May  1 02:03:14 sun pluto[20587]: Starting IKEv1 pluto daemon (strongSwan 4.6.3) THREADS VENDORID
May  1 02:03:14 sun ipsec_starter[20586]: pluto (20587) started after 40 ms
May  1 02:03:14 sun pluto[20587]: listening on interfaces: 
May  1 02:03:14 sun pluto[20587]:   eth0 
May  1 02:03:14 sun pluto[20587]:     192.168.0.2 
May  1 02:03:14 sun pluto[20587]:     fec0::2 
May  1 02:03:14 sun pluto[20587]:     fe80::fcfd:c0ff:fea8:2 
May  1 02:03:14 sun pluto[20587]:   eth1 
May  1 02:03:14 sun pluto[20587]:     10.2.0.1 
May  1 02:03:14 sun pluto[20587]:     fec2::1 
May  1 02:03:14 sun pluto[20587]:     fe80::fcfd:aff:fe02:1 
May  1 02:03:14 sun pluto[20587]: loaded plugins: sha1 sha2 md5 aes des hmac pem pkcs1 x509 gmp random curl kernel-netlink 
May  1 02:03:14 sun pluto[20587]: | inserting event EVENT_REINIT_SECRET, timeout in 3600 seconds
May  1 02:03:14 sun pluto[20587]:   including NAT-Traversal patch (Version 0.6c) [disabled]
May  1 02:03:14 sun pluto[20587]: loading ca certificates from '/etc/ipsec.d/cacerts' 
May  1 02:03:14 sun pluto[20587]:   loaded ca certificate from '/etc/ipsec.d/cacerts/strongswanCert.pem'
May  1 02:03:14 sun pluto[20587]: |   authcert inserted
May  1 02:03:14 sun pluto[20587]: loading aa certificates from '/etc/ipsec.d/aacerts' 
May  1 02:03:14 sun pluto[20587]: loading ocsp certificates from '/etc/ipsec.d/ocspcerts' 
May  1 02:03:14 sun pluto[20587]: | fetch thread started
May  1 02:03:14 sun pluto[20587]: Changing to directory '/etc/ipsec.d/crls'
May  1 02:03:14 sun pluto[20587]: | next regular crl check in 180 seconds
May  1 02:03:14 sun pluto[20587]: loading attribute certificates from '/etc/ipsec.d/acerts' 
May  1 02:03:14 sun pluto[20587]: spawning 4 worker threads 
May  1 02:03:14 sun pluto[20587]: | inserting event EVENT_LOG_DAILY, timeout in 79006 seconds
May  1 02:03:14 sun pluto[20587]: | next event EVENT_REINIT_SECRET in 3599 seconds
May  1 02:03:14 sun pluto[20587]: | 
May  1 02:03:14 sun pluto[20587]: | *received whack message
May  1 02:03:14 sun pluto[20587]: listening for IKE messages
May  1 02:03:14 sun pluto[20587]: | found lo with address 127.0.0.1
May  1 02:03:14 sun pluto[20587]: | found eth0 with address 192.168.0.2
May  1 02:03:14 sun pluto[20587]: | found eth1 with address 10.2.0.1
May  1 02:03:15 sun pluto[20587]: adding interface eth1/eth1 10.2.0.1:500
May  1 02:03:15 sun pluto[20587]: adding interface eth0/eth0 192.168.0.2:500
May  1 02:03:15 sun pluto[20587]: adding interface lo/lo 127.0.0.1:500
May  1 02:03:15 sun pluto[20587]: | found eth1 with address fec2:0000:0000:0000:0000:0000:0000:0001
May  1 02:03:15 sun pluto[20587]: | found eth0 with address fec0:0000:0000:0000:0000:0000:0000:0002
May  1 02:03:15 sun pluto[20587]: | found lo with address 0000:0000:0000:0000:0000:0000:0000:0001
May  1 02:03:15 sun pluto[20587]: adding interface lo/lo ::1:500
May  1 02:03:15 sun pluto[20587]: adding interface eth0/eth0 fec0::2:500
May  1 02:03:15 sun pluto[20587]: adding interface eth1/eth1 fec2::1:500
May  1 02:03:15 sun pluto[20587]: loading secrets from "/etc/ipsec.secrets"
May  1 02:03:15 sun pluto[20587]:   loaded private key from 'sunKey.pem'
May  1 02:03:15 sun pluto[20587]: | next event EVENT_REINIT_SECRET in 3599 seconds
May  1 02:03:15 sun pluto[20587]: | 
May  1 02:03:15 sun pluto[20587]: | *received whack message
