May  1 01:49:37 sun pluto[18609]: Starting IKEv1 pluto daemon (strongSwan 4.6.3) THREADS VENDORID
May  1 01:49:37 sun ipsec_starter[18608]: pluto (18609) started after 20 ms
May  1 01:49:37 sun pluto[18609]: listening on interfaces: 
May  1 01:49:37 sun pluto[18609]:   eth0 
May  1 01:49:37 sun pluto[18609]:     192.168.0.2 
May  1 01:49:37 sun pluto[18609]:     fec0::2 
May  1 01:49:37 sun pluto[18609]:     fe80::fcfd:c0ff:fea8:2 
May  1 01:49:37 sun pluto[18609]:   eth1 
May  1 01:49:37 sun pluto[18609]:     10.2.0.1 
May  1 01:49:37 sun pluto[18609]:     fec2::1 
May  1 01:49:37 sun pluto[18609]:     fe80::fcfd:aff:fe02:1 
May  1 01:49:37 sun pluto[18609]: loaded plugins: sha1 sha2 md5 aes des hmac pem pkcs1 x509 gmp random curl kernel-netlink 
May  1 01:49:37 sun pluto[18609]: | inserting event EVENT_REINIT_SECRET, timeout in 3600 seconds
May  1 01:49:37 sun pluto[18609]:   including NAT-Traversal patch (Version 0.6c) [disabled]
May  1 01:49:37 sun pluto[18609]: loading ca certificates from '/etc/ipsec.d/cacerts' 
May  1 01:49:37 sun pluto[18609]:   loaded ca certificate from '/etc/ipsec.d/cacerts/strongswanCert.pem'
May  1 01:49:37 sun pluto[18609]: |   authcert inserted
May  1 01:49:37 sun pluto[18609]: loading aa certificates from '/etc/ipsec.d/aacerts' 
May  1 01:49:37 sun pluto[18609]: loading ocsp certificates from '/etc/ipsec.d/ocspcerts' 
May  1 01:49:37 sun pluto[18609]: Changing to directory '/etc/ipsec.d/crls'
May  1 01:49:37 sun pluto[18609]: loading attribute certificates from '/etc/ipsec.d/acerts' 
May  1 01:49:37 sun pluto[18609]: spawning 4 worker threads 
May  1 01:49:37 sun pluto[18609]: | inserting event EVENT_LOG_DAILY, timeout in 79823 seconds
May  1 01:49:37 sun pluto[18609]: | next event EVENT_REINIT_SECRET in 3600 seconds
May  1 01:49:37 sun pluto[18609]: | 
May  1 01:49:37 sun pluto[18609]: | *received whack message
May  1 01:49:37 sun pluto[18609]: listening for IKE messages
May  1 01:49:37 sun pluto[18609]: | found lo with address 127.0.0.1
May  1 01:49:37 sun pluto[18609]: | found eth0 with address 192.168.0.2
May  1 01:49:37 sun pluto[18609]: | found eth1 with address 10.2.0.1
May  1 01:49:37 sun pluto[18609]: adding interface eth1/eth1 10.2.0.1:500
May  1 01:49:37 sun pluto[18609]: adding interface eth0/eth0 192.168.0.2:500
May  1 01:49:37 sun pluto[18609]: adding interface lo/lo 127.0.0.1:500
May  1 01:49:37 sun pluto[18609]: | found eth1 with address fec2:0000:0000:0000:0000:0000:0000:0001
May  1 01:49:37 sun pluto[18609]: | found eth0 with address fec0:0000:0000:0000:0000:0000:0000:0002
May  1 01:49:37 sun pluto[18609]: | found lo with address 0000:0000:0000:0000:0000:0000:0000:0001
May  1 01:49:37 sun pluto[18609]: adding interface lo/lo ::1:500
May  1 01:49:37 sun pluto[18609]: adding interface eth0/eth0 fec0::2:500
May  1 01:49:37 sun pluto[18609]: adding interface eth1/eth1 fec2::1:500
