2019:05:03-10:34:07 KYA-FW-SG230 ipsec_starter[2156]: Starting strongSwan 4.4.1git20100610 IPsec [starter]...
2019:05:03-10:34:07 KYA-FW-SG230 ipsec_starter[2156]: no default route - cannot cope with %defaultroute!!!
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: Starting IKEv1 pluto daemon (strongSwan 4.4.1git20100610) THREADS VENDORID CISCO_QUIRKS
2019:05:03-10:34:07 KYA-FW-SG230 ipsec_starter[2162]: pluto (2168) started after 20 ms
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'curl': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'ldap': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'aes': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'des': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'blowfish': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'serpent': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'twofish': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'sha1': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'sha2': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'md5': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'random': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'x509': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'pubkey': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'pkcs1': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'pgp': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'dnskey': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'pem': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'sqlite': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'hmac': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'gmp': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'xauth': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'attr': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'attr-sql': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | plugin 'resolve': loaded successfully
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: loaded plugins: curl ldap aes des blowfish serpent twofish sha1 sha2 md5 random x509 pubkey pkcs1 pgp dnskey pem sqlite hmac gmp xauth attr attr-sql resolve
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | inserting event EVENT_REINIT_SECRET, timeout in 3600 seconds
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: including NAT-Traversal patch (Version 0.6c)
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: Using Linux 2.6 IPsec interface code
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: loading ca certificates from '/etc/ipsec.d/cacerts'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | file content is not binary ASN.1
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | -----BEGIN CERTIFICATE-----
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | -----END CERTIFICATE-----
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L0 - x509:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L1 - tbsCertificate:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L2 - DEFAULT v1:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L3 - version:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | X.509v3
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L2 - serialNumber:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L2 - signature:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L3 - algorithmIdentifier:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L4 - algorithm:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 'sha-1WithRSAEncryption'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L2 - issuer:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 'C=au, L= mytown, O=mydomain  , CN=mydomain   VPN CA, E=myemail@mydomain.org'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L2 - validity:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L3 - notBefore:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L4 - utcTime:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 'Apr 02 13:50:24 UTC 2015'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L3 - notAfter:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L4 - utcTime:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 'Jan 01 00:00:00 UTC 2038'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L2 - subject:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 'C=au, L= mytown, O=mydomain  , CN=mydomain   VPN CA, E=myemail@mydomain.org'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L2 - subjectPublicKeyInfo:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | -- > --
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L0 - subjectPublicKeyInfo:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L1 - algorithm:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L2 - algorithmIdentifier:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L3 - algorithm:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 'rsaEncryption'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L1 - subjectPublicKey:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | -- > --
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L0 - RSAPublicKey:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L1 - modulus:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L1 - publicExponent:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | -- < --
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | -- < --
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L2 - optional extensions:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L3 - extensions:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L4 - extension:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L5 - extnID:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 'subjectKeyIdentifier'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L5 - critical:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | FALSE
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L5 - extnValue:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L6 - keyIdentifier:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L4 - extension:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L5 - extnID:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 'basicConstraints'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L5 - critical:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | FALSE
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L5 - extnValue:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L6 - basicConstraints:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L7 - CA:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | TRUE
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L4 - extension:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L5 - extnID:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 'subjectAltName'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L5 - critical:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | FALSE
