jlevon/gist:526d478a48220e27e3bba59633c52d2a

## gistfile1.txt
+ curl --local-port 10001 http://10.19.84.3
+ curl --local-port 10002 http://10.19.84.4
+ curl --local-port 10003 http://10.90.1.25

+ cat /tmp/ipseckey-monitor.581336
Actively monitoring the PF_KEY socket.
Read 16 bytes.
Timestamp: 17 October 2019 at 09:11:39 PDT
Base message (version 2) type X_PROMISC, SA type <unknown 1>.
Message length 16 bytes, seq=1, pid=581362.

Read 152 bytes.
Timestamp: 17 October 2019 at 09:11:52 PDT
Base message (version 2) type ACQUIRE, SA type <unspecified/all>.
Message length 152 bytes, seq=4294896489, pid=0.
SRC: Source address (proto=0)
SRC: AF_INET: port 0, 172.26.5.235.
DST: Destination address (proto=0)
DST: AF_INET: port 0, 10.90.1.25.
EPR: Extended Proposal, replay counter = 64, number of combinations = 1.
EPR:  Extended combination #1:
EPR:  HARD: alloc=0, bytes=0, post-add secs=28800, post-use secs=0
EPR:  SOFT: alloc=0, bytes=0, post-add secs=24000, post-use secs=0
EPR:  Alg #1 for AH Authentication = hmac-sha512  minbits=512, maxbits=512, saltbits=0
EPR:  Alg #2 for ESP Encryption = aes-cbc  minbits=256, maxbits=256, saltbits=0

Read 144 bytes.
Timestamp: 17 October 2019 at 09:11:52 PDT
Base message (version 2) type ACQUIRE, SA type ESP.
Message length 144 bytes, seq=4294896489, pid=0.
SRC: Source address (proto=0)
SRC: AF_INET: port 0, 172.26.5.235.
DST: Destination address (proto=0)
DST: AF_INET: port 0, 10.90.1.25.
PRP: Proposal, replay counter = 64.
PRP:  Combination #1 Encryption = aes-cbc  minbits=256, maxbits=256, saltbits=0.
PRP:  HARD: post-add secs=28800
PRP:  SOFT: post-add secs=24000
	+ curl --local-port 10001 http://10.19.84.3
	+ curl --local-port 10002 http://10.19.84.4
	+ curl --local-port 10003 http://10.90.1.25

	+ cat /tmp/ipseckey-monitor.581336
	Actively monitoring the PF_KEY socket.
	Read 16 bytes.
	Timestamp: 17 October 2019 at 09:11:39 PDT
	Base message (version 2) type X_PROMISC, SA type <unknown 1>.
	Message length 16 bytes, seq=1, pid=581362.

	Read 152 bytes.
	Timestamp: 17 October 2019 at 09:11:52 PDT
	Base message (version 2) type ACQUIRE, SA type <unspecified/all>.
	Message length 152 bytes, seq=4294896489, pid=0.
	SRC: Source address (proto=0)
	SRC: AF_INET: port 0, 172.26.5.235.
	DST: Destination address (proto=0)
	DST: AF_INET: port 0, 10.90.1.25.
	EPR: Extended Proposal, replay counter = 64, number of combinations = 1.
	EPR: Extended combination #1:
	EPR: HARD: alloc=0, bytes=0, post-add secs=28800, post-use secs=0
	EPR: SOFT: alloc=0, bytes=0, post-add secs=24000, post-use secs=0
	EPR: Alg #1 for AH Authentication = hmac-sha512 minbits=512, maxbits=512, saltbits=0
	EPR: Alg #2 for ESP Encryption = aes-cbc minbits=256, maxbits=256, saltbits=0

	Read 144 bytes.
	Timestamp: 17 October 2019 at 09:11:52 PDT
	Base message (version 2) type ACQUIRE, SA type ESP.
	Message length 144 bytes, seq=4294896489, pid=0.
	SRC: Source address (proto=0)
	SRC: AF_INET: port 0, 172.26.5.235.
	DST: Destination address (proto=0)
	DST: AF_INET: port 0, 10.90.1.25.
	PRP: Proposal, replay counter = 64.
	PRP: Combination #1 Encryption = aes-cbc minbits=256, maxbits=256, saltbits=0.
	PRP: HARD: post-add secs=28800
	PRP: SOFT: post-add secs=24000