May 1 02:00:16 moon charon: 00[DMN] Starting IKEv2 charon daemon (strongSwan 4.6.3) May 1 02:00:16 moon charon: 00[CFG] loading ca certificates from '/etc/ipsec.d/cacerts' May 1 02:00:16 moon charon: 00[CFG] loading aa certificates from '/etc/ipsec.d/aacerts' May 1 02:00:16 moon charon: 00[CFG] loading ocsp signer certificates from '/etc/ipsec.d/ocspcerts' May 1 02:00:16 moon charon: 00[CFG] loading attribute certificates from '/etc/ipsec.d/acerts' May 1 02:00:16 moon charon: 00[CFG] loading crls from '/etc/ipsec.d/crls' May 1 02:00:16 moon charon: 00[CFG] loading secrets from '/etc/ipsec.secrets' May 1 02:00:16 moon charon: 00[CFG] loaded IKE secret for fec0::10 May 1 02:00:16 moon charon: 00[CFG] loaded IKE secret for fec0::20 May 1 02:00:16 moon charon: 00[KNL] listening on interfaces: May 1 02:00:16 moon charon: 00[KNL] eth0 May 1 02:00:16 moon charon: 00[KNL] 192.168.0.1 May 1 02:00:16 moon charon: 00[KNL] fec0::1 May 1 02:00:16 moon charon: 00[KNL] fe80::fcfd:c0ff:fea8:1 May 1 02:00:16 moon charon: 00[KNL] eth1 May 1 02:00:16 moon charon: 00[KNL] 10.1.0.1 May 1 02:00:16 moon charon: 00[KNL] fec1::1 May 1 02:00:16 moon charon: 00[KNL] fe80::fcfd:aff:fe01:1 May 1 02:00:16 moon charon: 00[DMN] loaded plugins: aes des sha1 sha2 md5 pem pkcs1 gmp random hmac xcbc stroke kernel-netlink socket-default updown May 1 02:00:16 moon charon: 00[JOB] spawning 16 worker threads May 1 02:00:16 moon charon: 08[CFG] received stroke: add connection 'rw' May 1 02:00:16 moon charon: 08[CFG] added configuration 'rw' May 1 02:00:19 moon charon: 13[NET] received packet: from fec0::10[500] to fec0::1[500] May 1 02:00:19 moon charon: 13[ENC] parsed IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) ] May 1 02:00:19 moon charon: 13[IKE] fec0::10 is initiating an IKE_SA May 1 02:00:19 moon charon: 13[ENC] generating IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(MULT_AUTH) ] May 1 02:00:19 moon charon: 13[NET] sending packet: from fec0::1[500] to fec0::10[500] May 1 02:00:19 moon charon: 06[NET] received packet: from fec0::10[4500] to fec0::1[4500] May 1 02:00:19 moon charon: 06[ENC] parsed IKE_AUTH request 1 [ IDi N(INIT_CONTACT) IDr AUTH SA TSi TSr N(MOBIKE_SUP) N(ADD_4_ADDR) N(MULT_AUTH) N(EAP_ONLY) ] May 1 02:00:19 moon charon: 06[CFG] looking for peer configs matching fec0::1[fec0::1]...fec0::10[fec0::10] May 1 02:00:19 moon charon: 06[CFG] selected peer config 'rw' May 1 02:00:19 moon charon: 06[IKE] authentication of 'fec0::10' with pre-shared key successful May 1 02:00:19 moon charon: 06[IKE] peer supports MOBIKE May 1 02:00:19 moon charon: 06[IKE] authentication of 'fec0::1' (myself) with pre-shared key May 1 02:00:19 moon charon: 06[IKE] IKE_SA rw[1] established between fec0::1[fec0::1]...fec0::10[fec0::10] May 1 02:00:19 moon charon: 06[IKE] scheduling reauthentication in 3300s May 1 02:00:19 moon charon: 06[IKE] maximum IKE_SA lifetime 3480s May 1 02:00:19 moon charon: 06[IKE] CHILD_SA rw{1} established with SPIs ccb0f42e_i ca181835_o and TS fec1::/16 === fec0::10/128 May 1 02:00:20 moon charon: 06[ENC] generating IKE_AUTH response 1 [ IDr AUTH SA TSi TSr N(AUTH_LFT) N(MOBIKE_SUP) N(ADD_4_ADDR) N(ADD_4_ADDR) N(ADD_6_ADDR) ] May 1 02:00:20 moon charon: 06[NET] sending packet: from fec0::1[4500] to fec0::10[4500] May 1 02:00:20 moon charon: 05[NET] received packet: from fec0::20[500] to fec0::1[500] May 1 02:00:20 moon charon: 05[ENC] parsed IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) ] May 1 02:00:20 moon charon: 05[IKE] fec0::20 is initiating an IKE_SA May 1 02:00:20 moon charon: 05[ENC] generating IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(MULT_AUTH) ] May 1 02:00:20 moon charon: 05[NET] sending packet: from fec0::1[500] to fec0::20[500] May 1 02:00:21 moon charon: 03[IKE] old path is not available anymore, try to find another May 1 02:00:21 moon charon: 03[IKE] looking for a route to fec0::10 ... May 1 02:00:21 moon charon: 03[IKE] looking for a route to 192.168.0.100 ... May 1 02:00:21 moon charon: 03[IKE] sending address list update using MOBIKE, implicitly requesting an address change May 1 02:00:21 moon charon: 02[NET] received packet: from fec0::20[4500] to fec0::1[4500] May 1 02:00:21 moon charon: 03[ENC] generating INFORMATIONAL request 0 [ ] May 1 02:00:21 moon charon: 03[IKE] checking path 192.168.0.1[4500] - 192.168.0.100[4500] May 1 02:00:21 moon charon: 03[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.100[4500] May 1 02:00:21 moon charon: 12[NET] error writing to socket: Operation not permitted May 1 02:00:21 moon charon: 02[ENC] parsed IKE_AUTH request 1 [ IDi N(INIT_CONTACT) IDr AUTH SA TSi