May  1 02:03:15 sun pluto[20587]: | from whack: got --esp=aes128-sha1,3des-sha1
May  1 02:03:15 sun pluto[20587]: | esp proposal: AES_CBC_128/HMAC_SHA1, 3DES_CBC/HMAC_SHA1, 
May  1 02:03:15 sun pluto[20587]: | from whack: got --ike=aes128-sha1-modp2048,3des-sha1-modp1536
May  1 02:03:15 sun pluto[20587]: | ike proposal: AES_CBC_128/HMAC_SHA1/MODP_2048, 3DES_CBC/HMAC_SHA1/MODP_1536, 
May  1 02:03:15 sun pluto[20587]:   loaded host certificate from '/etc/ipsec.d/certs/sunCert.pem'
May  1 02:03:15 sun pluto[20587]: | certificate is valid
May  1 02:03:15 sun pluto[20587]: |   cert inserted
May  1 02:03:15 sun pluto[20587]: added connection description "host-host"
May  1 02:03:15 sun pluto[20587]: | fec0::2[sun.strongswan.org]...fec0::1[moon.strongswan.org]
May  1 02:03:15 sun pluto[20587]: | ike_life: 3600s; ipsec_life: 1200s; rekey_margin: 180s; rekey_fuzz: 100%; keyingtries: 1; policy: PUBKEY+ENCRYPT+PFS
May  1 02:03:15 sun pluto[20587]: | next event EVENT_REINIT_SECRET in 3599 seconds
May  1 02:03:16 sun pluto[20587]: | 
May  1 02:03:16 sun pluto[20587]: | *received 168 bytes from fec0::1:500 on eth0
May  1 02:03:16 sun pluto[20587]: packet from fec0::1:500: received Vendor ID payload [strongSwan]
May  1 02:03:16 sun pluto[20587]: packet from fec0::1:500: received Vendor ID payload [XAUTH]
May  1 02:03:16 sun pluto[20587]: packet from fec0::1:500: received Vendor ID payload [Dead Peer Detection]
May  1 02:03:16 sun pluto[20587]: | preparse_isakmp_policy: peer requests PUBKEY authentication
May  1 02:03:16 sun pluto[20587]: | creating state object #1 at 0x80f06f4
May  1 02:03:16 sun pluto[20587]: | ICOOKIE:  79 7a e9 ce  db b0 d1 31
May  1 02:03:16 sun pluto[20587]: | RCOOKIE:  8b 92 65 65  46 f1 ca bf
May  1 02:03:16 sun pluto[20587]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 02:03:16 sun pluto[20587]: | state hash entry 25
May  1 02:03:16 sun pluto[20587]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #1
May  1 02:03:16 sun pluto[20587]: "host-host" #1: responding to Main Mode
May  1 02:03:16 sun pluto[20587]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #1
May  1 02:03:16 sun pluto[20587]: | next event EVENT_RETRANSMIT in 10 seconds for #1
May  1 02:03:17 sun pluto[20587]: | 
May  1 02:03:17 sun pluto[20587]: | *received 308 bytes from fec0::1:500 on eth0
May  1 02:03:17 sun pluto[20587]: | ICOOKIE:  79 7a e9 ce  db b0 d1 31
May  1 02:03:17 sun pluto[20587]: | RCOOKIE:  8b 92 65 65  46 f1 ca bf
May  1 02:03:17 sun pluto[20587]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 02:03:17 sun pluto[20587]: | state hash entry 25
May  1 02:03:17 sun pluto[20587]: | state object #1 found, in STATE_MAIN_R1
May  1 02:03:17 sun pluto[20587]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #1
May  1 02:03:17 sun pluto[20587]: | next event EVENT_RETRANSMIT in 10 seconds for #1
May  1 02:03:17 sun pluto[20587]: | 
May  1 02:03:17 sun pluto[20587]: | *received 1388 bytes from fec0::1:500 on eth0
May  1 02:03:17 sun pluto[20587]: | ICOOKIE:  79 7a e9 ce  db b0 d1 31
May  1 02:03:17 sun pluto[20587]: | RCOOKIE:  8b 92 65 65  46 f1 ca bf
May  1 02:03:17 sun pluto[20587]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 02:03:17 sun pluto[20587]: | state hash entry 25
May  1 02:03:17 sun pluto[20587]: | state object #1 found, in STATE_MAIN_R2
