2005:07:08-16:39:35 (none) pluto[4365]: | *time to handle event
2005:07:08-16:39:35 (none) pluto[4365]: | event after this is EVENT_SHUNT_SCAN in 104 seconds
2005:07:08-16:39:35 (none) pluto[4365]: | next event EVENT_SHUNT_SCAN in 104 seconds
2005:07:08-16:40:15 (none) pluto[4365]: | 
2005:07:08-16:40:15 (none) pluto[4365]: | *received 228 bytes from 83.224.64.55:57876 on eth0
2005:07:08-16:40:15 (none) pluto[4365]: | **parse ISAKMP Message:
2005:07:08-16:40:15 (none) pluto[4365]: | initiator cookie:
2005:07:08-16:40:15 (none) pluto[4365]: | 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:15 (none) pluto[4365]: | responder cookie:
2005:07:08-16:40:15 (none) pluto[4365]: | 00 00 00 00 00 00 00 00
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_SA
2005:07:08-16:40:15 (none) pluto[4365]: | ISAKMP version: ISAKMP Version 1.0
2005:07:08-16:40:15 (none) pluto[4365]: | exchange type: ISAKMP_XCHG_IDPROT
2005:07:08-16:40:15 (none) pluto[4365]: | flags: none
2005:07:08-16:40:15 (none) pluto[4365]: | message ID: 00 00 00 00
2005:07:08-16:40:15 (none) pluto[4365]: | length: 228
2005:07:08-16:40:15 (none) pluto[4365]: | The xchg type is ISAKMP_XCHG_IDPROT (2)
2005:07:08-16:40:15 (none) pluto[4365]: | ***parse ISAKMP Security Association Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_VID
2005:07:08-16:40:15 (none) pluto[4365]: | length: 56
2005:07:08-16:40:15 (none) pluto[4365]: | DOI: ISAKMP_DOI_IPSEC
2005:07:08-16:40:15 (none) pluto[4365]: | ***parse ISAKMP Vendor ID Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_VID
2005:07:08-16:40:15 (none) pluto[4365]: | length: 12
2005:07:08-16:40:15 (none) pluto[4365]: | ***parse ISAKMP Vendor ID Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_VID
2005:07:08-16:40:15 (none) pluto[4365]: | length: 12
2005:07:08-16:40:15 (none) pluto[4365]: | ***parse ISAKMP Vendor ID Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_VID
2005:07:08-16:40:15 (none) pluto[4365]: | length: 20
2005:07:08-16:40:15 (none) pluto[4365]: | ***parse ISAKMP Vendor ID Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_VID
2005:07:08-16:40:15 (none) pluto[4365]: | length: 20
2005:07:08-16:40:15 (none) pluto[4365]: | ***parse ISAKMP Vendor ID Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_VID
2005:07:08-16:40:15 (none) pluto[4365]: | length: 20
2005:07:08-16:40:15 (none) pluto[4365]: | ***parse ISAKMP Vendor ID Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_VID
2005:07:08-16:40:15 (none) pluto[4365]: | length: 20
2005:07:08-16:40:15 (none) pluto[4365]: | ***parse ISAKMP Vendor ID Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_VID
2005:07:08-16:40:15 (none) pluto[4365]: | length: 20
2005:07:08-16:40:15 (none) pluto[4365]: | ***parse ISAKMP Vendor ID Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:15 (none) pluto[4365]: | length: 20
2005:07:08-16:40:15 (none) pluto[4365]: packet from 83.224.64.55:57876: ignoring Vendor ID payload [da8e937880010000]
2005:07:08-16:40:15 (none) pluto[4365]: | VID: da 8e 93 78 80 01 00 00
2005:07:08-16:40:15 (none) pluto[4365]: packet from 83.224.64.55:57876: ignoring Vendor ID payload [XAUTH]
2005:07:08-16:40:15 (none) pluto[4365]: | VID: 09 00 26 89 df d6 b7 12
2005:07:08-16:40:15 (none) pluto[4365]: packet from 83.224.64.55:57876: received Vendor ID payload [draft-ietf-ipsec-nat-t-ike-03]
2005:07:08-16:40:15 (none) pluto[4365]: | VID: 7d 94 19 a6 53 10 ca 6f 2c 17 9d 92 15 52 9d 56
2005:07:08-16:40:15 (none) pluto[4365]: packet from 83.224.64.55:57876: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]
2005:07:08-16:40:15 (none) pluto[4365]: | VID: 90 cb 80 91 3e bb 69 6e 08 63 81 b5 ec 42 7b 1f
2005:07:08-16:40:15 (none) pluto[4365]: packet from 83.224.64.55:57876: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-00]
2005:07:08-16:40:15 (none) pluto[4365]: | VID: 44 85 15 2d 18 b6 bb cd 0b e8 a8 46 95 79 dd cc
2005:07:08-16:40:15 (none) pluto[4365]: packet from 83.224.64.55:57876: ignoring Vendor ID payload [4a131c8107035845...]
2005:07:08-16:40:15 (none) pluto[4365]: | VID: 4a 13 1c 81 07 03 58 45 5c 57 28 f2 0e 95 45 2f
2005:07:08-16:40:15 (none) pluto[4365]: packet from 83.224.64.55:57876: ignoring Vendor ID payload [101fb0b35c5a4f4c...]
2005:07:08-16:40:15 (none) pluto[4365]: | VID: 10 1f b0 b3 5c 5a 4f 4c 08 b9 19 f1 cf 53 c9 6a
2005:07:08-16:40:15 (none) pluto[4365]: packet from 83.224.64.55:57876: ignoring Vendor ID payload [Cisco-Unity]
2005:07:08-16:40:15 (none) pluto[4365]: | VID: 12 f5 f2 8c 45 71 68 a9 70 2d 9f e2 74 cc 01 00
2005:07:08-16:40:15 (none) pluto[4365]: | ****parse IPsec DOI SIT:
2005:07:08-16:40:15 (none) pluto[4365]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
2005:07:08-16:40:15 (none) pluto[4365]: | ****parse ISAKMP Proposal Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:15 (none) pluto[4365]: | length: 44
2005:07:08-16:40:15 (none) pluto[4365]: | proposal number: 1
2005:07:08-16:40:15 (none) pluto[4365]: | protocol ID: PROTO_ISAKMP
2005:07:08-16:40:15 (none) pluto[4365]: | SPI size: 0
2005:07:08-16:40:15 (none) pluto[4365]: | number of transforms: 1
2005:07:08-16:40:15 (none) pluto[4365]: | *****parse ISAKMP Transform Payload (ISAKMP):
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:15 (none) pluto[4365]: | length: 36
2005:07:08-16:40:15 (none) pluto[4365]: | transform number: 1
2005:07:08-16:40:15 (none) pluto[4365]: | transform ID: KEY_IKE
2005:07:08-16:40:15 (none) pluto[4365]: | ******parse ISAKMP Oakley attribute:
2005:07:08-16:40:15 (none) pluto[4365]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2005:07:08-16:40:15 (none) pluto[4365]: | length/value: 5
2005:07:08-16:40:15 (none) pluto[4365]: | ******parse ISAKMP Oakley attribute:
2005:07:08-16:40:15 (none) pluto[4365]: | af+type: OAKLEY_HASH_ALGORITHM
2005:07:08-16:40:15 (none) pluto[4365]: | length/value: 1
2005:07:08-16:40:15 (none) pluto[4365]: | ******parse ISAKMP Oakley attribute:
2005:07:08-16:40:15 (none) pluto[4365]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2005:07:08-16:40:15 (none) pluto[4365]: | length/value: 3