May  1 01:49:37 sun pluto[18609]: loading secrets from "/etc/ipsec.secrets"
May  1 01:49:37 sun pluto[18609]:   loaded private key from 'sunKey.pem'
May  1 01:49:37 sun pluto[18609]: | next event EVENT_REINIT_SECRET in 3599 seconds
May  1 01:49:37 sun pluto[18609]: | 
May  1 01:49:37 sun pluto[18609]: | *received whack message
May  1 01:49:37 sun pluto[18609]: | from whack: got --esp=aes128-sha1,3des-sha1
May  1 01:49:38 sun pluto[18609]: | esp proposal: AES_CBC_128/HMAC_SHA1, 3DES_CBC/HMAC_SHA1, 
May  1 01:49:38 sun pluto[18609]: | from whack: got --ike=aes128-sha1-modp2048,3des-sha1-modp1536
May  1 01:49:38 sun pluto[18609]: | ike proposal: AES_CBC_128/HMAC_SHA1/MODP_2048, 3DES_CBC/HMAC_SHA1/MODP_1536, 
May  1 01:49:38 sun pluto[18609]:   loaded host certificate from '/etc/ipsec.d/certs/sunCert.pem'
May  1 01:49:38 sun pluto[18609]: | certificate is valid
May  1 01:49:38 sun pluto[18609]: |   cert inserted
May  1 01:49:38 sun pluto[18609]: added connection description "net-net"
May  1 01:49:38 sun pluto[18609]: | fec2::/16===fec0::2[sun.strongswan.org]...fec0::1[moon.strongswan.org]===fec1::/16
May  1 01:49:38 sun pluto[18609]: | ike_life: 3600s; ipsec_life: 1200s; rekey_margin: 180s; rekey_fuzz: 100%; keyingtries: 1; policy: PUBKEY+ENCRYPT+TUNNEL+PFS
May  1 01:49:38 sun pluto[18609]: | next event EVENT_REINIT_SECRET in 3599 seconds
May  1 01:49:38 sun pluto[18609]: | 
May  1 01:49:38 sun pluto[18609]: | *received whack message
May  1 01:49:38 sun pluto[18609]: | from whack: got --esp=aes128-sha1,3des-sha1
May  1 01:49:38 sun pluto[18609]: | esp proposal: AES_CBC_128/HMAC_SHA1, 3DES_CBC/HMAC_SHA1, 
May  1 01:49:38 sun pluto[18609]: | from whack: got --ike=aes128-sha1-modp2048,3des-sha1-modp1536
May  1 01:49:38 sun pluto[18609]: | ike proposal: AES_CBC_128/HMAC_SHA1/MODP_2048, 3DES_CBC/HMAC_SHA1/MODP_1536, 
May  1 01:49:38 sun pluto[18609]:   loaded host certificate from '/etc/ipsec.d/certs/sunCert.pem'
May  1 01:49:38 sun pluto[18609]: | certificate is valid
May  1 01:49:38 sun pluto[18609]: added connection description "host-host"
May  1 01:49:38 sun pluto[18609]: | fec0::2[sun.strongswan.org]...fec0::1[moon.strongswan.org]
May  1 01:49:38 sun pluto[18609]: | ike_life: 3600s; ipsec_life: 1200s; rekey_margin: 180s; rekey_fuzz: 100%; keyingtries: 1; policy: PUBKEY+ENCRYPT+TUNNEL+PFS
May  1 01:49:38 sun pluto[18609]: | next event EVENT_REINIT_SECRET in 3599 seconds
May  1 01:49:37 sun pluto[18609]: | fetch thread started
May  1 01:49:38 sun pluto[18609]: | next regular crl check in 180 seconds
May  1 01:49:39 sun pluto[18609]: | 
May  1 01:49:39 sun pluto[18609]: | *received 168 bytes from fec0::1:500 on eth0
May  1 01:49:39 sun pluto[18609]: packet from fec0::1:500: received Vendor ID payload [strongSwan]
May  1 01:49:39 sun pluto[18609]: packet from fec0::1:500: received Vendor ID payload [XAUTH]
