May  1 01:47:30 sun pluto[17925]: Starting IKEv1 pluto daemon (strongSwan 4.6.3) THREADS VENDORID
May  1 01:47:30 sun ipsec_starter[17924]: pluto (17925) started after 40 ms
May  1 01:47:30 sun pluto[17925]: listening on interfaces: 
May  1 01:47:30 sun pluto[17925]:   eth0 
May  1 01:47:30 sun pluto[17925]:     192.168.0.2 
May  1 01:47:30 sun pluto[17925]:     fec0::2 
May  1 01:47:30 sun pluto[17925]:     fe80::fcfd:c0ff:fea8:2 
May  1 01:47:30 sun pluto[17925]:   eth1 
May  1 01:47:30 sun pluto[17925]:     10.2.0.1 
May  1 01:47:30 sun pluto[17925]:     fec2::1 
May  1 01:47:30 sun pluto[17925]:     fe80::fcfd:aff:fe02:1 
May  1 01:47:30 sun pluto[17925]: loaded plugins: sha1 sha2 md5 aes des hmac pem pkcs1 x509 gmp random curl kernel-netlink 
May  1 01:47:30 sun pluto[17925]: | inserting event EVENT_REINIT_SECRET, timeout in 3600 seconds
May  1 01:47:30 sun pluto[17925]:   including NAT-Traversal patch (Version 0.6c) [disabled]
May  1 01:47:31 sun pluto[17925]: loading ca certificates from '/etc/ipsec.d/cacerts' 
May  1 01:47:31 sun pluto[17925]:   loaded ca certificate from '/etc/ipsec.d/cacerts/strongswanCert.pem'
May  1 01:47:31 sun pluto[17925]: |   authcert inserted
May  1 01:47:31 sun pluto[17925]: loading aa certificates from '/etc/ipsec.d/aacerts' 
May  1 01:47:31 sun pluto[17925]: loading ocsp certificates from '/etc/ipsec.d/ocspcerts' 
May  1 01:47:31 sun pluto[17925]: Changing to directory '/etc/ipsec.d/crls'
May  1 01:47:31 sun pluto[17925]: loading attribute certificates from '/etc/ipsec.d/acerts' 
May  1 01:47:31 sun pluto[17925]: spawning 4 worker threads 
May  1 01:47:31 sun pluto[17925]: | inserting event EVENT_LOG_DAILY, timeout in 79949 seconds
May  1 01:47:31 sun pluto[17925]: | next event EVENT_REINIT_SECRET in 3600 seconds
May  1 01:47:31 sun pluto[17925]: | 
May  1 01:47:31 sun pluto[17925]: | *received whack message
May  1 01:47:31 sun pluto[17925]: listening for IKE messages
May  1 01:47:31 sun pluto[17925]: | found lo with address 127.0.0.1
May  1 01:47:31 sun pluto[17925]: | found eth0 with address 192.168.0.2
May  1 01:47:31 sun pluto[17925]: | found eth1 with address 10.2.0.1
May  1 01:47:31 sun pluto[17925]: adding interface eth1/eth1 10.2.0.1:500
May  1 01:47:31 sun pluto[17925]: adding interface eth0/eth0 192.168.0.2:500
May  1 01:47:31 sun pluto[17925]: adding interface lo/lo 127.0.0.1:500
May  1 01:47:31 sun pluto[17925]: | found eth1 with address fec2:0000:0000:0000:0000:0000:0000:0001
May  1 01:47:31 sun pluto[17925]: | found eth0 with address fec0:0000:0000:0000:0000:0000:0000:0002
May  1 01:47:31 sun pluto[17925]: | found lo with address 0000:0000:0000:0000:0000:0000:0000:0001
May  1 01:47:31 sun pluto[17925]: adding interface lo/lo ::1:500
May  1 01:47:31 sun pluto[17925]: adding interface eth0/eth0 fec0::2:500
May  1 01:47:31 sun pluto[17925]: adding interface eth1/eth1 fec2::1:500
May  1 01:47:31 sun pluto[17925]: loading secrets from "/etc/ipsec.secrets"
May  1 01:47:31 sun pluto[17925]:   loaded private key from 'sunKey.pem'
May  1 01:47:31 sun pluto[17925]: | next event EVENT_REINIT_SECRET in 3600 seconds
May  1 01:47:31 sun pluto[17925]: | fetch thread started
May  1 01:47:31 sun pluto[17925]: | 
May  1 01:47:31 sun pluto[17925]: | next regular crl check in 180 seconds
May  1 01:47:31 sun pluto[17925]: | *received whack message
May  1 01:47:31 sun pluto[17925]: | from whack: got --esp=aes128-sha1,3des-sha1
