Jul 20 15:44:48 carol charon: 01[DMN] starting charon (strongSwan Version 4.2.17) Jul 20 15:44:48 carol charon: 01[CFG] loading ca certificates from '/etc/ipsec.d/cacerts' Jul 20 15:44:48 carol charon: 01[CFG] loading aa certificates from '/etc/ipsec.d/aacerts' Jul 20 15:44:48 carol charon: 01[CFG] loading ocsp signer certificates from '/etc/ipsec.d/ocspcerts' Jul 20 15:44:48 carol charon: 01[CFG] loading attribute certificates from '/etc/ipsec.d/acerts' Jul 20 15:44:48 carol charon: 01[CFG] loading crls from '/etc/ipsec.d/crls' Jul 20 15:44:48 carol charon: 01[CFG] loading secrets from '/etc/ipsec.secrets' Jul 20 15:44:48 carol charon: 01[CFG] loaded private key file '/etc/ipsec.d/private/myKey.der' Jul 20 15:44:48 carol charon: 01[DMN] loaded plugins: curl aes des sha1 sha2 md5 gmp random x509 pubkey hmac xcbc stroke kernel-netlink updown Jul 20 15:44:49 carol charon: 01[KNL] listening on interfaces: Jul 20 15:44:49 carol charon: 01[KNL] eth0 Jul 20 15:44:49 carol charon: 01[KNL] 192.168.0.100 Jul 20 15:44:49 carol charon: 01[KNL] fec0::10 Jul 20 15:44:49 carol charon: 01[KNL] fe80::fcfd:c0ff:fea8:64 Jul 20 15:44:49 carol charon: 01[DMN] integrity test of libstrongswan code Jul 20 15:44:49 carol charon: 01[LIB] TEXT: 0x40024e08 + 52128 = 0x400319a8 Jul 20 15:44:49 carol charon: 01[LIB] RODATA: 0x40031a20 + 9716 = 0x40034014 Jul 20 15:44:49 carol charon: 01[LIB] SHA-1 HMAC key: strongSwan Version 4.2.17 Jul 20 15:44:49 carol charon: 01[LIB] SHA-1 HMAC sig: a8:79:ce:93:03:c1:35:1f:be:cd:2f:9b:ac:57:0d:9a Jul 20 15:44:49 carol charon: 01[DMN] integrity test passed Jul 20 15:44:49 carol charon: 01[JOB] spawning 16 worker threads Jul 20 15:44:49 carol charon: 03[CFG] received stroke: add connection 'home' Jul 20 15:44:49 carol charon: 03[LIB] loaded certificate file '/etc/ipsec.d/certs/selfCert.der' Jul 20 15:44:49 carol charon: 03[CFG] peerid 192.168.0.100 not confirmed by certificate, defaulting to subject DN Jul 20 15:44:49 carol charon: 03[LIB] reading file '/etc/ipsec.d/certs/peerCert.der' failed Jul 20 15:44:49 carol charon: 03[LIB] failed to create a builder for credential type CRED_CERTIFICATE, subtype (1) Jul 20 15:44:49 carol charon: 03[CFG] added configuration 'home': 192.168.0.100[C=CH, O=Linux strongSwan, CN=carol]...192.168.0.1[192.168.0.1] Jul 20 15:44:57 carol charon: 08[CFG] received stroke: delete connection 'home' Jul 20 15:44:57 carol charon: 08[CFG] deleted connection 'home' Jul 20 15:44:57 carol charon: 10[CFG] received stroke: add connection 'home' Jul 20 15:44:57 carol charon: 10[LIB] loaded certificate file '/etc/ipsec.d/certs/selfCert.der' Jul 20 15:44:57 carol charon: 10[CFG] peerid 192.168.0.100 not confirmed by certificate, defaulting to subject DN Jul 20 15:44:57 carol charon: 10[LIB] loaded certificate file '/etc/ipsec.d/certs/peerCert.der' Jul 20 15:44:57 carol charon: 10[CFG] peerid 192.168.0.1 not confirmed by certificate, defaulting to subject DN Jul 20 15:44:57 