May  1 01:49:39 sun pluto[18609]: packet from fec0::1:500: received Vendor ID payload [Dead Peer Detection]
May  1 01:49:39 sun pluto[18609]: | preparse_isakmp_policy: peer requests PUBKEY authentication
May  1 01:49:39 sun pluto[18609]: | creating state object #1 at 0x80f1bec
May  1 01:49:39 sun pluto[18609]: | ICOOKIE:  f0 07 99 5f  f4 72 2d 5e
May  1 01:49:39 sun pluto[18609]: | RCOOKIE:  12 02 e4 ab  23 38 8a 93
May  1 01:49:39 sun pluto[18609]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:49:39 sun pluto[18609]: | state hash entry 0
May  1 01:49:39 sun pluto[18609]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #1
May  1 01:49:39 sun pluto[18609]: "host-host" #1: responding to Main Mode
May  1 01:49:39 sun pluto[18609]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #1
May  1 01:49:39 sun pluto[18609]: | next event EVENT_RETRANSMIT in 10 seconds for #1
May  1 01:49:39 sun pluto[18609]: | 
May  1 01:49:39 sun pluto[18609]: | *received 308 bytes from fec0::1:500 on eth0
May  1 01:49:39 sun pluto[18609]: | ICOOKIE:  f0 07 99 5f  f4 72 2d 5e
May  1 01:49:39 sun pluto[18609]: | RCOOKIE:  12 02 e4 ab  23 38 8a 93
May  1 01:49:39 sun pluto[18609]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:49:39 sun pluto[18609]: | state hash entry 0
May  1 01:49:39 sun pluto[18609]: | state object #1 found, in STATE_MAIN_R1
May  1 01:49:39 sun pluto[18609]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #1
May  1 01:49:39 sun pluto[18609]: | next event EVENT_RETRANSMIT in 10 seconds for #1
May  1 01:49:40 sun pluto[18609]: | 
May  1 01:49:40 sun pluto[18609]: | *received 1388 bytes from fec0::1:500 on eth0
May  1 01:49:40 sun pluto[18609]: | ICOOKIE:  f0 07 99 5f  f4 72 2d 5e
May  1 01:49:40 sun pluto[18609]: | RCOOKIE:  12 02 e4 ab  23 38 8a 93
May  1 01:49:40 sun pluto[18609]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:49:40 sun pluto[18609]: | state hash entry 0
May  1 01:49:40 sun pluto[18609]: | state object #1 found, in STATE_MAIN_R2
May  1 01:49:40 sun pluto[18609]: "host-host" #1: Peer ID is ID_FQDN: 'moon.strongswan.org'
May  1 01:49:40 sun pluto[18609]: | subject: 'C=CH, O=Linux strongSwan, CN=moon.strongswan.org'
May  1 01:49:40 sun pluto[18609]: | issuer:  'C=CH, O=Linux strongSwan, CN=strongSwan Root CA'
May  1 01:49:40 sun pluto[18609]: | authkey:  5d:a7:dd:70:06:51:32:7e:e7:b6:6d:b3:b5:e5:e0:60:ea:2e:4d:ef
May  1 01:49:40 sun pluto[18609]: | certificate is valid
May  1 01:49:40 sun pluto[18609]: | issuer cacert found
May  1 01:49:40 sun pluto[18609]: | certificate signature is valid
May  1 01:49:40 sun pluto[18609]: "host-host" #1: crl not found
May  1 01:49:40 sun pluto[18609]: | crl fetch request added
May  1 01:49:40 sun pluto[18609]: | fetch thread was woken up
May  1 01:49:40 sun pluto[18609]:   fetching crl from 'http://crl.strongswan.org/strongswan.crl' ... 
