May 1 01:48:32 sun charon: 00[DMN] Starting IKEv2 charon daemon (strongSwan 4.6.3) May 1 01:48:32 sun charon: 00[CFG] loading ca certificates from '/etc/ipsec.d/cacerts' May 1 01:48:32 sun charon: 00[CFG] loaded ca certificate "C=CH, O=Linux strongSwan, CN=strongSwan Root CA" from '/etc/ipsec.d/cacerts/strongswanCert.pem' May 1 01:48:32 sun charon: 00[CFG] loading aa certificates from '/etc/ipsec.d/aacerts' May 1 01:48:32 sun charon: 00[CFG] loading ocsp signer certificates from '/etc/ipsec.d/ocspcerts' May 1 01:48:32 sun charon: 00[CFG] loading attribute certificates from '/etc/ipsec.d/acerts' May 1 01:48:32 sun charon: 00[CFG] loading crls from '/etc/ipsec.d/crls' May 1 01:48:32 sun charon: 00[CFG] loading secrets from '/etc/ipsec.secrets' May 1 01:48:32 sun charon: 00[CFG] loaded RSA private key from '/etc/ipsec.d/private/sunKey.pem' May 1 01:48:32 sun charon: 00[KNL] listening on interfaces: May 1 01:48:32 sun charon: 00[KNL] eth0 May 1 01:48:32 sun charon: 00[KNL] 192.168.0.2 May 1 01:48:32 sun charon: 00[KNL] fec0::2 May 1 01:48:32 sun charon: 00[KNL] fe80::fcfd:c0ff:fea8:2 May 1 01:48:32 sun charon: 00[KNL] eth1 May 1 01:48:32 sun charon: 00[KNL] 10.2.0.1 May 1 01:48:32 sun charon: 00[KNL] fec2::1 May 1 01:48:32 sun charon: 00[KNL] fe80::fcfd:aff:fe02:1 May 1 01:48:32 sun charon: 00[DMN] loaded plugins: curl aes des sha1 sha2 md5 pem pkcs1 gmp random x509 revocation hmac xcbc stroke kernel-netlink socket-default updown May 1 01:48:32 sun charon: 00[JOB] spawning 16 worker threads May 1 01:48:33 sun charon: 09[CFG] received stroke: add ca 'strongswan' May 1 01:48:33 sun charon: 09[CFG] added ca 'strongswan' May 1 01:48:33 sun charon: 13[CFG] received stroke: add connection 'net-net' May 1 01:48:33 sun charon: 13[CFG] loaded certificate "C=CH, O=Linux strongSwan, CN=sun.strongswan.org" from 'sunCert.pem' May 1 01:48:33 sun charon: 13[CFG] added configuration 'net-net' May 1 01:48:33 sun charon: 09[CFG] received stroke: add connection 'host-host' May 1 01:48:33 sun charon: 09[CFG] loaded certificate "C=CH, O=Linux strongSwan, CN=sun.strongswan.org" from 'sunCert.pem' May 1 01:48:33 sun charon: 09[CFG] added child to existing configuration 'net-net' May 1 01:48:35 sun charon: 06[NET] received packet: from fec0::1[500] to fec0::2[500] May 1 01:48:35 sun charon: 06[ENC] parsed IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) ] May 1 01:48:35 sun charon: 06[IKE] fec0::1 is initiating an IKE_SA May 1 01:48:35 sun charon: 06[IKE] sending cert request for "C=CH, O=Linux strongSwan, CN=strongSwan Root CA" May 1 01:48:35 sun charon: 06[ENC] generating IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(HTTP_CERT_LOOK) CERTREQ N(MULT_AUTH) ] May 1 01:48:35 sun charon: 06[NET] sending packet: from fec0::2[500] to fec0::1[500] May 1 01:48:35 sun charon: 05[NET] received packet: from fec0::1[4500] to fec0::2[4500] May 1 01:48:35 sun charon: 05[ENC] parsed IKE_AUTH request 1 [ IDi CERT N(INIT_CONTACT) N(HTTP_CERT_LOOK) CERTREQ IDr AUTH SA TSi TSr N(MOBIKE_SUP) N(ADD_4_ADDR) N(ADD_4_ADDR) N(ADD_6_ADDR) N(MULT_AUTH) N(EAP_ONLY) ] May 1 01:48:35 sun charon: 05[IKE] received cert request for "C=CH, O=Linux strongSwan, CN=strongSwan Root CA" May 1 01:48:35 sun charon: 05[IKE] received hash-and-url for end entity cert "http://ip6-winnetou.strongswan.org/certs/160769ece9ead9c1c4d89c34aa004c3b66402081" May 1 01:48:35 sun charon: 05[CFG] looking for peer configs matching fec0::2[sun.strongswan.org]...fec0::1[moon.strongswan.org] May 1 01:48:35 sun charon: 05[CFG] selected peer config 'net-net' May 