2005:07:08-16:40:15 (none) pluto[4365]: | ******parse ISAKMP Oakley attribute:
2005:07:08-16:40:15 (none) pluto[4365]: | af+type: OAKLEY_GROUP_DESCRIPTION
2005:07:08-16:40:15 (none) pluto[4365]: | length/value: 5
2005:07:08-16:40:15 (none) pluto[4365]: | ******parse ISAKMP Oakley attribute:
2005:07:08-16:40:15 (none) pluto[4365]: | af+type: OAKLEY_LIFE_TYPE
2005:07:08-16:40:15 (none) pluto[4365]: | length/value: 1
2005:07:08-16:40:15 (none) pluto[4365]: | ******parse ISAKMP Oakley attribute:
2005:07:08-16:40:15 (none) pluto[4365]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2005:07:08-16:40:15 (none) pluto[4365]: | length/value: 4
2005:07:08-16:40:15 (none) pluto[4365]: | instantiated "D_VPN__roadwarrior__X509_0" for 83.224.64.55
2005:07:08-16:40:15 (none) pluto[4365]: | creating state object #6086 at 0x80f2da0
2005:07:08-16:40:15 (none) pluto[4365]: | ICOOKIE: 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:15 (none) pluto[4365]: | RCOOKIE: 98 4c cf da c6 4c c7 58
2005:07:08-16:40:15 (none) pluto[4365]: | peer: 53 e0 40 37
2005:07:08-16:40:15 (none) pluto[4365]: | state hash entry 23
2005:07:08-16:40:15 (none) pluto[4365]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #6086
2005:07:08-16:40:15 (none) pluto[4365]: "D_VPN__roadwarrior__X509_0"[2] 83.224.64.55:57876 #6086: responding to Main Mode from unknown peer 83.224.64.55:57876
2005:07:08-16:40:15 (none) pluto[4365]: | **emit ISAKMP Message:
2005:07:08-16:40:15 (none) pluto[4365]: | initiator cookie:
2005:07:08-16:40:15 (none) pluto[4365]: | 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:15 (none) pluto[4365]: | responder cookie:
2005:07:08-16:40:15 (none) pluto[4365]: | 98 4c cf da c6 4c c7 58
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_SA
2005:07:08-16:40:15 (none) pluto[4365]: | ISAKMP version: ISAKMP Version 1.0
2005:07:08-16:40:15 (none) pluto[4365]: | exchange type: ISAKMP_XCHG_IDPROT
2005:07:08-16:40:15 (none) pluto[4365]: | flags: none
2005:07:08-16:40:15 (none) pluto[4365]: | message ID: 00 00 00 00
2005:07:08-16:40:15 (none) pluto[4365]: | ***emit ISAKMP Security Association Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:15 (none) pluto[4365]: | DOI: ISAKMP_DOI_IPSEC
2005:07:08-16:40:15 (none) pluto[4365]: | ****parse IPsec DOI SIT:
2005:07:08-16:40:15 (none) pluto[4365]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
2005:07:08-16:40:15 (none) pluto[4365]: | ****parse ISAKMP Proposal Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:15 (none) pluto[4365]: | length: 44
2005:07:08-16:40:15 (none) pluto[4365]: | proposal number: 1
2005:07:08-16:40:15 (none) pluto[4365]: | protocol ID: PROTO_ISAKMP
2005:07:08-16:40:15 (none) pluto[4365]: | SPI size: 0
2005:07:08-16:40:15 (none) pluto[4365]: | number of transforms: 1
2005:07:08-16:40:15 (none) pluto[4365]: | *****parse ISAKMP Transform Payload (ISAKMP):
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:15 (none) pluto[4365]: | length: 36
2005:07:08-16:40:15 (none) pluto[4365]: | transform number: 1
2005:07:08-16:40:15 (none) pluto[4365]: | transform ID: KEY_IKE
2005:07:08-16:40:15 (none) pluto[4365]: | ******parse ISAKMP Oakley attribute:
2005:07:08-16:40:15 (none) pluto[4365]: | af+type: OAKLEY_ENCRYPTION_ALGORITHM
2005:07:08-16:40:15 (none) pluto[4365]: | length/value: 5
2005:07:08-16:40:15 (none) pluto[4365]: | [5 is OAKLEY_3DES_CBC]
2005:07:08-16:40:15 (none) pluto[4365]: | ******parse ISAKMP Oakley attribute:
2005:07:08-16:40:15 (none) pluto[4365]: | af+type: OAKLEY_HASH_ALGORITHM
2005:07:08-16:40:15 (none) pluto[4365]: | length/value: 1
2005:07:08-16:40:15 (none) pluto[4365]: | [1 is OAKLEY_MD5]
2005:07:08-16:40:15 (none) pluto[4365]: | ******parse ISAKMP Oakley attribute:
2005:07:08-16:40:15 (none) pluto[4365]: | af+type: OAKLEY_AUTHENTICATION_METHOD
2005:07:08-16:40:15 (none) pluto[4365]: | length/value: 3
2005:07:08-16:40:15 (none) pluto[4365]: | [3 is OAKLEY_RSA_SIG]
2005:07:08-16:40:15 (none) pluto[4365]: | ******parse ISAKMP Oakley attribute:
2005:07:08-16:40:15 (none) pluto[4365]: | af+type: OAKLEY_GROUP_DESCRIPTION
2005:07:08-16:40:15 (none) pluto[4365]: | length/value: 5
2005:07:08-16:40:15 (none) pluto[4365]: | [5 is OAKLEY_GROUP_MODP1536]
2005:07:08-16:40:15 (none) pluto[4365]: | ******parse ISAKMP Oakley attribute:
2005:07:08-16:40:15 (none) pluto[4365]: | af+type: OAKLEY_LIFE_TYPE
2005:07:08-16:40:15 (none) pluto[4365]: | length/value: 1
2005:07:08-16:40:15 (none) pluto[4365]: | [1 is OAKLEY_LIFE_SECONDS]
2005:07:08-16:40:15 (none) pluto[4365]: | ******parse ISAKMP Oakley attribute:
2005:07:08-16:40:15 (none) pluto[4365]: | af+type: OAKLEY_LIFE_DURATION (variable length)
2005:07:08-16:40:15 (none) pluto[4365]: | length/value: 4
2005:07:08-16:40:15 (none) pluto[4365]: | long duration: 28800
2005:07:08-16:40:15 (none) pluto[4365]: | Oakley Transform 1 accepted
2005:07:08-16:40:15 (none) pluto[4365]: | ****emit IPsec DOI SIT:
2005:07:08-16:40:15 (none) pluto[4365]: | IPsec DOI SIT: SIT_IDENTITY_ONLY
2005:07:08-16:40:15 (none) pluto[4365]: | ****emit ISAKMP Proposal Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:15 (none) pluto[4365]: | proposal number: 1
2005:07:08-16:40:15 (none) pluto[4365]: | protocol ID: PROTO_ISAKMP
2005:07:08-16:40:15 (none) pluto[4365]: | SPI size: 0
2005:07:08-16:40:15 (none) pluto[4365]: | number of transforms: 1
2005:07:08-16:40:15 (none) pluto[4365]: | *****emit ISAKMP Transform Payload (ISAKMP):
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:15 (none) pluto[4365]: | transform number: 1
2005:07:08-16:40:15 (none) pluto[4365]: | transform ID: KEY_IKE
2005:07:08-16:40:15 (none) pluto[4365]: | emitting 28 raw bytes of attributes into ISAKMP Transform Payload (ISAKMP)
2005:07:08-16:40:15 (none) pluto[4365]: | attributes 80 01 00 05 80 02 00 01 80 03 00 03 80 04 00 05
2005:07:08-16:40:15 (none) pluto[4365]: | 80 0b 00 01 00 0c 00 04 00 00 70 80
2005:07:08-16:40:15 (none) pluto[4365]: | emitting length of ISAKMP Transform Payload (ISAKMP): 36