May  1 01:47:31 sun pluto[17925]: | esp proposal: AES_CBC_128/HMAC_SHA1, 3DES_CBC/HMAC_SHA1, 
May  1 01:47:31 sun pluto[17925]: | from whack: got --ike=aes128-sha1-modp2048,3des-sha1-modp1536
May  1 01:47:31 sun pluto[17925]: | ike proposal: AES_CBC_128/HMAC_SHA1/MODP_2048, 3DES_CBC/HMAC_SHA1/MODP_1536, 
May  1 01:47:31 sun pluto[17925]:   loaded host certificate from '/etc/ipsec.d/certs/sunCert.pem'
May  1 01:47:31 sun pluto[17925]: | certificate is valid
May  1 01:47:31 sun pluto[17925]: |   cert inserted
May  1 01:47:31 sun pluto[17925]: added connection description "net-net"
May  1 01:47:31 sun pluto[17925]: | fec2::/16===fec0::2[sun.strongswan.org]...fec0::1[moon.strongswan.org]===fec1::/16
May  1 01:47:31 sun pluto[17925]: | ike_life: 3600s; ipsec_life: 1200s; rekey_margin: 180s; rekey_fuzz: 100%; keyingtries: 1; policy: PUBKEY+ENCRYPT+TUNNEL+PFS
May  1 01:47:31 sun pluto[17925]: | next event EVENT_REINIT_SECRET in 3599 seconds
May  1 01:47:31 sun pluto[17925]: | 
May  1 01:47:31 sun pluto[17925]: | *received whack message
May  1 01:47:31 sun pluto[17925]: | from whack: got --esp=aes128-sha1,3des-sha1
May  1 01:47:31 sun pluto[17925]: | esp proposal: AES_CBC_128/HMAC_SHA1, 3DES_CBC/HMAC_SHA1, 
May  1 01:47:31 sun pluto[17925]: | from whack: got --ike=aes128-sha1-modp2048,3des-sha1-modp1536
May  1 01:47:31 sun pluto[17925]: | ike proposal: AES_CBC_128/HMAC_SHA1/MODP_2048, 3DES_CBC/HMAC_SHA1/MODP_1536, 
May  1 01:47:31 sun pluto[17925]:   loaded host certificate from '/etc/ipsec.d/certs/sunCert.pem'
May  1 01:47:31 sun pluto[17925]: | certificate is valid
May  1 01:47:31 sun pluto[17925]: added connection description "host-host"
May  1 01:47:32 sun pluto[17925]: | fec0::2[sun.strongswan.org]...fec0::1[moon.strongswan.org]
May  1 01:47:32 sun pluto[17925]: | ike_life: 3600s; ipsec_life: 1200s; rekey_margin: 180s; rekey_fuzz: 100%; keyingtries: 1; policy: PUBKEY+ENCRYPT+TUNNEL+PFS
May  1 01:47:32 sun pluto[17925]: | next event EVENT_REINIT_SECRET in 3599 seconds
May  1 01:47:33 sun pluto[17925]: | 
May  1 01:47:33 sun pluto[17925]: | *received 168 bytes from fec0::1:500 on eth0
May  1 01:47:33 sun pluto[17925]: packet from fec0::1:500: received Vendor ID payload [strongSwan]
May  1 01:47:33 sun pluto[17925]: packet from fec0::1:500: received Vendor ID payload [XAUTH]
May  1 01:47:33 sun pluto[17925]: packet from fec0::1:500: received Vendor ID payload [Dead Peer Detection]
May  1 01:47:33 sun pluto[17925]: | preparse_isakmp_policy: peer requests PUBKEY authentication
May  1 01:47:33 sun pluto[17925]: | creating state object #1 at 0x80f1c3c
May  1 01:47:33 sun pluto[17925]: | ICOOKIE:  8f 12 18 c2  90 83 c0 6a
May  1 01:47:33 sun pluto[17925]: | RCOOKIE:  38 ec eb 3d  92 af 1e b1
May  1 01:47:33 sun pluto[17925]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:47:33 sun pluto[17925]: | state hash entry 7
May  1 01:47:33 sun pluto[17925]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #1
May  1 01:47:33 sun pluto[17925]: "host-host" #1: responding to Main Mode
May  1 01:47:33 sun pluto[17925]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #1
May  1 01:47:33 sun pluto[17925]: | next event EVENT_RETRANSMIT in 10 seconds for #1
May  1 01:47:33 sun pluto[17925]: | 
May  1 01:47:33 sun pluto[17925]: | *received 308 bytes from fec0::1:500 on eth0
May  1 01:47:33 sun pluto[17925]: | ICOOKIE:  8f 12 18 c2  90 83 c0 6a
May  1 01:47:33 sun pluto[17925]: | RCOOKIE:  38 ec eb 3d  92 af 1e b1