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L5 - extnValue:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L6 - generalNames:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L7 - generalName:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L8 - ipAddress:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | '127.0.0.1'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L1 - signatureAlgorithm:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L2 - algorithmIdentifier:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L3 - algorithm:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 'sha-1WithRSAEncryption'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L1 - signatureValue:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | signature verification:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L0 - digestInfo:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L1 - digestAlgorithm:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L2 - algorithmIdentifier:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L3 - algorithm:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 'sha-1'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | L1 - digest:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: loaded ca certificate from '/etc/ipsec.d/cacerts/VPN Signing CA.pem'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | authcert list locked by 'add_authcert'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | authcert inserted
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | authcert list unlocked by 'add_authcert'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: loading aa certificates from '/etc/ipsec.d/aacerts'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: loading ocsp certificates from '/etc/ipsec.d/ocspcerts'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: Changing to directory '/etc/ipsec.d/crls'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: loading attribute certificates from '/etc/ipsec.d/acerts'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | inserting event EVENT_LOG_DAILY, timeout in 48353 seconds
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next event EVENT_REINIT_SECRET in 3600 seconds
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | *received whack message
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next event EVENT_REINIT_SECRET in 3600 seconds
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | *received whack message
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found lo with address 127.0.0.1
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found eth0 with address 10.0.10.250
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found eth1 with address x.x.x.x
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found eth1 with address x.x.x.x
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found eth1 with address x.x.x.x
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found eth1 with address x.x.x.x
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found eth1 with address x.x.x.x
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found eth2 with address x.x.x.x
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found eth2 with address x.x.x.x
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found eth2 with address x.x.x.x
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found eth2 with address x.x.x.x
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found br0 with address 10.0.50.253
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found ppp1 with address x.x.x.x
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found ppp0 with address x.x.x.x
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface ppp0/ppp0 x.x.x.x:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface ppp0/ppp0 x.x.x.x:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface ppp1/ppp1 x.x.x.x:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface ppp1/ppp1 x.x.x.x:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface br0/br0 10.0.50.253:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface br0/br0 10.0.50.253:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth2/eth2 x.x.x.x:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth2/eth2 x.x.x.x:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth2/eth2 x.x.x.x:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth2/eth2 x.x.x.x:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth2/eth2 x.x.x.x:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth2/eth2 x.x.x.x:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth2/eth2 x.x.x.x:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth2/eth2 x.x.x.x:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth1/eth1 x.x.x.x:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth1/eth1 x.x.x.x:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth1/eth1 x.x.x.x:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth1/eth1 x.x.x.x:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth1/eth1 x.x.x.x:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth1/eth1 x.x.x.x:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth1/eth1 x.x.x.x:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth1/eth1 x.x.x.x:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth1/eth1 x.x.x.x:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth1/eth1 x.x.x.x:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth0/eth0 10.0.10.250:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface eth0/eth0 10.0.10.250:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface lo/lo 127.0.0.1:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface lo/lo 127.0.0.1:4500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | found lo with address 0000:0000:0000:0000:0000:0000:0000:0001
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: adding interface lo/lo ::1:500
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | certs and keys locked by 'free_preshared_secrets'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | certs and keys unlocked by 'free_preshard_secrets'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: loading secrets from "/etc/ipsec.secrets"
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: loaded PSK secret for x.x.x.x x.x.x.x
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | certs and keys locked by 'process_secret'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | certs and keys unlocked by 'process_secrets'
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: listening for IKE messages
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next event EVENT_REINIT_SECRET in 3600 seconds
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | *received whack message
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | from whack: got --esp=aes128-sha1
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | esp proposal: AES_CBC_128/HMAC_SHA1,
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | from whack: got --ike=aes128-sha1-modp1024
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ike proposal: AES_CBC_128/HMAC_SHA1/MODP_1024,