TSr N(MOBIKE_SUP) N(ADD_4_ADDR) N(MULT_AUTH) N(EAP_ONLY) ] May 1 02:00:21 moon charon: 02[CFG] looking for peer configs matching fec0::1[fec0::1]...fec0::20[fec0::20] May 1 02:00:21 moon charon: 02[CFG] selected peer config 'rw' May 1 02:00:21 moon charon: 02[IKE] authentication of 'fec0::20' with pre-shared key successful May 1 02:00:21 moon charon: 02[IKE] peer supports MOBIKE May 1 02:00:21 moon charon: 02[IKE] authentication of 'fec0::1' (myself) with pre-shared key May 1 02:00:21 moon charon: 02[IKE] IKE_SA rw[2] established between fec0::1[fec0::1]...fec0::20[fec0::20] May 1 02:00:21 moon charon: 02[IKE] scheduling reauthentication in 3383s May 1 02:00:21 moon charon: 02[IKE] maximum IKE_SA lifetime 3563s May 1 02:00:21 moon charon: 02[IKE] CHILD_SA rw{2} established with SPIs c0cc05ec_i c82bd82e_o and TS fec1::/16 === fec0::20/128 May 1 02:00:21 moon charon: 02[ENC] generating IKE_AUTH response 1 [ IDr AUTH SA TSi TSr N(AUTH_LFT) N(MOBIKE_SUP) N(ADD_4_ADDR) N(ADD_4_ADDR) N(ADD_6_ADDR) ] May 1 02:00:21 moon charon: 02[NET] sending packet: from fec0::1[4500] to fec0::20[4500] May 1 02:00:23 moon charon: 09[IKE] path probing attempt 1 May 1 02:00:23 moon charon: 09[IKE] checking path 192.168.0.1[4500] - 192.168.0.100[4500] May 1 02:00:23 moon charon: 09[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.100[4500] May 1 02:00:23 moon charon: 12[NET] error writing to socket: Operation not permitted May 1 02:00:25 moon charon: 06[IKE] old path is not available anymore, try to find another May 1 02:00:25 moon charon: 06[IKE] looking for a route to fec0::20 ... May 1 02:00:25 moon charon: 06[IKE] looking for a route to 192.168.0.200 ... May 1 02:00:25 moon charon: 06[IKE] sending address list update using MOBIKE, implicitly requesting an address change May 1 02:00:25 moon charon: 06[ENC] generating INFORMATIONAL request 0 [ ] May 1 02:00:25 moon charon: 06[IKE] checking path 192.168.0.1[4500] - 192.168.0.200[4500] May 1 02:00:25 moon charon: 06[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.200[4500] May 1 02:00:25 moon charon: 12[NET] error writing to socket: Operation not permitted May 1 02:00:25 moon charon: 06[IKE] old path is not available anymore, try to find another May 1 02:00:25 moon charon: 06[IKE] looking for a route to fec0::10 ... May 1 02:00:25 moon charon: 06[IKE] looking for a route to 192.168.0.100 ... May 1 02:00:25 moon charon: 06[IKE] sending address list update using MOBIKE, implicitly requesting an address change May 1 02:00:26 moon charon: 03[IKE] path probing attempt 2 May 1 02:00:26 moon charon: 03[IKE] checking path 192.168.0.1[4500] - 192.168.0.100[4500] May 1 02:00:26 moon charon: 03[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.100[4500] May 1 02:00:26 moon charon: 12[NET] error writing to socket: Operation not permitted May 1 02:00:27 moon charon: 09[IKE] path probing attempt 1 May 1 02:00:27 moon charon: 09[IKE] checking path 192.168.0.1[4500] - 192.168.0.200[4500] May 1 02:00:27 moon charon: 09[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.200[4500] May 1 02:00:27 moon charon: 12[NET] error writing to socket: Operation not permitted May 1 02:00:28 moon charon: 08[IKE] path probing attempt 3 May 1 02:00:28 moon charon: 08[IKE] checking path 192.168.0.1[4500] - 192.168.0.100[4500] May 1 02:00:28 moon charon: 08[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.100[4500] May 1 02:00:28 moon charon: 12[NET] error writing to socket: Operation not permitted May 1 02:00:30 moon charon: 13[IKE] path probing attempt 2 May 1 02:00:30 moon charon: 13[IKE] checking path 192.168.0.1[4500] - 192.168.0.200[4500] May 1 02:00:30 moon charon: 13[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.200[4500] May 1 02:00:30 moon charon: 12[NET] error writing to socket: Operation not permitted May 1 02:00:31 moon charon: 06[IKE] path probing attempt 4 May 1 02:00:31 moon charon: 06[IKE] checking path 192.168.0.1[4500] - 192.168.0.100[4500] May 1 02:00:31 moon charon: 06[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.100[4500] May 1 02:00:31 moon charon: 12[NET] error writing to socket: Operation not permitted May 1 02:00:32 moon charon: 01[IKE] path probing attempt 3 May 1 02:00:32 moon charon: 01[IKE] checking path 192.168.0.1[4500] - 192.168.0.200[4500] May 1 02:00:32 moon charon: 01[NET] sending packet: from 192.168.0.1[4500] to 192.168.0.200[4500] May 1 02:00:32 moon charon: 12[NET] error writing to socket: Operation not permitted May 1 02:00:33 moon charon: 00[DMN] signal of type SIGINT received. Shutting down May 1 02:00:34 moon charon: 00[KNL] received netlink error: No route to host (113)