May  1 02:03:17 sun pluto[20587]: "host-host" #1: Peer ID is ID_FQDN: 'moon.strongswan.org'
May  1 02:03:17 sun pluto[20587]: | subject: 'C=CH, O=Linux strongSwan, CN=moon.strongswan.org'
May  1 02:03:17 sun pluto[20587]: | issuer:  'C=CH, O=Linux strongSwan, CN=strongSwan Root CA'
May  1 02:03:17 sun pluto[20587]: | authkey:  5d:a7:dd:70:06:51:32:7e:e7:b6:6d:b3:b5:e5:e0:60:ea:2e:4d:ef
May  1 02:03:17 sun pluto[20587]: | certificate is valid
May  1 02:03:17 sun pluto[20587]: | issuer cacert found
May  1 02:03:17 sun pluto[20587]: | certificate signature is valid
May  1 02:03:17 sun pluto[20587]: "host-host" #1: crl not found
May  1 02:03:17 sun pluto[20587]: | crl fetch request added
May  1 02:03:17 sun pluto[20587]: | fetch thread was woken up
May  1 02:03:17 sun pluto[20587]:   fetching crl from 'http://crl.strongswan.org/strongswan.crl' ... 
May  1 02:03:17 sun pluto[20587]: "host-host" #1: certificate status unknown
May  1 02:03:17 sun pluto[20587]: | crl issuer cacert found
May  1 02:03:17 sun pluto[20587]: | crl signature is valid
May  1 02:03:17 sun pluto[20587]: | we have a valid crl
May  1 02:03:17 sun pluto[20587]: | next regular crl check in 180 seconds
May  1 02:03:17 sun pluto[20587]: | subject: 'C=CH, O=Linux strongSwan, CN=strongSwan Root CA'
May  1 02:03:17 sun pluto[20587]: | issuer:  'C=CH, O=Linux strongSwan, CN=strongSwan Root CA'
May  1 02:03:17 sun pluto[20587]: | authkey:  5d:a7:dd:70:06:51:32:7e:e7:b6:6d:b3:b5:e5:e0:60:ea:2e:4d:ef
May  1 02:03:17 sun pluto[20587]: | certificate is valid
May  1 02:03:17 sun pluto[20587]: | issuer cacert found
May  1 02:03:17 sun pluto[20587]: | certificate signature is valid
May  1 02:03:17 sun pluto[20587]: | reached self-signed root ca with a path length of 0
May  1 02:03:17 sun pluto[20587]: | RSA signature check passed with keyid 6e:55:dc:7e:9c:a5:58:d9:5b:e3:c7:13:14:e1:43:51:e4:fa:10:94
May  1 02:03:17 sun pluto[20587]: | peer CA:      "C=CH, O=Linux strongSwan, CN=strongSwan Root CA"
May  1 02:03:17 sun pluto[20587]: | requested CA: %any
May  1 02:03:17 sun pluto[20587]: | offered CA:   "C=CH, O=Linux strongSwan, CN=strongSwan Root CA"
May  1 02:03:17 sun pluto[20587]: | our certificate policy is SEND_IF_ASKED
May  1 02:03:17 sun pluto[20587]: "host-host" #1: we have a cert and are sending it upon request
May  1 02:03:17 sun pluto[20587]: | inserting event EVENT_SA_REPLACE, timeout in 3510 seconds for #1
May  1 02:03:17 sun pluto[20587]: "host-host" #1: sent MR3, ISAKMP SA established
May  1 02:03:17 sun pluto[20587]: | next event EVENT_SA_REPLACE in 3510 seconds for #1
May  1 02:03:18 sun pluto[20587]: | 
May  1 02:03:18 sun pluto[20587]: | *received 428 bytes from fec0::1:500 on eth0
May  1 02:03:18 sun pluto[20587]: | ICOOKIE:  79 7a e9 ce  db b0 d1 31
May  1 02:03:18 sun pluto[20587]: | RCOOKIE:  8b 92 65 65  46 f1 ca bf
May  1 02:03:18 sun pluto[20587]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 02:03:18 sun pluto[20587]: | state hash entry 25
May  1 02:03:18 sun pluto[20587]: | state object not found
May  1 02:03:18 sun pluto[20587]: | ICOOKIE:  79 7a e9 ce  db b0 d1 31
May  1 02:03:18 sun pluto[20587]: | RCOOKIE:  8b 92 65 65  46 f1 ca bf
May  1 02:03:18 sun pluto[20587]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 02:03:18 sun pluto[20587]: | state hash entry 25
May  1 02:03:18 sun pluto[20587]: | state object #1 found, in STATE_MAIN_R3