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: added connection description "S_mydomain to Azure Cloud"
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 10.0.10.0/24===x.x.x.x[x.x.x.x]...x.x.x.x[x.x.x.x]===10.100.0.0/24
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ike_life: 28800s; ipsec_life: 3600s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 0; policy: PSK+ENCRYPT+TUNNEL
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next event EVENT_REINIT_SECRET in 3600 seconds
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | *received whack message
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | creating state object #1 at 0x99a43b8
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ICOOKIE: ce 21 4a cf 5b 42 75 fb
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | RCOOKIE: 00 00 00 00 00 00 00 00
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | peer: 34 9c ac 22
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | state hash entry 19
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #1
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | Queuing pending Quick Mode with x.x.x.x "S_mydomain to Azure Cloud"
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: "S_mydomain to Azure Cloud" #1: initiating Main Mode
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | **emit ISAKMP Message:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | initiator cookie:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ce 21 4a cf 5b 42 75 fb
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | responder cookie:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 00 00 00 00 00 00 00 00
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_SA
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ISAKMP version: ISAKMP Version 1.0
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | exchange type: ISAKMP_XCHG_IDPROT
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | flags: none
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | message ID: 00 00 00 00
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ***emit ISAKMP Security Association Payload:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | DOI: ISAKMP_DOI_IPSEC
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ****emit IPsec DOI SIT:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ike proposal: AES_CBC_128/HMAC_SHA1/MODP_1024,
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ****emit ISAKMP Proposal Payload:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | proposal number: 0
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | protocol ID: PROTO_ISAKMP
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | SPI size: 0
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | number of transforms: 1
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | *****emit ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | transform number: 0
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ******emit ISAKMP Oakley attribute:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | [1 is OAKLEY_LIFE_SECONDS]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ******emit ISAKMP Oakley attribute:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | length/value: 28800
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ******emit ISAKMP Oakley attribute:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | [7 is AES_CBC]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ******emit ISAKMP Oakley attribute:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | [2 is HMAC_SHA1]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ******emit ISAKMP Oakley attribute:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | length/value: 128
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ******emit ISAKMP Oakley attribute:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | [1 is pre-shared key]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ******emit ISAKMP Oakley attribute:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | [2 is MODP_1024]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Transform Payload (ISAKMP): 36
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Proposal Payload: 44
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Security Association Payload: 56
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | out_vendorid(): sending [strongSwan]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ***emit ISAKMP Vendor ID Payload:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting 16 raw bytes of V_ID into ISAKMP Vendor ID Payload
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | V_ID 88 2f e5 6d 6f d2 0d bc 22 51 61 3b 2e be 5b eb
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Vendor ID Payload: 20
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | out_vendorid(): sending [Cisco-Unity]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ***emit ISAKMP Vendor ID Payload:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting 16 raw bytes of V_ID into ISAKMP Vendor ID Payload
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | V_ID 12 f5 f2 8c 45 71 68 a9 70 2d 9f e2 74 cc 01 00
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Vendor ID Payload: 20
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | out_vendorid(): sending [XAUTH]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ***emit ISAKMP Vendor ID Payload:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting 8 raw bytes of V_ID into ISAKMP Vendor ID Payload
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | V_ID 09 00 26 89 df d6 b7 12
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Vendor ID Payload: 12
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | out_vendorid(): sending [Dead Peer Detection]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ***emit ISAKMP Vendor ID Payload:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting 16 raw bytes of V_ID into ISAKMP Vendor ID Payload
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | V_ID af ca d7 13 68 a1 f1 c9 6b 86 96 fc 77 57 01 00
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Vendor ID Payload: 20
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | out_vendorid(): sending [RFC 3947]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ***emit ISAKMP Vendor ID Payload:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting 16 raw bytes of V_ID into ISAKMP Vendor ID Payload
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | V_ID 4a 13 1c 81 07 03 58 45 5c 57 28 f2 0e 95 45 2f
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Vendor ID Payload: 20
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | out_vendorid(): sending [draft-ietf-ipsec-nat-t-ike-03]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ***emit ISAKMP Vendor ID Payload:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting 16 raw bytes of V_ID into ISAKMP Vendor ID Payload
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | V_ID 7d 94 19 a6 53 10 ca 6f 2c 17 9d 92 15 52 9d 56
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Vendor ID Payload: 20