May  1 01:49:40 sun pluto[18609]: "host-host" #1: certificate status unknown
May  1 01:49:40 sun pluto[18609]: | crl issuer cacert found
May  1 01:49:40 sun pluto[18609]: | crl signature is valid
May  1 01:49:40 sun pluto[18609]: | we have a valid crl
May  1 01:49:40 sun pluto[18609]: | next regular crl check in 180 seconds
May  1 01:49:40 sun pluto[18609]: | subject: 'C=CH, O=Linux strongSwan, CN=strongSwan Root CA'
May  1 01:49:40 sun pluto[18609]: | issuer:  'C=CH, O=Linux strongSwan, CN=strongSwan Root CA'
May  1 01:49:40 sun pluto[18609]: | authkey:  5d:a7:dd:70:06:51:32:7e:e7:b6:6d:b3:b5:e5:e0:60:ea:2e:4d:ef
May  1 01:49:40 sun pluto[18609]: | certificate is valid
May  1 01:49:40 sun pluto[18609]: | issuer cacert found
May  1 01:49:40 sun pluto[18609]: | certificate signature is valid
May  1 01:49:40 sun pluto[18609]: | reached self-signed root ca with a path length of 0
May  1 01:49:40 sun pluto[18609]: | RSA signature check passed with keyid 6e:55:dc:7e:9c:a5:58:d9:5b:e3:c7:13:14:e1:43:51:e4:fa:10:94
May  1 01:49:40 sun pluto[18609]: | peer CA:      "C=CH, O=Linux strongSwan, CN=strongSwan Root CA"
May  1 01:49:40 sun pluto[18609]: | requested CA: %any
May  1 01:49:40 sun pluto[18609]: | offered CA:   "C=CH, O=Linux strongSwan, CN=strongSwan Root CA"
May  1 01:49:40 sun pluto[18609]: | our certificate policy is SEND_IF_ASKED
May  1 01:49:40 sun pluto[18609]: "host-host" #1: we have a cert and are sending it upon request
May  1 01:49:40 sun pluto[18609]: | inserting event EVENT_SA_REPLACE, timeout in 3510 seconds for #1
May  1 01:49:40 sun pluto[18609]: "host-host" #1: sent MR3, ISAKMP SA established
May  1 01:49:40 sun pluto[18609]: | next event EVENT_SA_REPLACE in 3509 seconds for #1
May  1 01:49:41 sun pluto[18609]: | 
May  1 01:49:41 sun pluto[18609]: | *received 508 bytes from fec0::1:500 on eth0
May  1 01:49:41 sun pluto[18609]: | ICOOKIE:  f0 07 99 5f  f4 72 2d 5e
May  1 01:49:41 sun pluto[18609]: | RCOOKIE:  12 02 e4 ab  23 38 8a 93
May  1 01:49:41 sun pluto[18609]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:49:41 sun pluto[18609]: | state hash entry 0
May  1 01:49:41 sun pluto[18609]: | state object not found
May  1 01:49:41 sun pluto[18609]: | ICOOKIE:  f0 07 99 5f  f4 72 2d 5e
May  1 01:49:41 sun pluto[18609]: | RCOOKIE:  12 02 e4 ab  23 38 8a 93
May  1 01:49:41 sun pluto[18609]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:49:41 sun pluto[18609]: | state hash entry 0
May  1 01:49:41 sun pluto[18609]: | state object #1 found, in STATE_MAIN_R3
May  1 01:49:41 sun pluto[18609]: | peer client is subnet fec1::/16
May  1 01:49:41 sun pluto[18609]: | peer client protocol/port is 0/0
May  1 01:49:41 sun pluto[18609]: | our client is subnet fec2::/16
May  1 01:49:41 sun pluto[18609]: | our client protocol/port is 0/0
May  1 01:49:41 sun pluto[18609]: | no valid attribute cert found
May  1 01:49:41 sun pluto[18609]: | using connection "net-net"
May  1 01:49:41 sun pluto[18609]: | duplicating state object #1
May  1 01:49:41 sun pluto[18609]: | creating state object #2 at 0x80f3a14
May  1 01:49:41 sun pluto[18609]: | ICOOKIE:  f0 07 99 5f  f4 72 2d 5e
May  1 01:49:41 sun pluto[18609]: | RCOOKIE:  12 02 e4 ab  23 38 8a 93