2005:07:08-16:40:15 (none) pluto[4365]: | emitting length of ISAKMP Proposal Payload: 44
2005:07:08-16:40:15 (none) pluto[4365]: | emitting length of ISAKMP Security Association Payload: 56
2005:07:08-16:40:15 (none) pluto[4365]: | out_vendorid(): sending [draft-ietf-ipsec-nat-t-ike-03]
2005:07:08-16:40:15 (none) pluto[4365]: | ***emit ISAKMP Vendor ID Payload:
2005:07:08-16:40:15 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:15 (none) pluto[4365]: | emitting 16 raw bytes of V_ID into ISAKMP Vendor ID Payload
2005:07:08-16:40:15 (none) pluto[4365]: | V_ID 7d 94 19 a6 53 10 ca 6f 2c 17 9d 92 15 52 9d 56
2005:07:08-16:40:15 (none) pluto[4365]: | emitting length of ISAKMP Vendor ID Payload: 20
2005:07:08-16:40:15 (none) pluto[4365]: | emitting length of ISAKMP Message: 104
2005:07:08-16:40:15 (none) pluto[4365]: "D_VPN__roadwarrior__X509_0"[2] 83.224.64.55:57876 #6086: transition from state (null) to state STATE_MAIN_R1
2005:07:08-16:40:15 (none) pluto[4365]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #6086
2005:07:08-16:40:15 (none) pluto[4365]: | next event EVENT_RETRANSMIT in 10 seconds for #6086
2005:07:08-16:40:18 (none) pluto[4365]: | 
2005:07:08-16:40:18 (none) pluto[4365]: | *received 308 bytes from 83.224.64.55:57876 on eth0
2005:07:08-16:40:18 (none) pluto[4365]: | **parse ISAKMP Message:
2005:07:08-16:40:18 (none) pluto[4365]: | initiator cookie:
2005:07:08-16:40:18 (none) pluto[4365]: | 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:18 (none) pluto[4365]: | responder cookie:
2005:07:08-16:40:18 (none) pluto[4365]: | 98 4c cf da c6 4c c7 58
2005:07:08-16:40:18 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_KE
2005:07:08-16:40:18 (none) pluto[4365]: | ISAKMP version: ISAKMP Version 1.0
2005:07:08-16:40:18 (none) pluto[4365]: | exchange type: ISAKMP_XCHG_IDPROT
2005:07:08-16:40:18 (none) pluto[4365]: | flags: none
2005:07:08-16:40:18 (none) pluto[4365]: | message ID: 00 00 00 00
2005:07:08-16:40:18 (none) pluto[4365]: | length: 308
2005:07:08-16:40:18 (none) pluto[4365]: | The xchg type is ISAKMP_XCHG_IDPROT (2)
2005:07:08-16:40:18 (none) pluto[4365]: | ICOOKIE: 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:18 (none) pluto[4365]: | RCOOKIE: 98 4c cf da c6 4c c7 58
2005:07:08-16:40:18 (none) pluto[4365]: | peer: 53 e0 40 37
2005:07:08-16:40:18 (none) pluto[4365]: | state hash entry 23
2005:07:08-16:40:18 (none) pluto[4365]: | peer and cookies match, provided msgid 00000000 vs 00000000
2005:07:08-16:40:18 (none) pluto[4365]: | state object #6086 found, in STATE_MAIN_R1
2005:07:08-16:40:18 (none) pluto[4365]: | ***parse ISAKMP Key Exchange Payload:
2005:07:08-16:40:18 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONCE
2005:07:08-16:40:18 (none) pluto[4365]: | length: 196
2005:07:08-16:40:18 (none) pluto[4365]: | ***parse ISAKMP Nonce Payload:
2005:07:08-16:40:18 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NAT-D
2005:07:08-16:40:18 (none) pluto[4365]: | length: 44
2005:07:08-16:40:18 (none) pluto[4365]: | ***parse ISAKMP NAT-D Payload:
2005:07:08-16:40:18 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NAT-D
2005:07:08-16:40:18 (none) pluto[4365]: | length: 20
2005:07:08-16:40:18 (none) pluto[4365]: | ***parse ISAKMP NAT-D Payload:
2005:07:08-16:40:18 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:18 (none) pluto[4365]: | length: 20
2005:07:08-16:40:18 (none) pluto[4365]: | **emit ISAKMP Message:
2005:07:08-16:40:18 (none) pluto[4365]: | initiator cookie:
2005:07:08-16:40:18 (none) pluto[4365]: | 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:18 (none) pluto[4365]: | responder cookie:
2005:07:08-16:40:18 (none) pluto[4365]: | 98 4c cf da c6 4c c7 58
2005:07:08-16:40:18 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_KE
2005:07:08-16:40:18 (none) pluto[4365]: | ISAKMP version: ISAKMP Version 1.0
2005:07:08-16:40:18 (none) pluto[4365]: | exchange type: ISAKMP_XCHG_IDPROT
2005:07:08-16:40:18 (none) pluto[4365]: | flags: none
2005:07:08-16:40:18 (none) pluto[4365]: | message ID: 00 00 00 00
2005:07:08-16:40:18 (none) pluto[4365]: "D_VPN__roadwarrior__X509_0"[2] 83.224.64.55:57876 #6086: NAT-Traversal: Result using draft-ietf-ipsec-nat-t-ike-02/03: peer is NATed
2005:07:08-16:40:18 (none) pluto[4365]: | inserting event EVENT_NAT_T_KEEPALIVE, timeout in 60 seconds
2005:07:08-16:40:18 (none) pluto[4365]: | ***emit ISAKMP Key Exchange Payload:
2005:07:08-16:40:18 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONCE
2005:07:08-16:40:18 (none) pluto[4365]: | emitting 192 raw bytes of keyex value into ISAKMP Key Exchange Payload
2005:07:08-16:40:18 (none) pluto[4365]: | keyex value 35 3b 2f 37 b8 6b 69 cc a8 33 82 a0 e5 ea fa 94
2005:07:08-16:40:18 (none) pluto[4365]: | fd 87 76 00 ef 9d 63 d2 53 c0 c4 bb ed 2b 98 7d
2005:07:08-16:40:18 (none) pluto[4365]: | 16 a6 20 73 47 37 c9 9d 0e b5 2c c1 ef ef d8 27
2005:07:08-16:40:18 (none) pluto[4365]: | 22 5e e2 63 63 ae fc 20 ab a7 f6 dc a7 fe 9a 94
2005:07:08-16:40:18 (none) pluto[4365]: | bf 80 66 f1 be 11 e0 5a cb 9c 71 ef 25 c6 4f 6d
2005:07:08-16:40:18 (none) pluto[4365]: | d4 6e 34 c4 73 01 5d 29 25 38 2c 04 41 4d 27 19
2005:07:08-16:40:18 (none) pluto[4365]: | 29 49 34 28 c7 65 ef 27 54 f4 7e dc 09 f9 41 b3
2005:07:08-16:40:18 (none) pluto[4365]: | fd 68 19 01 ec bc c3 c9 a0 1b bd cb 9c 07 3e 9a
2005:07:08-16:40:18 (none) pluto[4365]: | 08 2a 9a e7 3a ea 6f c2 7d c4 8e 93 a4 79 58 15
2005:07:08-16:40:18 (none) pluto[4365]: | 91 80 97 0d c4 c2 70 25 7f 0f 1c 1b 6b a2 da e4
2005:07:08-16:40:18 (none) pluto[4365]: | 4e c5 6c 1a 92 e2 75 80 ae 81 2f ce aa 11 59 21
2005:07:08-16:40:18 (none) pluto[4365]: | d4 56 79 6c a9 93 7a d7 60 1a 22 db 8c dc 95 0e
2005:07:08-16:40:18 (none) pluto[4365]: | emitting length of ISAKMP Key Exchange Payload: 196
2005:07:08-16:40:18 (none) pluto[4365]: | ***emit ISAKMP Nonce Payload:
2005:07:08-16:40:18 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:18 (none) pluto[4365]: | emitting 16 raw bytes of Nr into ISAKMP Nonce Payload
2005:07:08-16:40:18 (none) pluto[4365]: | Nr 1a e7 35 59 70 e3 88 9b 9a b7 1b 16 1f ef 3a f3