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | out_vendorid(): sending [draft-ietf-ipsec-nat-t-ike-02]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ***emit ISAKMP Vendor ID Payload:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting 16 raw bytes of V_ID into ISAKMP Vendor ID Payload
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | V_ID cd 60 46 43 35 df 21 f8 7c fd b2 fc 68 b6 a4 48
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Vendor ID Payload: 20
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | out_vendorid(): sending [draft-ietf-ipsec-nat-t-ike-02_n]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ***emit ISAKMP Vendor ID Payload:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting 16 raw bytes of V_ID into ISAKMP Vendor ID Payload
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | V_ID 90 cb 80 91 3e bb 69 6e 08 63 81 b5 ec 42 7b 1f
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Vendor ID Payload: 20
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | out_vendorid(): sending [draft-ietf-ipsec-nat-t-ike-00]
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ***emit ISAKMP Vendor ID Payload:
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting 16 raw bytes of V_ID into ISAKMP Vendor ID Payload
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | V_ID 44 85 15 2d 18 b6 bb cd 0b e8 a8 46 95 79 dd cc
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Vendor ID Payload: 20
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | emitting length of ISAKMP Message: 256
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #1
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next event EVENT_RETRANSMIT in 10 seconds for #1
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | *received whack message
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | from whack: got --esp=aes128-sha1
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | esp proposal: AES_CBC_128/HMAC_SHA1,
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | from whack: got --ike=aes128-sha1-modp1024
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ike proposal: AES_CBC_128/HMAC_SHA1/MODP_1024,
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: added connection description "S_mydomain to Azure Cloud"
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | 10.0.100.0/24===x.x.x.x[x.x.x.x]...x.x.x.x[x.x.x.x]===10.100.0.0/24
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | ike_life: 28800s; ipsec_life: 3600s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 0; policy: PSK+ENCRYPT+TUNNEL
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next event EVENT_RETRANSMIT in 10 seconds for #1
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | *received whack message
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | Queuing pending Quick Mode with x.x.x.x "S_mydomain to Azure Cloud"
2019:05:03-10:34:07 KYA-FW-SG230 pluto[2168]: | next event EVENT_RETRANSMIT in 10 seconds for #1
2019:05:03-10:34:17 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:34:17 KYA-FW-SG230 pluto[2168]: | *time to handle event
2019:05:03-10:34:17 KYA-FW-SG230 pluto[2168]: | event after this is EVENT_REINIT_SECRET in 3590 seconds
2019:05:03-10:34:17 KYA-FW-SG230 pluto[2168]: | handling event EVENT_RETRANSMIT for x.x.x.x "S_mydomain to Azure Cloud" #1
2019:05:03-10:34:17 KYA-FW-SG230 pluto[2168]: | inserting event EVENT_RETRANSMIT, timeout in 20 seconds for #1
2019:05:03-10:34:17 KYA-FW-SG230 pluto[2168]: | next event EVENT_RETRANSMIT in 20 seconds for #1
2019:05:03-10:34:37 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:34:37 KYA-FW-SG230 pluto[2168]: | *time to handle event
2019:05:03-10:34:37 KYA-FW-SG230 pluto[2168]: | event after this is EVENT_REINIT_SECRET in 3570 seconds
2019:05:03-10:34:37 KYA-FW-SG230 pluto[2168]: | handling event EVENT_RETRANSMIT for x.x.x.x "S_mydomain to Azure Cloud" #1
2019:05:03-10:34:37 KYA-FW-SG230 pluto[2168]: | inserting event EVENT_RETRANSMIT, timeout in 40 seconds for #1
2019:05:03-10:34:37 KYA-FW-SG230 pluto[2168]: | next event EVENT_RETRANSMIT in 40 seconds for #1
2019:05:03-10:35:17 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:35:17 KYA-FW-SG230 pluto[2168]: | *time to handle event
2019:05:03-10:35:17 KYA-FW-SG230 pluto[2168]: | event after this is EVENT_REINIT_SECRET in 3530 seconds
2019:05:03-10:35:17 KYA-FW-SG230 pluto[2168]: | handling event EVENT_RETRANSMIT for x.x.x.x "S_mydomain to Azure Cloud" #1
2019:05:03-10:35:17 KYA-FW-SG230 pluto[2168]: | inserting event EVENT_RETRANSMIT, timeout in 40 seconds for #1
2019:05:03-10:35:17 KYA-FW-SG230 pluto[2168]: | next event EVENT_RETRANSMIT in 40 seconds for #1
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | *received 372 bytes from x.x.x.x:500 on eth2
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | **parse ISAKMP Message:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | initiator cookie:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | 40 e7 e2 ef a9 5a 97 88
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | responder cookie:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | 00 00 00 00 00 00 00 00
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_SA
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ISAKMP version: ISAKMP Version 1.0
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | exchange type: ISAKMP_XCHG_IDPROT
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | flags: none
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | message ID: 00 00 00 00
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 372
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Security Association Payload:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 176
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | DOI: ISAKMP_DOI_IPSEC
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 24
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 24
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [01528bbbc00696121849ab9a1c5b2a5100000001]
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: received Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000009]
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: received Vendor ID payload [RFC 3947]
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [FRAGMENTATION]
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [MS-Negotiation Discovery Capable]
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [Vid-Initial-Contact]
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [IKE CGA version 1]
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ****parse IPsec DOI SIT:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ****parse ISAKMP Proposal Payload:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 164
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | proposal number: 1
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | protocol ID: PROTO_ISAKMP
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | SPI size: 0