May  1 02:03:18 sun pluto[20587]: | no valid attribute cert found
May  1 02:03:18 sun pluto[20587]: | duplicating state object #1
May  1 02:03:18 sun pluto[20587]: | creating state object #2 at 0x80f278c
May  1 02:03:18 sun pluto[20587]: | ICOOKIE:  79 7a e9 ce  db b0 d1 31
May  1 02:03:18 sun pluto[20587]: | RCOOKIE:  8b 92 65 65  46 f1 ca bf
May  1 02:03:18 sun pluto[20587]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 02:03:18 sun pluto[20587]: | state hash entry 25
May  1 02:03:18 sun pluto[20587]: | inserting event EVENT_SO_DISCARD, timeout in 0 seconds for #2
May  1 02:03:18 sun pluto[20587]: "host-host" #2: responding to Quick Mode
May  1 02:03:18 sun pluto[20587]: | kernel_alg_esp_auth_keylen(auth=2, sadb_aalg=3): a_keylen=20
May  1 02:03:18 sun pluto[20587]: | install_inbound_ipsec_sa() checking if we can route
May  1 02:03:18 sun pluto[20587]: | route owner of "host-host" unrouted: NULL; eroute owner: NULL
May  1 02:03:18 sun pluto[20587]: | inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #2
May  1 02:03:18 sun pluto[20587]: | next event EVENT_RETRANSMIT in 10 seconds for #2
May  1 02:03:20 sun pluto[20587]: | 
May  1 02:03:20 sun pluto[20587]: | *received 60 bytes from fec0::1:500 on eth0
May  1 02:03:20 sun pluto[20587]: | ICOOKIE:  79 7a e9 ce  db b0 d1 31
May  1 02:03:20 sun pluto[20587]: | RCOOKIE:  8b 92 65 65  46 f1 ca bf
May  1 02:03:20 sun pluto[20587]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 02:03:20 sun pluto[20587]: | state hash entry 25
May  1 02:03:20 sun pluto[20587]: | state object #2 found, in STATE_QUICK_R1
May  1 02:03:20 sun pluto[20587]: | kernel_alg_esp_auth_keylen(auth=2, sadb_aalg=3): a_keylen=20
May  1 02:03:20 sun pluto[20587]: | install_ipsec_sa() for #2: outbound only
May  1 02:03:20 sun pluto[20587]: | route owner of "host-host" unrouted: NULL; eroute owner: NULL
May  1 02:03:20 sun pluto[20587]: | sr for #2: unrouted
May  1 02:03:20 sun pluto[20587]: | route owner of "host-host" unrouted: NULL; eroute owner: NULL
May  1 02:03:20 sun pluto[20587]: | eroute_connection add eroute fec0::1/128:0 -> fec0::2/128:0 => esp:cbb11d18@fec0::2:0
May  1 02:03:20 sun pluto[20587]: | eroute_connection add eroute fec0::2/128:0 -> fec0::1/128:0 => esp:cbb11d18@fec0::1:0
May  1 02:03:20 sun pluto[20587]: | executing up-host-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='up-host-v6' PLUTO_CONNECTION='host-host' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16384' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec0::2/128' PLUTO_MY_CLIENT_NET='fec0::2' PLUTO_MY_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec0::1/128' PLUTO_PEER_CLIENT_NET='fec0::1' PLUTO_PEER_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='C=CH, O=Linux strongSwan, CN=strongSwan Root CA' ipsec _updown iptables
May  1 02:03:20 sun pluto[20587]: | route_and_eroute: firewall_notified: true
May  1 02:03:20 sun pluto[20587]: | executing prepare-host-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='prepare-host-v6' PLUTO_CONNECTION='host-host' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16384' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec0::2/128' PLUTO_MY_CLIENT_NET='fec0::2' PLUTO_MY_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec0::1/128' PLUTO_PEER_CLIENT_NET='fec0::1' PLUTO_PEER_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='C=CH, O=Linux strongSwan, CN=strongSwan Root CA' ipsec _updown iptables
