG
May 17 02:56:59 charon: 06[ENC] <con4|18> => 41
May 17 02:56:59 charon: 06[ENC] <con4|18> => 41
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 0 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 0 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> generating payload of type TS_RESPONDER
May 17 02:56:59 charon: 06[ENC] <con4|18> generating payload of type TS_RESPONDER
May 17 02:56:59 charon: 06[ENC] <con4|18> 16: C0 A8 17 00 C0 A8 17 FF ........
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 24 bytes
0x80ccbe8b1
May 17 02:56:59 charon: 06[ENC] <con4|18> generating TS_INITIATOR payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> generating TS_INITIATOR payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 07 00 00 10 00 00 FF FF C0 A8 17 00 C0 A8 17 FF ................
May 17 02:56:59 charon: 06[ENC] <con4|18> generating TRAFFIC_SELECTOR_SUBSTRUCTURE payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> generating TRAFFIC_SELECTOR_SUBSTRUCTURE payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: C0 A8 17 FF ....
May 17 02:56:59 charon: 06[ENC] <con4|18> => 4 bytes 0x80cc6b080
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> => 4 bytes
0x80cc6b098
May 17 02:56:59 charon: 06[ENC] <con4|18> => 4 bytes 0x80cc6b098
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 ADDRESS
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 4 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 4 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 3 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 3 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a0e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 1 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 1 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> => 7
May 17 02:56:59 charon: 06[ENC] <con4|18> => 7
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 0 TS_TYPE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 0 TS_TYPE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating payload of type TRAFFIC_SELECTOR_SUBSTRUCTURE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating payload of type TRAFFIC_SELECTOR_SUBSTRUCTURE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 14 (1263)
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 14 (1263)
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 13 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 13 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 12 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 12 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 11 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 11 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> => 1
May 17 02:56:59 charon: 06[ENC] <con4|18> => 1
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 10 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 10 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 18 ..
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f8a7e
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 18 ..
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f8a7e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 9 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 9 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 8 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 8 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 7 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 7 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 4 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 4 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 3 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 3 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 RESERVED_BIT
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 1 FLAG
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 1 FLAG
May 17 02:56:59 charon: 06[ENC] <con4|18> => 45
May 17 02:56:59 charon: 06[ENC] <con4|18> => 45
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 0 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 0 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> generating payload of type TS_INITIATOR
May 17 02:56:59 charon: 06[ENC] <con4|18> generating payload of type TS_INITIATOR
May 17 02:56:59 charon: 06[ENC] <con4|18> 32: 03 00 00 02 00 00 00 08 05 00 00 00 ............
May 17 02:56:59 charon: 06[ENC] <con4|18> 16: 03 00 00 0C 01 00 00 0C 80 0E 00 C0 03 00 00 08 ................
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 2C 00 00 2C 00 00 00 28 01 03 04 03 C6 3F 8B 22 ,..,...(.....?."
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 44 bytes
0x80ccbe885
May 17 02:56:59 charon: 06[ENC] <con4|18> 32: 03 00 00 02 00 00 00 08 05 00 00 00 ............
May 17 02:56:59 charon: 06[ENC] <con4|18> 16: 03 00 00 0C 01 00 00 0C 80 0E 00 C0 03 00 00 08 ................
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 2C 00 00 2C 00 00 00 28 01 03 04 03 C6 3F 8B 22 ,..,...(.....?."
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 44 bytes 0x80ccbe885
May 17 02:56:59 charon: 06[ENC] <con4|18> generating SECURITY_ASSOCIATION payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> generating SECURITY_ASSOCIATION payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> 32: 00 00 00 08 05 00 00 00 ........
May 17 02:56:59 charon: 06[ENC] <con4|18> 16: 01 00 00 0C 80 0E 00 C0 03 00 00 08 03 00 00 02 ................
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 00 00 28 01 03 04 03 C6 3F 8B 22 03 00 00 0C ...(.....?."....
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 40 bytes
0x80ccbe889
May 17 02:56:59 charon: 06[ENC] <con4|18> 32: 00 00 00 08 05 00 00 00 ........
May 17 02:56:59 charon: 06[ENC] <con4|18> 16: 01 00 00 0C 80 0E 00 C0 03 00 00 08 03 00 00 02 ................
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 00 00 28 01 03 04 03 C6 3F 8B 22 03 00 00 0C ...(.....?."....
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 40 bytes 0x80ccbe889
May 17 02:56:59 charon: 06[ENC] <con4|18> generating SECURITY_ASSOCIATION payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> generating SECURITY_ASSOCIATION payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 00 00 08 05 00 00 00 ........
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 8 bytes
0x80ccbe8a9
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 00 00 08 05 00 00 00 ........
May 17 02:56:59 charon: 06[ENC] <con4|18> generated data for this payload => 8 bytes 0x80ccbe8a9
May 17 02:56:59 charon: 06[ENC] <con4|18> generating TRANSFORM_SUBSTRUCTURE payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> generating TRANSFORM_SUBSTRUCTURE payload finished
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 (1261)
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 6 (1261)
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 00 ..
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f899e
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 00 ..
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f899e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 5 U_INT_16
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 4 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 4 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> => 5
May 17 02:56:59 charon: 06[ENC] <con4|18> => 5
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 3 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 3 U_INT_8
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 08 ..
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes
0x7fffff1f899e
May 17 02:56:59 charon: 06[ENC] <con4|18> 0: 00 08 ..
May 17 02:56:59 charon: 06[ENC] <con4|18> => 2 bytes 0x7fffff1f899e
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 2 PAYLOAD_LENGTH
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 1 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> generating rule 1 RESERVED_BYTE
May 17 02:56:59 charon: 06[ENC] <con4|18> => 0