2005:07:08-16:40:18 (none) pluto[4365]: | emitting length of ISAKMP Nonce Payload: 20
2005:07:08-16:40:18 (none) pluto[4365]: | ***emit ISAKMP NAT-D Payload:
2005:07:08-16:40:18 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NAT-D
2005:07:08-16:40:18 (none) pluto[4365]: | emitting 16 raw bytes of NAT-D into ISAKMP NAT-D Payload
2005:07:08-16:40:18 (none) pluto[4365]: | NAT-D 93 bd 87 9b 65 61 cf ad f7 95 80 fc a8 35 b4 59
2005:07:08-16:40:18 (none) pluto[4365]: | emitting length of ISAKMP NAT-D Payload: 20
2005:07:08-16:40:18 (none) pluto[4365]: | ***emit ISAKMP NAT-D Payload:
2005:07:08-16:40:18 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:18 (none) pluto[4365]: | emitting 16 raw bytes of NAT-D into ISAKMP NAT-D Payload
2005:07:08-16:40:18 (none) pluto[4365]: | NAT-D 09 d3 df 03 d1 10 d3 a4 aa a5 fd 9f 92 e4 bd 85
2005:07:08-16:40:18 (none) pluto[4365]: | emitting length of ISAKMP NAT-D Payload: 20
2005:07:08-16:40:18 (none) pluto[4365]: | emitting length of ISAKMP Message: 284
2005:07:08-16:40:18 (none) pluto[4365]: "D_VPN__roadwarrior__X509_0"[2] 83.224.64.55:57876 #6086: transition from state STATE_MAIN_R1 to state STATE_MAIN_R2
2005:07:08-16:40:18 (none) pluto[4365]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #6086
2005:07:08-16:40:18 (none) pluto[4365]: | next event EVENT_RETRANSMIT in 10 seconds for #6086
2005:07:08-16:40:20 (none) pluto[4365]: | 
2005:07:08-16:40:20 (none) pluto[4365]: | *received 1196 bytes from 83.224.64.55:57977 on eth0
2005:07:08-16:40:20 (none) pluto[4365]: | **parse ISAKMP Message:
2005:07:08-16:40:20 (none) pluto[4365]: | initiator cookie:
2005:07:08-16:40:20 (none) pluto[4365]: | 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:20 (none) pluto[4365]: | responder cookie:
2005:07:08-16:40:20 (none) pluto[4365]: | 98 4c cf da c6 4c c7 58
2005:07:08-16:40:20 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_ID
2005:07:08-16:40:20 (none) pluto[4365]: | ISAKMP version: ISAKMP Version 1.0
2005:07:08-16:40:20 (none) pluto[4365]: | exchange type: ISAKMP_XCHG_IDPROT
2005:07:08-16:40:20 (none) pluto[4365]: | flags: ISAKMP_FLAG_ENCRYPTION
2005:07:08-16:40:20 (none) pluto[4365]: | message ID: 00 00 00 00
2005:07:08-16:40:20 (none) pluto[4365]: | length: 1196
2005:07:08-16:40:20 (none) pluto[4365]: | The xchg type is ISAKMP_XCHG_IDPROT (2)
2005:07:08-16:40:20 (none) pluto[4365]: | ICOOKIE: 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:20 (none) pluto[4365]: | RCOOKIE: 98 4c cf da c6 4c c7 58
2005:07:08-16:40:20 (none) pluto[4365]: | peer: 53 e0 40 37
2005:07:08-16:40:20 (none) pluto[4365]: | state hash entry 23
2005:07:08-16:40:20 (none) pluto[4365]: | peer and cookies match, provided msgid 00000000 vs 00000000
2005:07:08-16:40:20 (none) pluto[4365]: | state object #6086 found, in STATE_MAIN_R2
2005:07:08-16:40:20 (none) pluto[4365]: | ***parse ISAKMP Identification Payload:
2005:07:08-16:40:20 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_CERT
2005:07:08-16:40:20 (none) pluto[4365]: | length: 30
2005:07:08-16:40:20 (none) pluto[4365]: | ID type: ID_USER_FQDN
2005:07:08-16:40:20 (none) pluto[4365]: | DOI specific A: 0
2005:07:08-16:40:20 (none) pluto[4365]: | DOI specific B: 0
2005:07:08-16:40:20 (none) pluto[4365]: | ***parse ISAKMP Certificate Payload:
2005:07:08-16:40:20 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_CR
2005:07:08-16:40:20 (none) pluto[4365]: | length: 971
2005:07:08-16:40:20 (none) pluto[4365]: | cert encoding: CERT_X509_SIGNATURE
2005:07:08-16:40:20 (none) pluto[4365]: | ***parse ISAKMP Certificate RequestPayload:
2005:07:08-16:40:20 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_SIG
2005:07:08-16:40:20 (none) pluto[4365]: | length: 5
2005:07:08-16:40:20 (none) pluto[4365]: | cert type: CERT_X509_SIGNATURE
2005:07:08-16:40:20 (none) pluto[4365]: | ***parse ISAKMP Signature Payload:
2005:07:08-16:40:20 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_N
2005:07:08-16:40:20 (none) pluto[4365]: | length: 132
2005:07:08-16:40:20 (none) pluto[4365]: | ***parse ISAKMP Notification Payload:
2005:07:08-16:40:20 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:20 (none) pluto[4365]: | length: 28
2005:07:08-16:40:20 (none) pluto[4365]: | DOI: ISAKMP_DOI_IPSEC
2005:07:08-16:40:20 (none) pluto[4365]: | protocol ID: 1
2005:07:08-16:40:20 (none) pluto[4365]: | SPI size: 16
2005:07:08-16:40:20 (none) pluto[4365]: | Notify Message Type: IPSEC_INITIAL_CONTACT
2005:07:08-16:40:20 (none) pluto[4365]: | removing 2 bytes of padding
2005:07:08-16:40:20 (none) pluto[4365]: "D_VPN__roadwarrior__X509_0"[2] 83.224.64.55:57876 #6086: ignoring informational payload, type IPSEC_INITIAL_CONTACT
2005:07:08-16:40:20 (none) pluto[4365]: | info: 85 06 22 cb b3 5d a5 0c 98 4c cf da c6 4c c7 58
2005:07:08-16:40:20 (none) pluto[4365]: "D_VPN__roadwarrior__X509_0"[2] 83.224.64.55:57876 #6086: Main mode peer ID is ID_USER_FQDN: 'icrca@icrcosmetics.com'
2005:07:08-16:40:20 (none) pluto[4365]: | L0 - certificate:
2005:07:08-16:40:20 (none) pluto[4365]: | L1 - tbsCertificate:
2005:07:08-16:40:20 (none) pluto[4365]: | L2 - DEFAULT v1:
2005:07:08-16:40:20 (none) pluto[4365]: | L3 - version:
2005:07:08-16:40:20 (none) pluto[4365]: | v3
2005:07:08-16:40:20 (none) pluto[4365]: | L2 - serialNumber:
2005:07:08-16:40:20 (none) pluto[4365]: | L2 - signature:
2005:07:08-16:40:20 (none) pluto[4365]: | L3 - sigAlg:
2005:07:08-16:40:20 (none) pluto[4365]: | 'md5WithRSAEncryption'
2005:07:08-16:40:20 (none) pluto[4365]: | L2 - issuer:
2005:07:08-16:40:20 (none) pluto[4365]: | 'C=it, ST=Italy, L=Lodi, O=ICR Cosmetics SpA, OU=IT, CN=icrcosmetics, E=icrca@icrcosmetics.com'
2005:07:08-16:40:20 (none) pluto[4365]: | L2 - validity:
2005:07:08-16:40:20 (none) pluto[4365]: | L3 - notBefore:
2005:07:08-16:40:20 (none) pluto[4365]: | 'Jul 08 14:05:08 UTC 2005'
2005:07:08-16:40:20 (none) pluto[4365]: | L3 - notAfter:
2005:07:08-16:40:20 (none) pluto[4365]: | 'Jul 07 14:05:08 UTC 2009'
2005:07:08-16:40:20 (none) pluto[4365]: | L2 - subject:
2005:07:08-16:40:20 (none) pluto[4365]: | 'C=it, ST=Italy, L=Lodi, O=ICR Cosmetics SpA, OU=IT, CN=vodafone_umts, E=icrca@icrcosmetics.com'
2005:07:08-16:40:20 (none) pluto[4365]: | L2 - subjectPublicKeyInfo:
2005:07:08-16:40:20 (none) pluto[4365]: | L3 - algorithm:
2005:07:08-16:40:20 (none) pluto[4365]: | L4 - algorithm:
2005:07:08-16:40:20 (none) pluto[4365]: | 'rsaEncryption'
2005:07:08-16:40:20 (none) pluto[4365]: | L3 - subjectPublicKey:
2005:07:08-16:40:20 (none) pluto[4365]: | L4 - RSAPublicKey:
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - modulus:
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - publicExponent:
2005:07:08-16:40:20 (none) pluto[4365]: | L2 - optional extensions:
2005:07:08-16:40:20 (none) pluto[4365]: | L3 - extensions:
2005:07:08-16:40:20 (none) pluto[4365]: | L4 - extension:
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - extnID:
2005:07:08-16:40:20 (none) pluto[4365]: | 'basicConstraints'
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - critical:
2005:07:08-16:40:20 (none) pluto[4365]: | FALSE
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - extnValue:
2005:07:08-16:40:20 (none) pluto[4365]: | L6 - basicConstraints:
2005:07:08-16:40:20 (none) pluto[4365]: | L7 - CA:
2005:07:08-16:40:20 (none) pluto[4365]: | FALSE
2005:07:08-16:40:20 (none) pluto[4365]: | L4 - extension:
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - extnID:
2005:07:08-16:40:20 (none) pluto[4365]: | 'subjectKeyIdentifier'
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - critical:
2005:07:08-16:40:20 (none) pluto[4365]: | FALSE
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - extnValue:
2005:07:08-16:40:20 (none) pluto[4365]: | L6 - keyIdentifier:
2005:07:08-16:40:20 (none) pluto[4365]: | L4 - extension:
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - extnID:
2005:07:08-16:40:20 (none) pluto[4365]: | 'authorityKeyIdentifier'
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - critical:
2005:07:08-16:40:20 (none) pluto[4365]: | FALSE
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - extnValue:
2005:07:08-16:40:20 (none) pluto[4365]: | L6 - authorityKeyIdentifier:
2005:07:08-16:40:20 (none) pluto[4365]: | L7 - keyIdentifier:
2005:07:08-16:40:20 (none) pluto[4365]: | L8 - keyIdentifier:
2005:07:08-16:40:20 (none) pluto[4365]: | L7 - authorityCertIssuer:
2005:07:08-16:40:20 (none) pluto[4365]: | L8 - generalNames:
2005:07:08-16:40:20 (none) pluto[4365]: | L9 - directoryName:
2005:07:08-16:40:20 (none) pluto[4365]: | 'C=it, ST=Italy, L=Lodi, O=ICR Cosmetics SpA, OU=IT, CN=icrcosmetics, E=icrca@icrcosmetics.com'
2005:07:08-16:40:20 (none) pluto[4365]: | L7 - authorityCertSerialNumber:
2005:07:08-16:40:20 (none) pluto[4365]: | L4 - extension:
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - extnID:
2005:07:08-16:40:20 (none) pluto[4365]: | 'keyUsage'
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - critical:
2005:07:08-16:40:20 (none) pluto[4365]: | FALSE
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - extnValue:
2005:07:08-16:40:20 (none) pluto[4365]: | L4 - extension:
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - extnID:
2005:07:08-16:40:20 (none) pluto[4365]: | 'subjectAltName'
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - critical:
2005:07:08-16:40:20 (none) pluto[4365]: | FALSE
2005:07:08-16:40:20 (none) pluto[4365]: | L5 - extnValue:
2005:07:08-16:40:20 (none) pluto[4365]: | L6 - generalNames:
2005:07:08-16:40:20 (none) pluto[4365]: | L7 - rfc822Name:
2005:07:08-16:40:20 (none) pluto[4365]: | 'icrca@icrcosmetics.com'
2005:07:08-16:40:20 (none) pluto[4365]: | L1 - signatureAlgorithm:
2005:07:08-16:40:20 (none) pluto[4365]: | L2 - algorithm:
2005:07:08-16:40:20 (none) pluto[4365]: | 'md5WithRSAEncryption'
2005:07:08-16:40:20 (none) pluto[4365]: | L1 - signature:
2005:07:08-16:40:20 (none) pluto[4365]: | Subject: 'C=it, ST=Italy, L=Lodi, O=ICR Cosmetics SpA, OU=IT, CN=vodafone_umts, E=icrca@icrcosmetics.com'
2005:07:08-16:40:20 (none) pluto[4365]: | not before : Jul 08 14:05:08 UTC 2005
2005:07:08-16:40:20 (none) pluto[4365]: | current time: Jul 08 14:40:20 UTC 2005
2005:07:08-16:40:20 (none) pluto[4365]: | not after : Jul 07 14:05:08 UTC 2009
2005:07:08-16:40:20 (none) pluto[4365]: | certificate is valid
2005:07:08-16:40:20 (none) pluto[4365]: | Issuer: 'C=it, ST=Italy, L=Lodi, O=ICR Cosmetics SpA, OU=IT, CN=icrcosmetics, E=icrca@icrcosmetics.com'
2005:07:08-16:40:20 (none) pluto[4365]: | issuer CA certificate found
2005:07:08-16:40:20 (none) pluto[4365]: | Signature Algorithm: 'md5WithRSAEncryption'
2005:07:08-16:40:20 (none) pluto[4365]: | digest: 96 51 97 68 70 e8 cf 9e f5 cf da e5 27 ca 99 d5
2005:07:08-16:40:20 (none) pluto[4365]: | decrypted signature: 
2005:07:08-16:40:20 (none) pluto[4365]: | 00 00 01 ff ff ff ff ff ff ff ff ff ff ff ff ff
2005:07:08-16:40:20 (none) pluto[4365]: | ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
2005:07:08-16:40:20 (none) pluto[4365]: | ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
2005:07:08-16:40:20 (none) pluto[4365]: | ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
2005:07:08-16:40:20 (none) pluto[4365]: | ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
2005:07:08-16:40:20 (none) pluto[4365]: | ff ff ff ff ff ff ff ff ff ff ff ff ff ff 00 30
2005:07:08-16:40:20 (none) pluto[4365]: | 20 30 0c 06 08 2a 86 48 86 f7 0d 02 05 05 00 04
2005:07:08-16:40:20 (none) pluto[4365]: | 10 96 51 97 68 70 e8 cf 9e f5 cf da e5 27 ca 99
2005:07:08-16:40:20 (none) pluto[4365]: | d5
2005:07:08-16:40:20 (none) pluto[4365]: | certificate signature is valid
2005:07:08-16:40:20 (none) pluto[4365]: | crl list locked by 'verify_x509cert'
2005:07:08-16:40:20 (none) pluto[4365]: | crl list unlocked by 'verify_x509cert'
2005:07:08-16:40:20 (none) pluto[4365]: "D_VPN__roadwarrior__X509_0"[2] 83.224.64.55:57876 #6086: Issuer CRL not found
2005:07:08-16:40:20 (none) pluto[4365]: | Subject: 'C=it, ST=Italy, L=Lodi, O=ICR Cosmetics SpA, OU=IT, CN=icrcosmetics, E=icrca@icrcosmetics.com'