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | number of transforms: 4
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_T
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 40
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | transform number: 1
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 256
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_T
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 40
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | transform number: 2
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 256
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_T
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 40
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | transform number: 3
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 128
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length: 36
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | transform number: 4
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 5
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | preparse_isakmp_policy: peer requests PSK authentication
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: initial Main Mode message received on x.x.x.x:500 but no connection has been authorized with policy=PSK
2019:05:03-10:35:44 KYA-FW-SG230 pluto[2168]: | next event EVENT_RETRANSMIT in 13 seconds for #1
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | *received 372 bytes from x.x.x.x:500 on eth2
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | **parse ISAKMP Message:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | initiator cookie:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | 40 e7 e2 ef a9 5a 97 88
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | responder cookie:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | 00 00 00 00 00 00 00 00
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_SA
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ISAKMP version: ISAKMP Version 1.0
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | exchange type: ISAKMP_XCHG_IDPROT
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | flags: none
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | message ID: 00 00 00 00
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 372
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Security Association Payload:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 176
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | DOI: ISAKMP_DOI_IPSEC
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 24
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 24
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [01528bbbc00696121849ab9a1c5b2a5100000001]
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: received Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000009]
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: received Vendor ID payload [RFC 3947]
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [FRAGMENTATION]
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [MS-Negotiation Discovery Capable]
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [Vid-Initial-Contact]
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [IKE CGA version 1]
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ****parse IPsec DOI SIT:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ****parse ISAKMP Proposal Payload:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 164
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | proposal number: 1
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | protocol ID: PROTO_ISAKMP
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | SPI size: 0
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | number of transforms: 4
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_T
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 40
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | transform number: 1
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 256
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_T
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 40
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | transform number: 2
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 256
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_T
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 40
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | transform number: 3
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 128
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length: 36
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | transform number: 4
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 5
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | preparse_isakmp_policy: peer requests PSK authentication
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: initial Main Mode message received on x.x.x.x:500 but no connection has been authorized with policy=PSK
2019:05:03-10:35:45 KYA-FW-SG230 pluto[2168]: | next event EVENT_RETRANSMIT in 12 seconds for #1
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | *received 372 bytes from x.x.x.x:500 on eth2
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | **parse ISAKMP Message:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | initiator cookie:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | 40 e7 e2 ef a9 5a 97 88
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | responder cookie:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | 00 00 00 00 00 00 00 00
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_SA
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ISAKMP version: ISAKMP Version 1.0
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | exchange type: ISAKMP_XCHG_IDPROT
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | flags: none
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | message ID: 00 00 00 00
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 372
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Security Association Payload:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 176
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | DOI: ISAKMP_DOI_IPSEC
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 24
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 24
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [01528bbbc00696121849ab9a1c5b2a5100000001]
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: received Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000009]
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: received Vendor ID payload [RFC 3947]
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [FRAGMENTATION]
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [MS-Negotiation Discovery Capable]
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [Vid-Initial-Contact]
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [IKE CGA version 1]
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ****parse IPsec DOI SIT:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ****parse ISAKMP Proposal Payload:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 164