May  1 02:03:21 sun pluto[20587]: | executing route-host-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='route-host-v6' PLUTO_CONNECTION='host-host' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16384' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec0::2/128' PLUTO_MY_CLIENT_NET='fec0::2' PLUTO_MY_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec0::1/128' PLUTO_PEER_CLIENT_NET='fec0::1' PLUTO_PEER_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='C=CH, O=Linux strongSwan, CN=strongSwan Root CA' ipsec _updown iptables
May  1 02:03:22 sun pluto[20587]: | route_and_eroute: instance "host-host", setting eroute_owner {spd=0x80e90bc,sr=0x80e90bc} to #2 (was #0) (newest_ipsec_sa=#0)
May  1 02:03:22 sun pluto[20587]: | inserting event EVENT_SA_REPLACE, timeout in 1110 seconds for #2
May  1 02:03:22 sun pluto[20587]: "host-host" #2: IPsec SA established {ESP=>0xcbb11d18 <0xc9de6e23}
May  1 02:03:22 sun pluto[20587]: | next event EVENT_SA_REPLACE in 1110 seconds for #2
May  1 02:03:22 sun pluto[20587]: | 
May  1 02:03:22 sun pluto[20587]: | *received whack message
May  1 02:03:22 sun pluto[20587]: | next event EVENT_SA_REPLACE in 1110 seconds for #2
May  1 02:03:25 sun pluto[20587]: | 
May  1 02:03:25 sun pluto[20587]: | *received whack message
May  1 02:03:25 sun pluto[20587]: | next event EVENT_SA_REPLACE in 1106 seconds for #2
May  1 02:03:26 sun pluto[20587]: | 
May  1 02:03:26 sun pluto[20587]: | *received whack message
May  1 02:03:26 sun pluto[20587]: | next event EVENT_SA_REPLACE in 1106 seconds for #2
May  1 02:03:28 sun pluto[20587]: | 
May  1 02:03:28 sun pluto[20587]: | *received 76 bytes from fec0::1:500 on eth0
May  1 02:03:28 sun pluto[20587]: | ICOOKIE:  79 7a e9 ce  db b0 d1 31
May  1 02:03:28 sun pluto[20587]: | RCOOKIE:  8b 92 65 65  46 f1 ca bf
May  1 02:03:28 sun pluto[20587]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 02:03:28 sun pluto[20587]: | state hash entry 25
May  1 02:03:28 sun pluto[20587]: | state object #1 found, in STATE_MAIN_R3
May  1 02:03:28 sun pluto[20587]: "host-host" #1: received Delete SA(0xcbb11d18) payload: deleting IPSEC State #2
May  1 02:03:28 sun pluto[20587]: | ICOOKIE:  79 7a e9 ce  db b0 d1 31
May  1 02:03:28 sun pluto[20587]: | RCOOKIE:  8b 92 65 65  46 f1 ca bf
May  1 02:03:28 sun pluto[20587]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 02:03:28 sun pluto[20587]: | state hash entry 25
May  1 02:03:28 sun pluto[20587]: | executing down-host-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='down-host-v6' PLUTO_CONNECTION='host-host' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16384' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec0::2/128' PLUTO_MY_CLIENT_NET='fec0::2' PLUTO_MY_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec0::1/128' PLUTO_PEER_CLIENT_NET='fec0::1' PLUTO_PEER_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='C=CH, O=Linux strongSwan, CN=strongSwan Root CA' ipsec _updown iptables
May  1 02:03:28 sun pluto[20587]: | eroute_connection replace with shunt eroute fec0::1/128:0 -> fec0::2/128:0 => int:104@fec0::2:0
May  1 02:03:28 sun pluto[20587]: | eroute_connection replace with shunt eroute fec0::2/128:0 -> fec0::1/128:0 => int:104@:::0