2005:07:08-16:40:20 (none) pluto[4365]: | not before : Jul 08 13:58:35 UTC 2005
2005:07:08-16:40:20 (none) pluto[4365]: | current time: Jul 08 14:40:20 UTC 2005
2005:07:08-16:40:20 (none) pluto[4365]: | not after : Jul 08 13:58:35 UTC 2015
2005:07:08-16:40:20 (none) pluto[4365]: | certificate is valid
2005:07:08-16:40:20 (none) pluto[4365]: | Issuer: 'C=it, ST=Italy, L=Lodi, O=ICR Cosmetics SpA, OU=IT, CN=icrcosmetics, E=icrca@icrcosmetics.com'
2005:07:08-16:40:20 (none) pluto[4365]: | issuer CA certificate found
2005:07:08-16:40:20 (none) pluto[4365]: | Signature Algorithm: 'md5WithRSAEncryption'
2005:07:08-16:40:20 (none) pluto[4365]: | digest: d1 82 0c e7 ca be c3 9f 44 dc ba a9 93 8d 5a ae
2005:07:08-16:40:20 (none) pluto[4365]: | decrypted signature: 
2005:07:08-16:40:20 (none) pluto[4365]: | 00 00 01 ff ff ff ff ff ff ff ff ff ff ff ff ff
2005:07:08-16:40:20 (none) pluto[4365]: | ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
2005:07:08-16:40:20 (none) pluto[4365]: | ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
2005:07:08-16:40:20 (none) pluto[4365]: | ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
2005:07:08-16:40:20 (none) pluto[4365]: | ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
2005:07:08-16:40:20 (none) pluto[4365]: | ff ff ff ff ff ff ff ff ff ff ff ff ff ff 00 30
2005:07:08-16:40:20 (none) pluto[4365]: | 20 30 0c 06 08 2a 86 48 86 f7 0d 02 05 05 00 04
2005:07:08-16:40:20 (none) pluto[4365]: | 10 d1 82 0c e7 ca be c3 9f 44 dc ba a9 93 8d 5a
2005:07:08-16:40:20 (none) pluto[4365]: | ae
2005:07:08-16:40:20 (none) pluto[4365]: | certificate signature is valid
2005:07:08-16:40:20 (none) pluto[4365]: | crl list locked by 'verify_x509cert'
2005:07:08-16:40:20 (none) pluto[4365]: | crl list unlocked by 'verify_x509cert'
2005:07:08-16:40:20 (none) pluto[4365]: "D_VPN__roadwarrior__X509_0"[2] 83.224.64.55:57876 #6086: Issuer CRL not found
2005:07:08-16:40:20 (none) pluto[4365]: | reached self-signed root ca
2005:07:08-16:40:20 (none) pluto[4365]: | Public key validated
2005:07:08-16:40:20 (none) pluto[4365]: | CR
2005:07:08-16:40:20 (none) pluto[4365]: | requested CA: '%any'
2005:07:08-16:40:20 (none) pluto[4365]: | offered CA: 'C=it, ST=Italy, L=Lodi, O=ICR Cosmetics SpA, OU=IT, CN=icrcosmetics, E=icrca@icrcosmetics.com'
2005:07:08-16:40:20 (none) pluto[4365]: | required CA is 'C=it, ST=Italy, L=Lodi, O=ICR Cosmetics SpA, OU=IT, CN=icrcosmetics, E=icrca@icrcosmetics.com'
2005:07:08-16:40:20 (none) pluto[4365]: | key issuer CA is 'C=it, ST=Italy, L=Lodi, O=ICR Cosmetics SpA, OU=IT, CN=icrcosmetics, E=icrca@icrcosmetics.com'
2005:07:08-16:40:20 (none) pluto[4365]: | an RSA Sig check passed with *AwEAAeu1Y [preloaded key]
2005:07:08-16:40:20 (none) pluto[4365]: | **emit ISAKMP Message:
2005:07:08-16:40:20 (none) pluto[4365]: | initiator cookie:
2005:07:08-16:40:20 (none) pluto[4365]: | 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:20 (none) pluto[4365]: | responder cookie:
2005:07:08-16:40:20 (none) pluto[4365]: | 98 4c cf da c6 4c c7 58
2005:07:08-16:40:20 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_ID
2005:07:08-16:40:20 (none) pluto[4365]: | ISAKMP version: ISAKMP Version 1.0
2005:07:08-16:40:20 (none) pluto[4365]: | exchange type: ISAKMP_XCHG_IDPROT
2005:07:08-16:40:20 (none) pluto[4365]: | flags: ISAKMP_FLAG_ENCRYPTION
2005:07:08-16:40:20 (none) pluto[4365]: | message ID: 00 00 00 00
2005:07:08-16:40:20 (none) pluto[4365]: | ***emit ISAKMP Identification Payload (IPsec DOI):
2005:07:08-16:40:20 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_CERT
2005:07:08-16:40:20 (none) pluto[4365]: | ID type: ID_USER_FQDN
2005:07:08-16:40:20 (none) pluto[4365]: | Protocol ID: 0
2005:07:08-16:40:20 (none) pluto[4365]: | port: 0
2005:07:08-16:40:20 (none) pluto[4365]: | emitting 22 raw bytes of my identity into ISAKMP Identification Payload (IPsec DOI)
2005:07:08-16:40:20 (none) pluto[4365]: | my identity 69 63 72 63 61 40 69 63 72 63 6f 73 6d 65 74 69
2005:07:08-16:40:20 (none) pluto[4365]: | 63 73 2e 63 6f 6d
2005:07:08-16:40:20 (none) pluto[4365]: | emitting length of ISAKMP Identification Payload (IPsec DOI): 30
2005:07:08-16:40:20 (none) pluto[4365]: | ***emit ISAKMP Certificate Payload:
2005:07:08-16:40:20 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_SIG
2005:07:08-16:40:20 (none) pluto[4365]: | cert encoding: CERT_X509_SIGNATURE
2005:07:08-16:40:20 (none) pluto[4365]: | emitting 966 raw bytes of CERT into ISAKMP Certificate Payload
2005:07:08-16:40:20 (none) pluto[4365]: | CERT 30 82 03 c2 30 82 03 2b a0 03 02 01 02 02 01 01
2005:07:08-16:40:20 (none) pluto[4365]: | 30 0d 06 09 2a 86 48 86 f7 0d 01 01 04 05 00 30
2005:07:08-16:40:20 (none) pluto[4365]: | 81 93 31 0b 30 09 06 03 55 04 06 13 02 69 74 31
2005:07:08-16:40:20 (none) pluto[4365]: | 0e 30 0c 06 03 55 04 08 13 05 49 74 61 6c 79 31
2005:07:08-16:40:20 (none) pluto[4365]: | 0d 30 0b 06 03 55 04 07 13 04 4c 6f 64 69 31 1a
2005:07:08-16:40:20 (none) pluto[4365]: | 30 18 06 03 55 04 0a 13 11 49 43 52 20 43 6f 73
2005:07:08-16:40:20 (none) pluto[4365]: | 6d 65 74 69 63 73 20 53 70 41 31 0b 30 09 06 03
2005:07:08-16:40:20 (none) pluto[4365]: | 55 04 0b 13 02 49 54 31 15 30 13 06 03 55 04 03
2005:07:08-16:40:20 (none) pluto[4365]: | 13 0c 69 63 72 63 6f 73 6d 65 74 69 63 73 31 25
2005:07:08-16:40:20 (none) pluto[4365]: | 30 23 06 09 2a 86 48 86 f7 0d 01 09 01 16 16 69
2005:07:08-16:40:20 (none) pluto[4365]: | 63 72 63 61 40 69 63 72 63 6f 73 6d 65 74 69 63
2005:07:08-16:40:20 (none) pluto[4365]: | 73 2e 63 6f 6d 30 1e 17 0d 30 35 30 37 30 38 31
2005:07:08-16:40:20 (none) pluto[4365]: | 34 30 35 30 38 5a 17 0d 30 39 30 37 30 37 31 34
2005:07:08-16:40:20 (none) pluto[4365]: | 30 35 30 38 5a 30 81 94 31 0b 30 09 06 03 55 04
2005:07:08-16:40:20 (none) pluto[4365]: | 06 13 02 69 74 31 0e 30 0c 06 03 55 04 08 13 05
2005:07:08-16:40:20 (none) pluto[4365]: | 49 74 61 6c 79 31 0d 30 0b 06 03 55 04 07 13 04
2005:07:08-16:40:20 (none) pluto[4365]: | 4c 6f 64 69 31 1a 30 18 06 03 55 04 0a 13 11 49