May  1 01:49:41 sun pluto[18609]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:49:41 sun pluto[18609]: | state hash entry 0
May  1 01:49:41 sun pluto[18609]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #2
May  1 01:49:41 sun pluto[18609]: "net-net" #2: responding to Quick Mode
May  1 01:49:41 sun pluto[18609]: | kernel_alg_esp_auth_keylen(auth=2, sadb_aalg=3): a_keylen=20
May  1 01:49:41 sun pluto[18609]: | route owner of "net-net" unrouted: NULL
May  1 01:49:41 sun pluto[18609]: | install_inbound_ipsec_sa() checking if we can route
May  1 01:49:41 sun pluto[18609]: | route owner of "net-net" unrouted: NULL; eroute owner: NULL
May  1 01:49:41 sun pluto[18609]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #2
May  1 01:49:41 sun pluto[18609]: | next event EVENT_RETRANSMIT in 10 seconds for #2
May  1 01:49:43 sun pluto[18609]: | 
May  1 01:49:43 sun pluto[18609]: | *received 60 bytes from fec0::1:500 on eth0
May  1 01:49:43 sun pluto[18609]: | ICOOKIE:  f0 07 99 5f  f4 72 2d 5e
May  1 01:49:43 sun pluto[18609]: | RCOOKIE:  12 02 e4 ab  23 38 8a 93
May  1 01:49:43 sun pluto[18609]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:49:43 sun pluto[18609]: | state hash entry 0
May  1 01:49:43 sun pluto[18609]: | state object #2 found, in STATE_QUICK_R1
May  1 01:49:43 sun pluto[18609]: | kernel_alg_esp_auth_keylen(auth=2, sadb_aalg=3): a_keylen=20
May  1 01:49:43 sun pluto[18609]: | install_ipsec_sa() for #2: outbound only
May  1 01:49:43 sun pluto[18609]: | route owner of "net-net" unrouted: NULL; eroute owner: NULL
May  1 01:49:43 sun pluto[18609]: | sr for #2: unrouted
May  1 01:49:43 sun pluto[18609]: | route owner of "net-net" unrouted: NULL; eroute owner: NULL
May  1 01:49:43 sun pluto[18609]: | eroute_connection add eroute fec1::/16:0 -> fec2::/16:0 => tun:0@fec0::2:0
May  1 01:49:43 sun pluto[18609]: | eroute_connection add eroute fec2::/16:0 -> fec1::/16:0 => tun:0@fec0::1:0
May  1 01:49:43 sun pluto[18609]: | executing up-client-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='up-client-v6' PLUTO_CONNECTION='net-net' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16384' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec2::/16' PLUTO_MY_CLIENT_NET='fec2::' PLUTO_MY_CLIENT_MASK='ffff::' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec1::/16' PLUTO_PEER_CLIENT_NET='fec1::' PLUTO_PEER_CLIENT_MASK='ffff::' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='C=CH, O=Linux strongSwan, CN=strongSwan Root CA' ipsec _updown iptables
May  1 01:49:44 sun pluto[18609]: | route_and_eroute: firewall_notified: true
May  1 01:49:44 sun pluto[18609]: | executing prepare-client-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='prepare-client-v6' PLUTO_CONNECTION='net-net' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16384' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec2::/16' PLUTO_MY_CLIENT_NET='fec2::' PLUTO_MY_CLIENT_MASK='ffff::' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec1::/16' PLUTO_PEER_CLIENT_NET='fec1::' PLUTO_PEER_CLIENT_MASK='ffff::' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='C=CH, O=Linux strongSwan, CN=strongSwan Root CA' ipsec _updown iptables