Most interesting - there not much more debug info about this =(

#9 Updated by Chris Buechler over 4 years ago

  • Subject changed from pFsense/IPsec not brings multiple p2 over ikev2 tunnel to IKEv2 to Cisco ASA won't bring up multiple P2 networks
  • Status changed from New to Confirmed
  • Assignee set to Ermal Luçi
  • Priority changed from Normal to High
  • Affected Version changed from 2.2.2 to 2.2.x
  • Affected Architecture deleted (amd64)

#10 Updated by Chris Buechler over 4 years ago

  • Status changed from Confirmed to Feedback

this is actually a Cisco bug/lacking feature. https://tools.cisco.com/bugsearch/bug/CSCue42170/?referring_site=bugquickviewredir

contents since it requires registration.

During IKEv2 negotiation, ASA rejects the peer's proposal of traffic selector. "debug crypto ikev2 protocol 127" says:

IKEv2-PROTO-5: (1063): Failed to verify the proposed policies
IKEv2-PROTO-1: (1063): There was no IPSEC policy found for received TS
IKEv2-PROTO-1: (1063):
IKEv2-PROTO-5: (1063): SM Trace-> SA: I_SPI=017A6C1E54AE0C74 R_SPI=E3CF446D6AAC32D5 (R) MsgID = 00000001 CurState: R_VERIFY_AUTH Event: EV_TS_UNACCEPT
IKEv2-PROTO-2: (1063): Sending TS unacceptable notify

Conditions:
This occurs when peer devices is sending multiple traffic selector in the same TS payload, because current ASA implemention only supports single traffic selector under the same child SA. Peer's proposals can be confirmed with "debug crypto ikev2 protocol 127" on ASA:

TSi Next payload: TSr, reserved: 0x0, length: 40
Num of TSs: 2, reserved 0x0, reserved 0x0
TS type: TS_IPV4_ADDR_RANGE, proto id: 0, length: 16
start port: 0, end port: 65535
start addr: X.X.X.X, end addr: X.X.X.X <== MULTIPLE SELECTORS
TS type: TS_IPV4_ADDR_RANGE, proto id: 0, length: 16
start port: 0, end port: 65535
start addr: Y.Y.Y.Y, end addr: Y.Y.Y.Y <== MULTIPLE SELECTORS
TSr Next payload: NONE, reserved: 0x0, length: 24
Num of TSs: 1, reserved 0x0, reserved 0x0
TS type: TS_IPV4_ADDR_RANGE, proto id: 0, length: 16
start port: 0, end port: 65535
start addr: 0.0.0.0, end addr: 255.255.255.255

not sure there is a good way to work around that. Splitting the conn entries in ipsec.conf might work.

#11 Updated by Chris Buechler over 4 years ago

  • Assignee changed from Ermal Luçi to Chris Buechler

#12 Updated by Roman H over 4 years ago

Is it possible to split ikev2 via GUI ?

Or its only by editing conf file?
What you may advice in current situation?

#13 Updated by Chris Buechler over 4 years ago

there isn't a way to configure that in the GUI right now. You can hack the input validation that checks for duplicate P1s to remove those checks and configure multiple P1s with one P2 each (ensure the settings match exactly on all the P1s).

I suspect we'll end up adding a P1 checkbox to split the conn entries for IKEv2.

#14 Updated by Roman H over 4 years ago

I don't know where to "hack those validations"

Edit ipsec.conf sounds much easier to me ... in case if ipsec strongswan isn't doing such validations

I like that idea with checkbox for split. But its tempsolution till cisco will fix that bug, right?
Want me to ask vendor to open bug at cisco? This might move it a bit

#15 Updated by Chris Buechler over 4 years ago

Cisco already has CSCue42170 linked above open on the issue as an enhancement. Not sure you can do anything to push the issue with Cisco, but making a request for that functionality to be implemented wouldn't hurt. It's not something they support, so not considered a bug.

#16 Updated by Roman H over 4 years ago

Understand.
How do i solve this in pFsense then? I need to duplicate conX in ipsec.conf with different p2 entries?

#17 Updated by Chris Buechler over 4 years ago

  • Status changed from Feedback to Confirmed
  • Assignee changed from Chris Buechler to Ermal Luçi

splitting con entries will suffice here. this should be straight forward, quick, and low risk, but if there are complications for any reason let's push it to 2.3.

#18 Updated by Chris Buechler over 4 years ago

  • Target version changed from 2.2.3 to 2.3

#19 Updated by Jim Thompson over 4 years ago

  • Assignee changed from Ermal Luçi to Chris Buechler

assigned to Chris, though we might get Renato to do the split.

#20 Updated by Ron Joffe about 4 years ago

I have also recently run into the same (frustrating) issue, and can provide testing once patch or 2.3 release is available.

#21 Updated by Chris Buechler almost 4 years ago

  • Status changed from Confirmed to Feedback

added a checkbox for IKEv2 P1s for "Split connections", which splits out the ipsec.conf conn entries. Confirmed this works against an ASA with multiple P2s.

#22 Updated by Roman H almost 4 years ago

Great to hear!
Is it already in night / snapshot build and worth to test?

#23 Updated by Chris Buechler almost 4 years ago

  • Status changed from Feedback to Resolved

Initiates fine from either side. Rekeys fine. works

Roman H wrote:

Is it already in night / snapshot build and worth to test?

It's in the most recent 64 bit 2.3 snapshot at least, haven't checked 32. At a minimum, can install latest snapshot and gitsync.

Also available in: Atom PDF