May  1 01:47:33 sun pluto[17925]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:47:33 sun pluto[17925]: | state hash entry 7
May  1 01:47:33 sun pluto[17925]: | state object #1 found, in STATE_MAIN_R1
May  1 01:47:33 sun pluto[17925]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #1
May  1 01:47:33 sun pluto[17925]: | next event EVENT_RETRANSMIT in 10 seconds for #1
May  1 01:47:33 sun pluto[17925]: | 
May  1 01:47:33 sun pluto[17925]: | *received 1388 bytes from fec0::1:500 on eth0
May  1 01:47:33 sun pluto[17925]: | ICOOKIE:  8f 12 18 c2  90 83 c0 6a
May  1 01:47:33 sun pluto[17925]: | RCOOKIE:  38 ec eb 3d  92 af 1e b1
May  1 01:47:33 sun pluto[17925]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:47:33 sun pluto[17925]: | state hash entry 7
May  1 01:47:33 sun pluto[17925]: | state object #1 found, in STATE_MAIN_R2
May  1 01:47:33 sun pluto[17925]: "host-host" #1: Peer ID is ID_FQDN: 'moon.strongswan.org'
May  1 01:47:33 sun pluto[17925]: | subject: 'C=CH, O=Linux strongSwan, CN=moon.strongswan.org'
May  1 01:47:33 sun pluto[17925]: | issuer:  'C=CH, O=Linux strongSwan, CN=strongSwan Root CA'
May  1 01:47:33 sun pluto[17925]: | authkey:  5d:a7:dd:70:06:51:32:7e:e7:b6:6d:b3:b5:e5:e0:60:ea:2e:4d:ef
May  1 01:47:33 sun pluto[17925]: | certificate is valid
May  1 01:47:33 sun pluto[17925]: | issuer cacert found
May  1 01:47:33 sun pluto[17925]: | certificate signature is valid
May  1 01:47:33 sun pluto[17925]: "host-host" #1: crl not found
May  1 01:47:33 sun pluto[17925]: | crl fetch request added
May  1 01:47:34 sun pluto[17925]: | fetch thread was woken up
May  1 01:47:34 sun pluto[17925]:   fetching crl from 'http://crl.strongswan.org/strongswan.crl' ... 
May  1 01:47:34 sun pluto[17925]: "host-host" #1: certificate status unknown
May  1 01:47:34 sun pluto[17925]: | crl issuer cacert found
May  1 01:47:34 sun pluto[17925]: | crl signature is valid
May  1 01:47:34 sun pluto[17925]: | we have a valid crl
May  1 01:47:34 sun pluto[17925]: | next regular crl check in 180 seconds
May  1 01:47:34 sun pluto[17925]: | subject: 'C=CH, O=Linux strongSwan, CN=strongSwan Root CA'
May  1 01:47:34 sun pluto[17925]: | issuer:  'C=CH, O=Linux strongSwan, CN=strongSwan Root CA'
May  1 01:47:34 sun pluto[17925]: | authkey:  5d:a7:dd:70:06:51:32:7e:e7:b6:6d:b3:b5:e5:e0:60:ea:2e:4d:ef
May  1 01:47:34 sun pluto[17925]: | certificate is valid
May  1 01:47:34 sun pluto[17925]: | issuer cacert found
May  1 01:47:34 sun pluto[17925]: | certificate signature is valid
May  1 01:47:34 sun pluto[17925]: | reached self-signed root ca with a path length of 0
May  1 01:47:34 sun pluto[17925]: | RSA signature check passed with keyid 6e:55:dc:7e:9c:a5:58:d9:5b:e3:c7:13:14:e1:43:51:e4:fa:10:94
May  1 01:47:34 sun pluto[17925]: | peer CA:      "C=CH, O=Linux strongSwan, CN=strongSwan Root CA"
May  1 01:47:34 sun pluto[17925]: | requested CA: %any
May  1 01:47:34 sun pluto[17925]: | offered CA:   "C=CH, O=Linux strongSwan, CN=strongSwan Root CA"
May  1 01:47:34 sun pluto[17925]: | our certificate policy is SEND_IF_ASKED
May  1 01:47:34 sun pluto[17925]: "host-host" #1: we have a cert and are sending it upon request
May  1 01:47:34 sun pluto[17925]: | inserting event EVENT_SA_REPLACE, timeout in 3510 seconds for #1
May  1 01:47:34 sun pluto[17925]: "host-host" #1: sent MR3, ISAKMP SA established
May  1 01:47:34 sun pluto[17925]: | next event EVENT_SA_REPLACE in 3510 seconds for #1
May  1 01:47:35 sun pluto[17925]: | 