carol charon: 10[CFG] added configuration 'home': 192.168.0.100[C=CH, O=Linux strongSwan, CN=carol]...192.168.0.1[C=CH, O=Linux strongSwan, CN=moon] Jul 20 15:44:58 carol charon: 12[CFG] received stroke: initiate 'home' Jul 20 15:44:58 carol charon: 09[IKE] initiating IKE_SA home[1] to 192.168.0.1 Jul 20 15:44:58 carol charon: 09[ENC] generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) ] Jul 20 15:44:58 carol charon: 09[NET] sending packet: from 192.168.0.100[500] to 192.168.0.1[500] Jul 20 15:44:58 carol charon: 03[NET] received packet: from 192.168.0.1[500] to 192.168.0.100[500] Jul 20 15:44:58 carol charon: 03[ENC] parsed IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) ] Jul 20 15:44:58 carol charon: 03[IKE] authentication of 'C=CH, O=Linux strongSwan, CN=carol' (myself) with RSA signature successful Jul 20 15:44:58 carol charon: 03[IKE] establishing CHILD_SA home Jul 20 15:44:58 carol charon: 03[ENC] generating IKE_AUTH request 1 [ IDi IDr AUTH SA TSi TSr N(MOBIKE_SUP) N(ADD_6_ADDR) ] Jul 20 15:44:58 carol charon: 03[NET] sending packet: from 192.168.0.100[4500] to 192.168.0.1[4500] Jul 20 15:44:58 carol charon: 16[NET] received packet: from 192.168.0.1[4500] to 192.168.0.100[4500] Jul 20 15:44:58 carol charon: 16[ENC] parsed IKE_AUTH response 1 [ IDr AUTH SA TSi TSr N(AUTH_LFT) N(MOBIKE_SUP) N(ADD_4_ADDR) N(ADD_6_ADDR) N(ADD_6_ADDR) ] Jul 20 15:44:58 carol charon: 16[CFG] using trusted certificate "C=CH, O=Linux strongSwan, CN=moon" Jul 20 15:44:58 carol charon: 16[IKE] authentication of 'C=CH, O=Linux strongSwan, CN=moon' with RSA signature successful Jul 20 15:44:58 carol charon: 16[IKE] scheduling reauthentication in 3310s Jul 20 15:44:58 carol charon: 16[IKE] maximum IKE_SA lifetime 3490s Jul 20 15:44:58 carol charon: 16[IKE] IKE_SA home[1] established between 192.168.0.100[C=CH, O=Linux strongSwan, CN=carol]...192.168.0.1[C=CH, O=Linux strongSwan, CN=moon] Jul 20 15:44:59 carol charon: 16[IKE] CHILD_SA home{1} established with SPIs ca24964f_i cf458844_o and TS 192.168.0.100/32 === 10.1.0.0/16 Jul 20 15:44:59 carol charon: 16[IKE] received AUTH_LIFETIME of 3293s, scheduling reauthentication in 3113s Jul 20 15:44:59 carol charon: 16[IKE] peer supports MOBIKE Jul 20 15:45:09 carol charon: 12[NET] received packet: from 192.168.0.1[4500] to 192.168.0.100[4500] Jul 20 15:45:09 carol charon: 12[ENC] parsed INFORMATIONAL request 0 [ D ] Jul 20 15:45:09 carol charon: 12[IKE] received DELETE for IKE_SA home[1] Jul 20 15:45:09 carol charon: 12[IKE] deleting IKE_SA home[1] between 192.168.0.100[C=CH, O=Linux strongSwan, CN=carol]...192.168.0.1[C=CH, O=Linux strongSwan, CN=moon] Jul 20 15:45:09 carol charon: 12[IKE] IKE_SA deleted Jul 20 15:45:09 carol charon: 12[ENC] generating INFORMATIONAL response 0 [ ] Jul 20 15:45:09 carol charon: 12[NET] sending packet: from 192.168.0.100[4500] to 192.168.0.1[4500] Jul 20 15:45:10 carol charon: 01[DMN] signal of type SIGINT received. Shutting down