1 01:48:35 sun charon: 05[CFG] fetching certificate from 'http://ip6-winnetou.strongswan.org/certs/160769ece9ead9c1c4d89c34aa004c3b66402081' ... May 1 01:48:35 sun charon: 05[CFG] fetched certificate "C=CH, O=Linux strongSwan, CN=moon.strongswan.org" May 1 01:48:35 sun charon: 05[CFG] using certificate "C=CH, O=Linux strongSwan, CN=moon.strongswan.org" May 1 01:48:35 sun charon: 05[CFG] using trusted ca certificate "C=CH, O=Linux strongSwan, CN=strongSwan Root CA" May 1 01:48:35 sun charon: 05[CFG] checking certificate status of "C=CH, O=Linux strongSwan, CN=moon.strongswan.org" May 1 01:48:35 sun charon: 05[CFG] fetching crl from 'http://ip6-winnetou.strongswan.org/strongswan.crl' ... May 1 01:48:35 sun charon: 05[CFG] using trusted certificate "C=CH, O=Linux strongSwan, CN=strongSwan Root CA" May 1 01:48:35 sun charon: 05[CFG] crl correctly signed by "C=CH, O=Linux strongSwan, CN=strongSwan Root CA" May 1 01:48:35 sun charon: 05[CFG] crl is valid: until May 30 20:17:22 2012 May 1 01:48:35 sun charon: 05[CFG] certificate status is good May 1 01:48:35 sun charon: 05[CFG] reached self-signed root ca with a path length of 0 May 1 01:48:35 sun charon: 05[IKE] authentication of 'moon.strongswan.org' with RSA signature successful May 1 01:48:35 sun charon: 05[IKE] peer supports MOBIKE May 1 01:48:36 sun charon: 05[IKE] authentication of 'sun.strongswan.org' (myself) with RSA signature successful May 1 01:48:36 sun charon: 05[IKE] IKE_SA net-net[1] established between fec0::2[sun.strongswan.org]...fec0::1[moon.strongswan.org] May 1 01:48:36 sun charon: 05[IKE] scheduling reauthentication in 3274s May 1 01:48:36 sun charon: 05[IKE] maximum IKE_SA lifetime 3454s May 1 01:48:36 sun charon: 05[IKE] sending hash-and-url "http://ip6-winnetou.strongswan.org/certs/442b7162c7a4c27bd0f1076e345c5664bed53c7c" May 1 01:48:36 sun charon: 05[IKE] sending end entity cert "C=CH, O=Linux strongSwan, CN=sun.strongswan.org" May 1 01:48:36 sun charon: 05[IKE] CHILD_SA host-host{1} established with SPIs c036c297_i c1567233_o and TS fec0::2/128 === fec0::1/128 May 1 01:48:36 sun charon: 05[ENC] generating IKE_AUTH response 1 [ IDr CERT AUTH SA TSi TSr N(AUTH_LFT) N(MOBIKE_SUP) N(ADD_4_ADDR) N(ADD_4_ADDR) N(ADD_6_ADDR) ] May 1 01:48:36 sun charon: 05[NET] sending packet: from fec0::2[4500] to fec0::1[4500] May 1 01:48:36 sun charon: 03[IKE] old path is not available anymore, try to find another May 1 01:48:36 sun charon: 03[IKE] looking for a route to fec0::1 ... May 1 01:48:36 sun charon: 03[IKE] looking for a route to 192.168.0.1 ... May 1 01:48:36 sun charon: 03[IKE] sending address list update using MOBIKE, implicitly requesting an address change May 1 01:48:36 sun charon: 03[ENC] generating INFORMATIONAL request 0 [ ] May 1 01:48:36 sun charon: 03[IKE] checking path 192.168.0.2[4500] - 192.168.0.1[4500] May 1 01:48:36 sun charon: 03[NET] sending packet: from 192.168.0.2[4500] to 192.168.0.1[4500] May 1 01:48:36 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:36 sun charon: 03[IKE] checking path 192.168.0.2[4500] - 10.1.0.1[4500] May 1 01:48:36 sun charon: 03[NET] sending packet: from 192.168.0.2[4500] to 10.1.0.1[4500] May 1 01:48:36 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:36 sun charon: 03[IKE] checking path fec0::2[4500] - fec1::1[4500] May 1 01:48:36 sun charon: 03[NET] sending packet: from fec0::2[4500] to fec1::1[4500] May 1 01:48:36 sun charon: 12[NET] error writing to socket: Network is unreachable May 1 01:48:39 sun charon: 08[IKE] path probing attempt 1 May 1 01:48:39 sun charon: 