May  1 01:47:35 sun pluto[17925]: | *received 428 bytes from fec0::1:500 on eth0
May  1 01:47:35 sun pluto[17925]: | ICOOKIE:  8f 12 18 c2  90 83 c0 6a
May  1 01:47:35 sun pluto[17925]: | RCOOKIE:  38 ec eb 3d  92 af 1e b1
May  1 01:47:35 sun pluto[17925]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:47:35 sun pluto[17925]: | state hash entry 7
May  1 01:47:35 sun pluto[17925]: | state object not found
May  1 01:47:35 sun pluto[17925]: | ICOOKIE:  8f 12 18 c2  90 83 c0 6a
May  1 01:47:35 sun pluto[17925]: | RCOOKIE:  38 ec eb 3d  92 af 1e b1
May  1 01:47:35 sun pluto[17925]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:47:35 sun pluto[17925]: | state hash entry 7
May  1 01:47:35 sun pluto[17925]: | state object #1 found, in STATE_MAIN_R3
May  1 01:47:35 sun pluto[17925]: | no valid attribute cert found
May  1 01:47:35 sun pluto[17925]: | duplicating state object #1
May  1 01:47:35 sun pluto[17925]: | creating state object #2 at 0x80f3a34
May  1 01:47:35 sun pluto[17925]: | ICOOKIE:  8f 12 18 c2  90 83 c0 6a
May  1 01:47:35 sun pluto[17925]: | RCOOKIE:  38 ec eb 3d  92 af 1e b1
May  1 01:47:35 sun pluto[17925]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:47:35 sun pluto[17925]: | state hash entry 7
May  1 01:47:35 sun pluto[17925]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #2
May  1 01:47:35 sun pluto[17925]: "host-host" #2: responding to Quick Mode
May  1 01:47:35 sun pluto[17925]: | kernel_alg_esp_auth_keylen(auth=2, sadb_aalg=3): a_keylen=20
May  1 01:47:35 sun pluto[17925]: | install_inbound_ipsec_sa() checking if we can route
May  1 01:47:35 sun pluto[17925]: | route owner of "host-host" unrouted: NULL; eroute owner: NULL
May  1 01:47:35 sun pluto[17925]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #2
May  1 01:47:35 sun pluto[17925]: | next event EVENT_RETRANSMIT in 10 seconds for #2
May  1 01:47:36 sun pluto[17925]: | 
May  1 01:47:36 sun pluto[17925]: | *received 60 bytes from fec0::1:500 on eth0
May  1 01:47:36 sun pluto[17925]: | ICOOKIE:  8f 12 18 c2  90 83 c0 6a
May  1 01:47:36 sun pluto[17925]: | RCOOKIE:  38 ec eb 3d  92 af 1e b1
May  1 01:47:36 sun pluto[17925]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:47:36 sun pluto[17925]: | state hash entry 7
May  1 01:47:36 sun pluto[17925]: | state object #2 found, in STATE_QUICK_R1
May  1 01:47:36 sun pluto[17925]: | kernel_alg_esp_auth_keylen(auth=2, sadb_aalg=3): a_keylen=20
May  1 01:47:36 sun pluto[17925]: | install_ipsec_sa() for #2: outbound only
May  1 01:47:36 sun pluto[17925]: | route owner of "host-host" unrouted: NULL; eroute owner: NULL
May  1 01:47:36 sun pluto[17925]: | sr for #2: unrouted
May  1 01:47:36 sun pluto[17925]: | route owner of "host-host" unrouted: NULL; eroute owner: NULL
May  1 01:47:36 sun pluto[17925]: | eroute_connection add eroute fec0::1/128:0 -> fec0::2/128:0 => tun:0@fec0::2:0
May  1 01:47:36 sun pluto[17925]: | eroute_connection add eroute fec0::2/128:0 -> fec0::1/128:0 => tun:0@fec0::1:0
May  1 01:47:36 sun pluto[17925]: | executing up-host-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='up-host-v6' PLUTO_CONNECTION='host-host' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16388' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec0::2/128' PLUTO_MY_CLIENT_NET='fec0::2' PLUTO_MY_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec0::1/128' PLUTO_PEER_CLIENT_NET='fec0::1' PLUTO_PEER_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='C=CH, O=Linux strongSwan, CN=strongSwan Root CA' ipsec _updown iptables