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | proposal number: 1
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | protocol ID: PROTO_ISAKMP
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | SPI size: 0
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | number of transforms: 4
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_T
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 40
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | transform number: 1
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 256
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_T
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 40
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | transform number: 2
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 256
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_T
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 40
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | transform number: 3
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 128
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length: 36
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | transform number: 4
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 5
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | preparse_isakmp_policy: peer requests PSK authentication
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: initial Main Mode message received on x.x.x.x:500 but no connection has been authorized with policy=PSK
2019:05:03-10:35:46 KYA-FW-SG230 pluto[2168]: | next event EVENT_RETRANSMIT in 11 seconds for #1
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | *received 372 bytes from x.x.x.x:500 on eth2
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | **parse ISAKMP Message:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | initiator cookie:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | 40 e7 e2 ef a9 5a 97 88
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | responder cookie:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | 00 00 00 00 00 00 00 00
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_SA
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ISAKMP version: ISAKMP Version 1.0
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | exchange type: ISAKMP_XCHG_IDPROT
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | flags: none
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | message ID: 00 00 00 00
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 372
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Security Association Payload:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 176
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | DOI: ISAKMP_DOI_IPSEC
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 24
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 24
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_VID
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ***parse ISAKMP Vendor ID Payload:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 20
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [01528bbbc00696121849ab9a1c5b2a5100000001]
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: received Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000009]
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: received Vendor ID payload [RFC 3947]
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [FRAGMENTATION]
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [MS-Negotiation Discovery Capable]
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [Vid-Initial-Contact]
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: ignoring Vendor ID payload [IKE CGA version 1]
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ****parse IPsec DOI SIT:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ****parse ISAKMP Proposal Payload:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 164
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | proposal number: 1
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | protocol ID: PROTO_ISAKMP
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | SPI size: 0
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | number of transforms: 4
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_T
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 40
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | transform number: 1
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 256
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_T
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 40
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | transform number: 2
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 256
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_T
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 40
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | transform number: 3
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 7
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_KEY_LENGTH
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 128
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | *****parse ISAKMP Transform Payload (ISAKMP):
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next payload type: ISAKMP_NEXT_NONE
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length: 36
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | transform number: 4
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | transform ID: KEY_IKE
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 5
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_HASH_ALGORITHM
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_GROUP_DESCRIPTION
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 2
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_TYPE
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 1
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | ******parse ISAKMP Oakley attribute:
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | length/value: 4
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | preparse_isakmp_policy: peer requests PSK authentication
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: packet from x.x.x.x:500: initial Main Mode message received on x.x.x.x:500 but no connection has been authorized with policy=PSK
2019:05:03-10:35:49 KYA-FW-SG230 pluto[2168]: | next event EVENT_RETRANSMIT in 8 seconds for #1
2019:05:03-10:35:57 KYA-FW-SG230 pluto[2168]: |
2019:05:03-10:35:57 KYA-FW-SG230 pluto[2168]: | *time to handle event
2019:05:03-10:35:57 KYA-FW-SG230 pluto[2168]: | event after this is EVENT_REINIT_SECRET in 3490 seconds
2019:05:03-10:35:57 KYA-FW-SG230 pluto[2168]: | handling event EVENT_RETRANSMIT for x.x.x.x "S_mydomain to Azure Cloud" #1
2019:05:03-10:35:57 KYA-FW-SG230 pluto[2168]: | inserting event EVENT_RETRANSMIT, timeout in 40 seconds for #1
2019:05:03-10:35:57 KYA-FW-SG230 pluto[2168]: | next event EVENT_RETRANSMIT in 40 seconds for #1