May  1 01:49:44 sun pluto[18609]: | executing route-client-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='route-client-v6' PLUTO_CONNECTION='net-net' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16384' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec2::/16' PLUTO_MY_CLIENT_NET='fec2::' PLUTO_MY_CLIENT_MASK='ffff::' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec1::/16' PLUTO_PEER_CLIENT_NET='fec1::' PLUTO_PEER_CLIENT_MASK='ffff::' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='C=CH, O=Linux strongSwan, CN=strongSwan Root CA' ipsec _updown iptables
May  1 01:49:44 sun pluto[18609]: | route_and_eroute: instance "net-net", setting eroute_owner {spd=0x80e8af4,sr=0x80e8af4} to #2 (was #0) (newest_ipsec_sa=#0)
May  1 01:49:44 sun pluto[18609]: | inserting event EVENT_SA_REPLACE, timeout in 1110 seconds for #2
May  1 01:49:44 sun pluto[18609]: "net-net" #2: IPsec SA established {ESP=>0xcbca34fa <0xc186fa12}
May  1 01:49:44 sun pluto[18609]: | next event EVENT_SA_REPLACE in 1110 seconds for #2
May  1 01:49:44 sun pluto[18609]: | 
May  1 01:49:44 sun pluto[18609]: | *received whack message
May  1 01:49:45 sun pluto[18609]: | next event EVENT_SA_REPLACE in 1110 seconds for #2
May  1 01:49:48 sun pluto[18609]: | 
May  1 01:49:48 sun pluto[18609]: | *received whack message
May  1 01:49:48 sun pluto[18609]: | next event EVENT_SA_REPLACE in 1107 seconds for #2
May  1 01:49:48 sun pluto[18609]: | 
May  1 01:49:48 sun pluto[18609]: | *received whack message
May  1 01:49:48 sun pluto[18609]: | next event EVENT_SA_REPLACE in 1106 seconds for #2
May  1 01:49:50 sun pluto[18609]: | 
May  1 01:49:50 sun pluto[18609]: | *received 76 bytes from fec0::1:500 on eth0
May  1 01:49:50 sun pluto[18609]: | ICOOKIE:  f0 07 99 5f  f4 72 2d 5e
May  1 01:49:50 sun pluto[18609]: | RCOOKIE:  12 02 e4 ab  23 38 8a 93
May  1 01:49:50 sun pluto[18609]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:49:50 sun pluto[18609]: | state hash entry 0
May  1 01:49:50 sun pluto[18609]: | state object #1 found, in STATE_MAIN_R3
May  1 01:49:50 sun pluto[18609]: "host-host" #1: received Delete SA(0xcbca34fa) payload: deleting IPSEC State #2
May  1 01:49:50 sun pluto[18609]: | ICOOKIE:  f0 07 99 5f  f4 72 2d 5e
May  1 01:49:50 sun pluto[18609]: | RCOOKIE:  12 02 e4 ab  23 38 8a 93
May  1 01:49:50 sun pluto[18609]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:49:50 sun pluto[18609]: | state hash entry 0
May  1 01:49:50 sun pluto[18609]: | executing down-client-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='down-client-v6' PLUTO_CONNECTION='net-net' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16384' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec2::/16' PLUTO_MY_CLIENT_NET='fec2::' PLUTO_MY_CLIENT_MASK='ffff::' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec1::/16' PLUTO_PEER_CLIENT_NET='fec1::' PLUTO_PEER_CLIENT_MASK='ffff::' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='C=CH, O=Linux strongSwan, CN=strongSwan Root CA' ipsec _updown iptables
May  1 01:49:51 sun pluto[18609]: | eroute_connection replace with shunt eroute fec1::/16:0 -> fec2::/16:0 => int:104@fec0::2:0