May  1 01:47:37 sun pluto[17925]: | route_and_eroute: firewall_notified: true
May  1 01:47:37 sun pluto[17925]: | executing prepare-host-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='prepare-host-v6' PLUTO_CONNECTION='host-host' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16388' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec0::2/128' PLUTO_MY_CLIENT_NET='fec0::2' PLUTO_MY_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec0::1/128' PLUTO_PEER_CLIENT_NET='fec0::1' PLUTO_PEER_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='C=CH, O=Linux strongSwan, CN=strongSwan Root CA' ipsec _updown iptables
May  1 01:47:38 sun pluto[17925]: | executing route-host-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='route-host-v6' PLUTO_CONNECTION='host-host' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16388' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec0::2/128' PLUTO_MY_CLIENT_NET='fec0::2' PLUTO_MY_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec0::1/128' PLUTO_PEER_CLIENT_NET='fec0::1' PLUTO_PEER_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='C=CH, O=Linux strongSwan, CN=strongSwan Root CA' ipsec _updown iptables
May  1 01:47:38 sun pluto[17925]: | route_and_eroute: instance "host-host", setting eroute_owner {spd=0x80ed51c,sr=0x80ed51c} to #2 (was #0) (newest_ipsec_sa=#0)
May  1 01:47:38 sun pluto[17925]: | inserting event EVENT_SA_REPLACE, timeout in 1110 seconds for #2
May  1 01:47:38 sun pluto[17925]: "host-host" #2: IPsec SA established {ESP=>0xcb22f5cb <0xca1567e9}
May  1 01:47:38 sun pluto[17925]: | next event EVENT_SA_REPLACE in 1110 seconds for #2
May  1 01:47:38 sun pluto[17925]: | 
May  1 01:47:38 sun pluto[17925]: | *received whack message
May  1 01:47:38 sun pluto[17925]: | next event EVENT_SA_REPLACE in 1110 seconds for #2
May  1 01:47:41 sun pluto[17925]: | 
May  1 01:47:41 sun pluto[17925]: | *received whack message
May  1 01:47:41 sun pluto[17925]: | next event EVENT_SA_REPLACE in 1106 seconds for #2
May  1 01:47:42 sun pluto[17925]: | 
May  1 01:47:42 sun pluto[17925]: | *received whack message
May  1 01:47:42 sun pluto[17925]: | next event EVENT_SA_REPLACE in 1106 seconds for #2
May  1 01:47:44 sun pluto[17925]: | 
May  1 01:47:44 sun pluto[17925]: | *received 76 bytes from fec0::1:500 on eth0
May  1 01:47:44 sun pluto[17925]: | ICOOKIE:  8f 12 18 c2  90 83 c0 6a
May  1 01:47:44 sun pluto[17925]: | RCOOKIE:  38 ec eb 3d  92 af 1e b1
May  1 01:47:44 sun pluto[17925]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:47:44 sun pluto[17925]: | state hash entry 7
May  1 01:47:44 sun pluto[17925]: | state object #1 found, in STATE_MAIN_R3
May  1 01:47:44 sun pluto[17925]: "host-host" #1: received Delete SA(0xcb22f5cb) payload: deleting IPSEC State #2
May  1 01:47:44 sun pluto[17925]: | ICOOKIE:  8f 12 18 c2  90 83 c0 6a
May  1 01:47:44 sun pluto[17925]: | RCOOKIE:  38 ec eb 3d  92 af 1e b1
May  1 01:47:44 sun pluto[17925]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:47:44 sun pluto[17925]: | state hash entry 7
May  1 01:47:44 sun pluto[17925]: | executing down-host-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='down-host-v6' PLUTO_CONNECTION='host-host' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16388' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec0::2/128' PLUTO_MY_CLIENT_NET='fec0::2' PLUTO_MY_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec0::1/128' PLUTO_PEER_CLIENT_NET='fec0::1' PLUTO_PEER_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='C=CH, O=Linux strongSwan, CN=strongSwan Root CA' ipsec _updown iptables