08[IKE] checking path 192.168.0.2[4500] - 192.168.0.1[4500] May 1 01:48:39 sun charon: 08[NET] sending packet: from 192.168.0.2[4500] to 192.168.0.1[4500] May 1 01:48:39 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:39 sun charon: 08[IKE] checking path 192.168.0.2[4500] - 10.1.0.1[4500] May 1 01:48:39 sun charon: 08[NET] sending packet: from 192.168.0.2[4500] to 10.1.0.1[4500] May 1 01:48:39 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:39 sun charon: 08[IKE] checking path fec0::2[4500] - fec1::1[4500] May 1 01:48:39 sun charon: 08[NET] sending packet: from fec0::2[4500] to fec1::1[4500] May 1 01:48:39 sun charon: 12[NET] error writing to socket: Network is unreachable May 1 01:48:41 sun charon: 15[IKE] path probing attempt 2 May 1 01:48:41 sun charon: 15[IKE] checking path 192.168.0.2[4500] - 192.168.0.1[4500] May 1 01:48:41 sun charon: 15[NET] sending packet: from 192.168.0.2[4500] to 192.168.0.1[4500] May 1 01:48:41 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:41 sun charon: 15[IKE] checking path 192.168.0.2[4500] - 10.1.0.1[4500] May 1 01:48:41 sun charon: 15[NET] sending packet: from 192.168.0.2[4500] to 10.1.0.1[4500] May 1 01:48:41 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:41 sun charon: 15[IKE] checking path fec0::2[4500] - fec1::1[4500] May 1 01:48:41 sun charon: 15[NET] sending packet: from fec0::2[4500] to fec1::1[4500] May 1 01:48:41 sun charon: 12[NET] error writing to socket: Network is unreachable May 1 01:48:44 sun charon: 03[IKE] path probing attempt 3 May 1 01:48:44 sun charon: 03[IKE] checking path 192.168.0.2[4500] - 192.168.0.1[4500] May 1 01:48:44 sun charon: 03[NET] sending packet: from 192.168.0.2[4500] to 192.168.0.1[4500] May 1 01:48:44 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:44 sun charon: 03[IKE] checking path 192.168.0.2[4500] - 10.1.0.1[4500] May 1 01:48:44 sun charon: 03[NET] sending packet: from 192.168.0.2[4500] to 10.1.0.1[4500] May 1 01:48:44 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:44 sun charon: 03[IKE] checking path fec0::2[4500] - fec1::1[4500] May 1 01:48:44 sun charon: 03[NET] sending packet: from fec0::2[4500] to fec1::1[4500] May 1 01:48:44 sun charon: 12[NET] error writing to socket: Network is unreachable May 1 01:48:47 sun charon: 13[IKE] path probing attempt 4 May 1 01:48:47 sun charon: 13[IKE] checking path 192.168.0.2[4500] - 192.168.0.1[4500] May 1 01:48:47 sun charon: 13[NET] sending packet: from 192.168.0.2[4500] to 192.168.0.1[4500] May 1 01:48:47 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:47 sun charon: 13[IKE] checking path 192.168.0.2[4500] - 10.1.0.1[4500] May 1 01:48:47 sun charon: 13[NET] sending packet: from 192.168.0.2[4500] to 10.1.0.1[4500] May 1 01:48:47 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:47 sun charon: 13[IKE] checking path fec0::2[4500] - fec1::1[4500] May 1 01:48:47 sun charon: 13[NET] sending packet: from fec0::2[4500] to fec1::1[4500] May 1 01:48:47 sun charon: 12[NET] error writing to socket: Network is unreachable May 1 01:48:49 sun charon: 01[IKE] path probing attempt 5 May 1 01:48:49 sun charon: 01[IKE] checking path 192.168.0.2[4500] - 192.168.0.1[4500] May 1 01:48:49 sun charon: 01[NET] sending packet: from 192.168.0.2[4500] to 192.168.0.1[4500] May 1 01:48:49 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:49 sun charon: 01[IKE] checking path 192.168.0.2[4500] - 10.1.0.1[4500] May 1 01:48:49 sun charon: 01[NET] sending packet: from 192.168.0.2[4500] to 10.1.0.1[4500] May 1 01:48:49 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:49 