2005:07:08-16:40:20 (none) pluto[4365]: | 43 52 20 43 6f 73 6d 65 74 69 63 73 20 53 70 41
2005:07:08-16:40:20 (none) pluto[4365]: | 31 0b 30 09 06 03 55 04 0b 13 02 49 54 31 16 30
2005:07:08-16:40:20 (none) pluto[4365]: | 14 06 03 55 04 03 14 0d 76 6f 64 61 66 6f 6e 65
2005:07:08-16:40:20 (none) pluto[4365]: | 5f 75 6d 74 73 31 25 30 23 06 09 2a 86 48 86 f7
2005:07:08-16:40:20 (none) pluto[4365]: | 0d 01 09 01 16 16 69 63 72 63 61 40 69 63 72 63
2005:07:08-16:40:20 (none) pluto[4365]: | 6f 73 6d 65 74 69 63 73 2e 63 6f 6d 30 81 9f 30
2005:07:08-16:40:20 (none) pluto[4365]: | 0d 06 09 2a 86 48 86 f7 0d 01 01 01 05 00 03 81
2005:07:08-16:40:20 (none) pluto[4365]: | 8d 00 30 81 89 02 81 81 00 eb b5 63 d0 e9 ed 41
2005:07:08-16:40:20 (none) pluto[4365]: | 4b 81 b4 e2 67 0f af f9 9e a4 7c 0b 23 08 5b e7
2005:07:08-16:40:20 (none) pluto[4365]: | 56 c2 76 5e 7d cc ee fe 00 82 7f 7e f9 1e 1f 5e
2005:07:08-16:40:20 (none) pluto[4365]: | 5f eb 13 10 9d 6a 11 2b 10 90 63 cf f1 f8 a9 84
2005:07:08-16:40:20 (none) pluto[4365]: | a3 2b b1 be ff 44 a2 59 af e5 c6 b4 eb 4b f1 b0
2005:07:08-16:40:20 (none) pluto[4365]: | ed af 57 c2 e1 a7 e1 0c cf e7 cd 5f 02 f9 7d 16
2005:07:08-16:40:20 (none) pluto[4365]: | d5 85 8c 16 88 b1 9e 7b 9d 72 8d a6 72 bf e7 0e
2005:07:08-16:40:20 (none) pluto[4365]: | 9a 29 fc 2b 65 4d 86 25 4b 4a 17 ba a5 bf 83 2b
2005:07:08-16:40:20 (none) pluto[4365]: | 34 9f 17 89 1a a6 95 53 01 02 03 01 00 01 a3 82
2005:07:08-16:40:20 (none) pluto[4365]: | 01 21 30 82 01 1d 30 09 06 03 55 1d 13 04 02 30
2005:07:08-16:40:20 (none) pluto[4365]: | 00 30 1d 06 03 55 1d 0e 04 16 04 14 c6 3e 24 e1
2005:07:08-16:40:20 (none) pluto[4365]: | 10 7a 75 ac 01 b0 71 55 bc 32 0c c6 0f 49 04 bd
2005:07:08-16:40:20 (none) pluto[4365]: | 30 81 c0 06 03 55 1d 23 04 81 b8 30 81 b5 80 14
2005:07:08-16:40:20 (none) pluto[4365]: | 89 eb c9 2c 26 05 75 da 54 0b 1a bb bf 87 1d 3e
2005:07:08-16:40:20 (none) pluto[4365]: | 0a d4 d7 fc a1 81 99 a4 81 96 30 81 93 31 0b 30
2005:07:08-16:40:20 (none) pluto[4365]: | 09 06 03 55 04 06 13 02 69 74 31 0e 30 0c 06 03
2005:07:08-16:40:20 (none) pluto[4365]: | 55 04 08 13 05 49 74 61 6c 79 31 0d 30 0b 06 03
2005:07:08-16:40:20 (none) pluto[4365]: | 55 04 07 13 04 4c 6f 64 69 31 1a 30 18 06 03 55
2005:07:08-16:40:20 (none) pluto[4365]: | 04 0a 13 11 49 43 52 20 43 6f 73 6d 65 74 69 63
2005:07:08-16:40:20 (none) pluto[4365]: | 73 20 53 70 41 31 0b 30 09 06 03 55 04 0b 13 02
2005:07:08-16:40:20 (none) pluto[4365]: | 49 54 31 15 30 13 06 03 55 04 03 13 0c 69 63 72
2005:07:08-16:40:20 (none) pluto[4365]: | 63 6f 73 6d 65 74 69 63 73 31 25 30 23 06 09 2a
2005:07:08-16:40:20 (none) pluto[4365]: | 86 48 86 f7 0d 01 09 01 16 16 69 63 72 63 61 40
2005:07:08-16:40:20 (none) pluto[4365]: | 69 63 72 63 6f 73 6d 65 74 69 63 73 2e 63 6f 6d
2005:07:08-16:40:20 (none) pluto[4365]: | 82 01 00 30 0b 06 03 55 1d 0f 04 04 03 02 05 e0
2005:07:08-16:40:20 (none) pluto[4365]: | 30 21 06 03 55 1d 11 04 1a 30 18 81 16 69 63 72
2005:07:08-16:40:20 (none) pluto[4365]: | 63 61 40 69 63 72 63 6f 73 6d 65 74 69 63 73 2e
2005:07:08-16:40:20 (none) pluto[4365]: | 63 6f 6d 30 0d 06 09 2a 86 48 86 f7 0d 01 01 04
2005:07:08-16:40:20 (none) pluto[4365]: | 05 00 03 81 81 00 04 4c ca 9c d2 c4 77 2f db 68
2005:07:08-16:40:20 (none) pluto[4365]: | 88 b5 c5 ee be f0 4d 04 d3 71 bf 93 34 02 88 2f
2005:07:08-16:40:20 (none) pluto[4365]: | bc f9 43 23 b3 0f cd 8b 30 98 21 60 19 f1 68 23
2005:07:08-16:40:20 (none) pluto[4365]: | 98 49 3c 8f 4b 49 cb 7e bd 55 80 63 c4 77 21 fc
2005:07:08-16:40:20 (none) pluto[4365]: | 51 07 55 ce cd 85 76 40 ae d9 60 9b ca a9 25 7f
2005:07:08-16:40:20 (none) pluto[4365]: | ee d7 79 8b 25 a8 cd f9 68 7a 96 73 01 02 b0 b6
2005:07:08-16:40:20 (none) pluto[4365]: | 46 af 9a 48 2c d7 56 2e 5c c4 11 c3 50 ce b7 1f
2005:07:08-16:40:20 (none) pluto[4365]: | dc bf 59 b4 80 09 cb 57 26 02 84 5e ea 1e 2a 48
2005:07:08-16:40:20 (none) pluto[4365]: | 33 43 e3 c0 c6 5e
2005:07:08-16:40:20 (none) pluto[4365]: | emitting length of ISAKMP Certificate Payload: 971
2005:07:08-16:40:20 (none) pluto[4365]: | signing hash with RSA Key *AwEAAeu1Y
2005:07:08-16:40:20 (none) pluto[4365]: | ***emit ISAKMP Signature Payload:
2005:07:08-16:40:20 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:20 (none) pluto[4365]: | emitting 128 raw bytes of SIG_R into ISAKMP Signature Payload
2005:07:08-16:40:20 (none) pluto[4365]: | SIG_R 40 91 ba 35 4b d3 42 df 81 74 06 70 28 79 0d 67
2005:07:08-16:40:20 (none) pluto[4365]: | 5e 60 ac cf b7 11 30 73 e9 a9 2f 5c 9c ea f9 21
2005:07:08-16:40:20 (none) pluto[4365]: | 9c dc 53 be 25 b4 10 75 34 bf d6 b9 ea d4 50 a6
2005:07:08-16:40:20 (none) pluto[4365]: | 42 ef b8 a4 fd 96 ee 12 b1 0f 09 18 f5 96 b2 ab
2005:07:08-16:40:20 (none) pluto[4365]: | 1c 87 e7 1c b0 f3 6d 1a cd 31 b2 20 94 f4 a8 58
2005:07:08-16:40:20 (none) pluto[4365]: | de e9 24 c4 4e aa 6c 3f 89 be 07 1a 7c b3 e9 f4
2005:07:08-16:40:20 (none) pluto[4365]: | f1 45 bf a1 48 1c 81 6e d1 41 63 66 1f ab de ac
2005:07:08-16:40:20 (none) pluto[4365]: | 1d 4b 9f 67 f5 1c 6c a0 4c 62 d7 b4 f7 54 4b c5
2005:07:08-16:40:20 (none) pluto[4365]: | emitting length of ISAKMP Signature Payload: 132
2005:07:08-16:40:20 (none) pluto[4365]: | emitting 3 zero bytes of encryption padding into ISAKMP Message
2005:07:08-16:40:20 (none) pluto[4365]: | emitting length of ISAKMP Message: 1164
2005:07:08-16:40:20 (none) pluto[4365]: "D_VPN__roadwarrior__X509_0"[2] 83.224.64.55:57876 #6086: transition from state STATE_MAIN_R2 to state STATE_MAIN_R3
2005:07:08-16:40:20 (none) pluto[4365]: | NAT-T: new mapping 83.224.64.55:57876/57977)
2005:07:08-16:40:20 (none) pluto[4365]: | inserting event EVENT_SA_REPLACE, timeout in 28530 seconds for #6086
2005:07:08-16:40:20 (none) pluto[4365]: "D_VPN__roadwarrior__X509_0"[2] 83.224.64.55:57977 #6086: sent MR3, ISAKMP SA established
2005:07:08-16:40:20 (none) pluto[4365]: | next event EVENT_NAT_T_KEEPALIVE in 58 seconds
2005:07:08-16:40:22 (none) pluto[4365]: | 