May  1 01:47:44 sun pluto[17925]: | eroute_connection replace with shunt eroute fec0::1/128:0 -> fec0::2/128:0 => int:104@fec0::2:0
May  1 01:47:44 sun pluto[17925]: | eroute_connection replace with shunt eroute fec0::2/128:0 -> fec0::1/128:0 => int:104@:::0
May  1 01:47:44 sun pluto[17925]: | next event EVENT_SA_REPLACE in 3500 seconds for #1
May  1 01:47:44 sun pluto[17925]: | 
May  1 01:47:44 sun pluto[17925]: | *received 92 bytes from fec0::1:500 on eth0
May  1 01:47:44 sun pluto[17925]: | ICOOKIE:  8f 12 18 c2  90 83 c0 6a
May  1 01:47:44 sun pluto[17925]: | RCOOKIE:  38 ec eb 3d  92 af 1e b1
May  1 01:47:44 sun pluto[17925]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:47:44 sun pluto[17925]: | state hash entry 7
May  1 01:47:44 sun pluto[17925]: | state object #1 found, in STATE_MAIN_R3
May  1 01:47:44 sun pluto[17925]: | ICOOKIE:  8f 12 18 c2  90 83 c0 6a
May  1 01:47:44 sun pluto[17925]: | RCOOKIE:  38 ec eb 3d  92 af 1e b1
May  1 01:47:44 sun pluto[17925]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:47:44 sun pluto[17925]: | state hash entry 7
May  1 01:47:44 sun pluto[17925]: | state object #1 found, in STATE_MAIN_R3
May  1 01:47:44 sun pluto[17925]: "host-host" #1: received Delete SA payload: deleting ISAKMP State #1
May  1 01:47:44 sun pluto[17925]: | ICOOKIE:  8f 12 18 c2  90 83 c0 6a
May  1 01:47:44 sun pluto[17925]: | RCOOKIE:  38 ec eb 3d  92 af 1e b1
May  1 01:47:44 sun pluto[17925]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:47:44 sun pluto[17925]: | state hash entry 7
May  1 01:47:44 sun pluto[17925]: | next event EVENT_REINIT_SECRET in 3586 seconds
May  1 01:47:56 sun pluto[17925]: | 
May  1 01:47:56 sun pluto[17925]: | *received whack message
May  1 01:47:56 sun pluto[17925]: shutting down
May  1 01:47:56 sun pluto[17925]: forgetting secrets
May  1 01:47:56 sun pluto[17925]: "host-host": deleting connection
May  1 01:47:56 sun pluto[17925]: | eroute_connection delete eroute fec0::1/128:0 -> fec0::2/128:0 => int:0@fec0::2:0
May  1 01:47:56 sun pluto[17925]: | eroute_connection delete eroute fec0::2/128:0 -> fec0::1/128:0 => int:0@:::0
May  1 01:47:56 sun pluto[17925]: | route owner of "host-host" unrouted: NULL
May  1 01:47:56 sun pluto[17925]: | executing unroute-host-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='unroute-host-v6' PLUTO_CONNECTION='host-host' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16388' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec0::2/128' PLUTO_MY_CLIENT_NET='fec0::2' PLUTO_MY_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec0::1/128' PLUTO_PEER_CLIENT_NET='fec0::1' PLUTO_PEER_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='' ipsec _updown iptables
May  1 01:47:56 sun pluto[17925]: "net-net": deleting connection
May  1 01:47:56 sun pluto[17925]: shutting down interface eth1/eth1 fec2::1
May  1 01:47:56 sun pluto[17925]: shutting down interface eth0/eth0 fec0::2
May  1 01:47:56 sun pluto[17925]: shutting down interface lo/lo ::1
May  1 01:47:56 sun pluto[17925]: shutting down interface lo/lo 127.0.0.1
May  1 01:47:56 sun pluto[17925]: shutting down interface eth0/eth0 192.168.0.2
May  1 01:47:56 sun pluto[17925]: shutting down interface eth1/eth1 10.2.0.1
May  1 01:47:58 sun ipsec_starter[17924]: pluto stopped after 280 ms