sun charon: 01[IKE] checking path fec0::2[4500] - fec1::1[4500] May 1 01:48:49 sun charon: 01[NET] sending packet: from fec0::2[4500] to fec1::1[4500] May 1 01:48:49 sun charon: 12[NET] error writing to socket: Network is unreachable May 1 01:48:52 sun charon: 08[IKE] path probing attempt 6 May 1 01:48:52 sun charon: 08[IKE] checking path 192.168.0.2[4500] - 192.168.0.1[4500] May 1 01:48:52 sun charon: 08[NET] sending packet: from 192.168.0.2[4500] to 192.168.0.1[4500] May 1 01:48:52 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:52 sun charon: 08[IKE] checking path 192.168.0.2[4500] - 10.1.0.1[4500] May 1 01:48:52 sun charon: 08[NET] sending packet: from 192.168.0.2[4500] to 10.1.0.1[4500] May 1 01:48:52 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:52 sun charon: 08[IKE] checking path fec0::2[4500] - fec1::1[4500] May 1 01:48:52 sun charon: 08[NET] sending packet: from fec0::2[4500] to fec1::1[4500] May 1 01:48:52 sun charon: 12[NET] error writing to socket: Network is unreachable May 1 01:48:54 sun charon: 15[IKE] path probing attempt 7 May 1 01:48:54 sun charon: 15[IKE] checking path 192.168.0.2[4500] - 192.168.0.1[4500] May 1 01:48:54 sun charon: 15[NET] sending packet: from 192.168.0.2[4500] to 192.168.0.1[4500] May 1 01:48:54 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:54 sun charon: 15[IKE] checking path 192.168.0.2[4500] - 10.1.0.1[4500] May 1 01:48:54 sun charon: 15[NET] sending packet: from 192.168.0.2[4500] to 10.1.0.1[4500] May 1 01:48:54 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:54 sun charon: 15[IKE] checking path fec0::2[4500] - fec1::1[4500] May 1 01:48:54 sun charon: 15[NET] sending packet: from fec0::2[4500] to fec1::1[4500] May 1 01:48:54 sun charon: 12[NET] error writing to socket: Network is unreachable May 1 01:48:57 sun charon: 02[IKE] path probing attempt 8 May 1 01:48:57 sun charon: 02[IKE] checking path 192.168.0.2[4500] - 192.168.0.1[4500] May 1 01:48:57 sun charon: 02[NET] sending packet: from 192.168.0.2[4500] to 192.168.0.1[4500] May 1 01:48:57 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:57 sun charon: 02[IKE] checking path 192.168.0.2[4500] - 10.1.0.1[4500] May 1 01:48:57 sun charon: 02[NET] sending packet: from 192.168.0.2[4500] to 10.1.0.1[4500] May 1 01:48:57 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:57 sun charon: 02[IKE] checking path fec0::2[4500] - fec1::1[4500] May 1 01:48:57 sun charon: 02[NET] sending packet: from fec0::2[4500] to fec1::1[4500] May 1 01:48:57 sun charon: 12[NET] error writing to socket: Network is unreachable May 1 01:48:59 sun charon: 06[IKE] path probing attempt 9 May 1 01:48:59 sun charon: 06[IKE] checking path 192.168.0.2[4500] - 192.168.0.1[4500] May 1 01:48:59 sun charon: 06[NET] sending packet: from 192.168.0.2[4500] to 192.168.0.1[4500] May 1 01:48:59 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:59 sun charon: 06[IKE] checking path 192.168.0.2[4500] - 10.1.0.1[4500] May 1 01:48:59 sun charon: 06[NET] sending packet: from 192.168.0.2[4500] to 10.1.0.1[4500] May 1 01:48:59 sun charon: 06[IKE] checking path fec0::2[4500] - fec1::1[4500] May 1 01:48:59 sun charon: 06[NET] sending packet: from fec0::2[4500] to fec1::1[4500] May 1 01:48:59 sun charon: 12[NET] error writing to socket: Operation not permitted May 1 01:48:59 sun charon: 12[NET] error writing to socket: Network is unreachable May 1 01:48:59 sun charon: 00[DMN] signal of type SIGINT received. Shutting down May 1 01:49:00 sun charon: 00[KNL] received netlink error: No route to host (113)