2005:07:08-16:40:22 (none) pluto[4365]: | *received 172 bytes from 83.224.64.55:57977 on eth0
2005:07:08-16:40:22 (none) pluto[4365]: | **parse ISAKMP Message:
2005:07:08-16:40:22 (none) pluto[4365]: | initiator cookie:
2005:07:08-16:40:22 (none) pluto[4365]: | 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:22 (none) pluto[4365]: | responder cookie:
2005:07:08-16:40:22 (none) pluto[4365]: | 98 4c cf da c6 4c c7 58
2005:07:08-16:40:22 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_HASH
2005:07:08-16:40:22 (none) pluto[4365]: | ISAKMP version: ISAKMP Version 1.0
2005:07:08-16:40:22 (none) pluto[4365]: | exchange type: ISAKMP_XCHG_QUICK
2005:07:08-16:40:22 (none) pluto[4365]: | flags: ISAKMP_FLAG_ENCRYPTION
2005:07:08-16:40:22 (none) pluto[4365]: | message ID: 7e cc 69 11
2005:07:08-16:40:22 (none) pluto[4365]: | length: 172
2005:07:08-16:40:22 (none) pluto[4365]: | The xchg type is ISAKMP_XCHG_QUICK (32)
2005:07:08-16:40:22 (none) pluto[4365]: | ICOOKIE: 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:22 (none) pluto[4365]: | RCOOKIE: 98 4c cf da c6 4c c7 58
2005:07:08-16:40:22 (none) pluto[4365]: | peer: 53 e0 40 37
2005:07:08-16:40:22 (none) pluto[4365]: | state hash entry 23
2005:07:08-16:40:22 (none) pluto[4365]: | peer and cookies match, provided msgid 7ecc6911 vs 00000000
2005:07:08-16:40:22 (none) pluto[4365]: | state object not found
2005:07:08-16:40:22 (none) pluto[4365]: | ICOOKIE: 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:22 (none) pluto[4365]: | RCOOKIE: 98 4c cf da c6 4c c7 58
2005:07:08-16:40:22 (none) pluto[4365]: | peer: 53 e0 40 37
2005:07:08-16:40:22 (none) pluto[4365]: | state hash entry 23
2005:07:08-16:40:22 (none) pluto[4365]: | peer and cookies match, provided msgid 00000000 vs 00000000
2005:07:08-16:40:22 (none) pluto[4365]: | state object #6086 found, in STATE_MAIN_R3
2005:07:08-16:40:22 (none) pluto[4365]: | ***parse ISAKMP Hash Payload:
2005:07:08-16:40:22 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_SA
2005:07:08-16:40:22 (none) pluto[4365]: | length: 20
2005:07:08-16:40:22 (none) pluto[4365]: | ***parse ISAKMP Security Association Payload:
2005:07:08-16:40:22 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONCE
2005:07:08-16:40:22 (none) pluto[4365]: | length: 52
2005:07:08-16:40:22 (none) pluto[4365]: | DOI: ISAKMP_DOI_IPSEC
2005:07:08-16:40:22 (none) pluto[4365]: | ***parse ISAKMP Nonce Payload:
2005:07:08-16:40:22 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_ID
2005:07:08-16:40:22 (none) pluto[4365]: | length: 44
2005:07:08-16:40:22 (none) pluto[4365]: | ***parse ISAKMP Identification Payload (IPsec DOI):
2005:07:08-16:40:22 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_ID
2005:07:08-16:40:22 (none) pluto[4365]: | length: 12
2005:07:08-16:40:22 (none) pluto[4365]: | ID type: ID_IPV4_ADDR
2005:07:08-16:40:22 (none) pluto[4365]: | Protocol ID: 0
2005:07:08-16:40:22 (none) pluto[4365]: | port: 0
2005:07:08-16:40:22 (none) pluto[4365]: | ***parse ISAKMP Identification Payload (IPsec DOI):
2005:07:08-16:40:22 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:22 (none) pluto[4365]: | length: 16
2005:07:08-16:40:22 (none) pluto[4365]: | ID type: ID_IPV4_ADDR_SUBNET
2005:07:08-16:40:22 (none) pluto[4365]: | Protocol ID: 0
2005:07:08-16:40:22 (none) pluto[4365]: | port: 0
2005:07:08-16:40:22 (none) pluto[4365]: | peer client is 10.200.174.208/32
2005:07:08-16:40:22 (none) pluto[4365]: | peer client protocol/port is 0/0
2005:07:08-16:40:22 (none) pluto[4365]: | our client is subnet 192.168.8.0/21
2005:07:08-16:40:22 (none) pluto[4365]: | our client protocol/port is 0/0
2005:07:08-16:40:22 (none) pluto[4365]: "D_VPN__roadwarrior__X509_0"[2] 83.224.64.55:57977 #6086: cannot respond to IPsec SA request because no connection is known for 192.168.8.0/21===212.177.4.130:4500[icrca@icrcosmetics.com]...83.224.64.55:57977[icrca@icrcosmetics.com]===10.200.174.208/32
2005:07:08-16:40:22 (none) pluto[4365]: "D_VPN__roadwarrior__X509_0"[2] 83.224.64.55:57977 #6086: sending encrypted notification INVALID_ID_INFORMATION to 83.224.64.55:57977
2005:07:08-16:40:22 (none) pluto[4365]: | **emit ISAKMP Message:
2005:07:08-16:40:22 (none) pluto[4365]: | initiator cookie:
2005:07:08-16:40:22 (none) pluto[4365]: | 85 06 22 cb b3 5d a5 0c
2005:07:08-16:40:22 (none) pluto[4365]: | responder cookie:
2005:07:08-16:40:22 (none) pluto[4365]: | 98 4c cf da c6 4c c7 58
2005:07:08-16:40:22 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_HASH
2005:07:08-16:40:22 (none) pluto[4365]: | ISAKMP version: ISAKMP Version 1.0
2005:07:08-16:40:22 (none) pluto[4365]: | exchange type: ISAKMP_XCHG_INFO
2005:07:08-16:40:22 (none) pluto[4365]: | flags: ISAKMP_FLAG_ENCRYPTION
2005:07:08-16:40:22 (none) pluto[4365]: | message ID: cc f1 7e 85
2005:07:08-16:40:22 (none) pluto[4365]: | ***emit ISAKMP Hash Payload:
2005:07:08-16:40:22 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_N
2005:07:08-16:40:22 (none) pluto[4365]: | emitting 16 zero bytes of HASH(1) into ISAKMP Hash Payload
2005:07:08-16:40:22 (none) pluto[4365]: | emitting length of ISAKMP Hash Payload: 20
2005:07:08-16:40:22 (none) pluto[4365]: | ***emit ISAKMP Notification Payload:
2005:07:08-16:40:22 (none) pluto[4365]: | next payload type: ISAKMP_NEXT_NONE
2005:07:08-16:40:22 (none) pluto[4365]: | DOI: ISAKMP_DOI_IPSEC
2005:07:08-16:40:22 (none) pluto[4365]: | protocol ID: 1
2005:07:08-16:40:22 (none) pluto[4365]: | SPI size: 0
2005:07:08-16:40:22 (none) pluto[4365]: | Notify Message Type: INVALID_ID_INFORMATION
2005:07:08-16:40:22 (none) pluto[4365]: | emitting 0 raw bytes of spi into ISAKMP Notification Payload
2005:07:08-16:40:22 (none) pluto[4365]: | spi
2005:07:08-16:40:22 (none) pluto[4365]: | emitting length of ISAKMP Notification Payload: 12
2005:07:08-16:40:22 (none) pluto[4365]: | emitting length of ISAKMP Message: 60
2005:07:08-16:40:22 (none) pluto[4365]: | state transition function for STATE_QUICK_R0 failed: INVALID_ID_INFORMATION
2005:07:08-16:40:22 (none) pluto[4365]: | next event EVENT_NAT_T_KEEPALIVE in 56 seconds