May  1 01:49:51 sun pluto[18609]: | eroute_connection replace with shunt eroute fec2::/16:0 -> fec1::/16:0 => int:104@:::0
May  1 01:49:51 sun pluto[18609]: | next event EVENT_SA_REPLACE in 3499 seconds for #1
May  1 01:49:51 sun pluto[18609]: | 
May  1 01:49:51 sun pluto[18609]: | *received 92 bytes from fec0::1:500 on eth0
May  1 01:49:51 sun pluto[18609]: | ICOOKIE:  f0 07 99 5f  f4 72 2d 5e
May  1 01:49:51 sun pluto[18609]: | RCOOKIE:  12 02 e4 ab  23 38 8a 93
May  1 01:49:51 sun pluto[18609]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:49:51 sun pluto[18609]: | state hash entry 0
May  1 01:49:51 sun pluto[18609]: | state object #1 found, in STATE_MAIN_R3
May  1 01:49:51 sun pluto[18609]: | ICOOKIE:  f0 07 99 5f  f4 72 2d 5e
May  1 01:49:51 sun pluto[18609]: | RCOOKIE:  12 02 e4 ab  23 38 8a 93
May  1 01:49:51 sun pluto[18609]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:49:51 sun pluto[18609]: | state hash entry 0
May  1 01:49:51 sun pluto[18609]: | state object #1 found, in STATE_MAIN_R3
May  1 01:49:51 sun pluto[18609]: "host-host" #1: received Delete SA payload: deleting ISAKMP State #1
May  1 01:49:51 sun pluto[18609]: | ICOOKIE:  f0 07 99 5f  f4 72 2d 5e
May  1 01:49:51 sun pluto[18609]: | RCOOKIE:  12 02 e4 ab  23 38 8a 93
May  1 01:49:51 sun pluto[18609]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 01:49:51 sun pluto[18609]: | state hash entry 0
May  1 01:49:51 sun pluto[18609]: | next event EVENT_REINIT_SECRET in 3586 seconds
May  1 01:50:02 sun pluto[18609]: | 
May  1 01:50:02 sun pluto[18609]: | *received whack message
May  1 01:50:02 sun pluto[18609]: shutting down
May  1 01:50:02 sun pluto[18609]: forgetting secrets
May  1 01:50:02 sun pluto[18609]: "host-host": deleting connection
May  1 01:50:02 sun pluto[18609]: "net-net": deleting connection
May  1 01:50:02 sun pluto[18609]: | eroute_connection delete eroute fec1::/16:0 -> fec2::/16:0 => int:0@fec0::2:0
May  1 01:50:02 sun pluto[18609]: | eroute_connection delete eroute fec2::/16:0 -> fec1::/16:0 => int:0@:::0
May  1 01:50:02 sun pluto[18609]: | route owner of "net-net" unrouted: NULL
May  1 01:50:02 sun pluto[18609]: | executing unroute-client-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='unroute-client-v6' PLUTO_CONNECTION='net-net' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16384' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec2::/16' PLUTO_MY_CLIENT_NET='fec2::' PLUTO_MY_CLIENT_MASK='ffff::' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec1::/16' PLUTO_PEER_CLIENT_NET='fec1::' PLUTO_PEER_CLIENT_MASK='ffff::' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='' ipsec _updown iptables
May  1 01:50:03 sun pluto[18609]: shutting down interface eth1/eth1 fec2::1
May  1 01:50:03 sun pluto[18609]: shutting down interface eth0/eth0 fec0::2
May  1 01:50:03 sun pluto[18609]: shutting down interface lo/lo ::1
May  1 01:50:03 sun pluto[18609]: shutting down interface lo/lo 127.0.0.1
May  1 01:50:03 sun pluto[18609]: shutting down interface eth0/eth0 192.168.0.2
May  1 01:50:03 sun pluto[18609]: shutting down interface eth1/eth1 10.2.0.1
May  1 01:50:04 sun ipsec_starter[18608]: pluto stopped after 260 ms