May  1 02:03:28 sun pluto[20587]: | next event EVENT_SA_REPLACE in 3500 seconds for #1
May  1 02:03:28 sun pluto[20587]: | 
May  1 02:03:28 sun pluto[20587]: | *received 92 bytes from fec0::1:500 on eth0
May  1 02:03:28 sun pluto[20587]: | ICOOKIE:  79 7a e9 ce  db b0 d1 31
May  1 02:03:28 sun pluto[20587]: | RCOOKIE:  8b 92 65 65  46 f1 ca bf
May  1 02:03:28 sun pluto[20587]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 02:03:28 sun pluto[20587]: | state hash entry 25
May  1 02:03:28 sun pluto[20587]: | state object #1 found, in STATE_MAIN_R3
May  1 02:03:28 sun pluto[20587]: | ICOOKIE:  79 7a e9 ce  db b0 d1 31
May  1 02:03:28 sun pluto[20587]: | RCOOKIE:  8b 92 65 65  46 f1 ca bf
May  1 02:03:28 sun pluto[20587]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 02:03:28 sun pluto[20587]: | state hash entry 25
May  1 02:03:28 sun pluto[20587]: | state object #1 found, in STATE_MAIN_R3
May  1 02:03:28 sun pluto[20587]: "host-host" #1: received Delete SA payload: deleting ISAKMP State #1
May  1 02:03:28 sun pluto[20587]: | ICOOKIE:  79 7a e9 ce  db b0 d1 31
May  1 02:03:28 sun pluto[20587]: | RCOOKIE:  8b 92 65 65  46 f1 ca bf
May  1 02:03:28 sun pluto[20587]: | peer:  fe c0 00 00  00 00 00 00  00 00 00 00  00 00 00 01
May  1 02:03:28 sun pluto[20587]: | state hash entry 25
May  1 02:03:28 sun pluto[20587]: | next event EVENT_REINIT_SECRET in 3586 seconds
May  1 02:03:40 sun pluto[20587]: | 
May  1 02:03:40 sun pluto[20587]: | *received whack message
May  1 02:03:40 sun pluto[20587]: shutting down
May  1 02:03:40 sun pluto[20587]: forgetting secrets
May  1 02:03:40 sun pluto[20587]: "host-host": deleting connection
May  1 02:03:40 sun pluto[20587]: | eroute_connection delete eroute fec0::1/128:0 -> fec0::2/128:0 => int:0@fec0::2:0
May  1 02:03:40 sun pluto[20587]: deleting policy fec0::1/128 === fec0::2/128 fwd failed, not found 
May  1 02:03:40 sun pluto[20587]: | eroute_connection delete eroute fec0::2/128:0 -> fec0::1/128:0 => int:0@:::0
May  1 02:03:40 sun pluto[20587]: | route owner of "host-host" unrouted: NULL
May  1 02:03:40 sun pluto[20587]: | executing unroute-host-v6: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='unroute-host-v6' PLUTO_CONNECTION='host-host' PLUTO_NEXT_HOP='fec0::1' PLUTO_INTERFACE='eth0' PLUTO_REQID='16384' PLUTO_ME='fec0::2' PLUTO_MY_ID='sun.strongswan.org' PLUTO_MY_CLIENT='fec0::2/128' PLUTO_MY_CLIENT_NET='fec0::2' PLUTO_MY_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_MY_PORT='0' PLUTO_MY_PROTOCOL='0' PLUTO_PEER='fec0::1' PLUTO_PEER_ID='moon.strongswan.org' PLUTO_PEER_CLIENT='fec0::1/128' PLUTO_PEER_CLIENT_NET='fec0::1' PLUTO_PEER_CLIENT_MASK='ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' PLUTO_PEER_PORT='0' PLUTO_PEER_PROTOCOL='0' PLUTO_PEER_CA='' ipsec _updown iptables
May  1 02:03:40 sun pluto[20587]: shutting down interface eth1/eth1 fec2::1
May  1 02:03:40 sun pluto[20587]: shutting down interface eth0/eth0 fec0::2
May  1 02:03:40 sun pluto[20587]: shutting down interface lo/lo ::1
May  1 02:03:40 sun pluto[20587]: shutting down interface lo/lo 127.0.0.1
May  1 02:03:40 sun pluto[20587]: shutting down interface eth0/eth0 192.168.0.2
May  1 02:03:40 sun pluto[20587]: shutting down interface eth1/eth1 10.2.0.1
May  1 02:03:42 sun ipsec_starter[20586]: pluto stopped after 240 ms