Skip to content

Instantly share code, notes, and snippets.

@lesf0

lesf0/nm ipsec log Secret

Last active Jun 18, 2020
Embed
What would you like to do?
июн 18 18:50:58 magicbook NetworkManager[78681]: Starting strongSwan 5.8.2 IPsec [starter]...
июн 18 18:50:58 magicbook NetworkManager[78681]: Loading config setup
июн 18 18:50:58 magicbook NetworkManager[78681]: Loading conn '70147d0a-5d7f-467a-80ee-9048601960e1'
июн 18 18:50:58 magicbook ipsec_starter[78681]: Starting strongSwan 5.8.2 IPsec [starter]...
июн 18 18:50:58 magicbook ipsec_starter[78681]: Loading config setup
июн 18 18:50:58 magicbook ipsec_starter[78681]: Loading conn '70147d0a-5d7f-467a-80ee-9048601960e1'
июн 18 18:50:58 magicbook ipsec_starter[78693]: Attempting to start charon...
июн 18 18:50:58 magicbook charon[78694]: 00[DMN] Starting IKE charon daemon (strongSwan 5.8.2, Linux 5.6.16-1-MANJARO, x86_64)
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] PKCS11 module '<name>' lacks library path
июн 18 18:50:58 magicbook charon[78694]: 00[LIB] plugin 'mysql' failed to load: libmariadb.so.3: cannot open shared object file: No such file or directory
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] attr-sql plugin: database URI not set
июн 18 18:50:58 magicbook charon[78694]: 00[NET] using forecast interface wlan0
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] joining forecast multicast groups: 224.0.0.1,224.0.0.22,224.0.0.251,224.0.0.252,239.255.255.250
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] loading ca certificates from '/etc/ipsec.d/cacerts'
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] loading aa certificates from '/etc/ipsec.d/aacerts'
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] loading ocsp signer certificates from '/etc/ipsec.d/ocspcerts'
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] loading attribute certificates from '/etc/ipsec.d/acerts'
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] loading crls from '/etc/ipsec.d/crls'
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] loading secrets from '/etc/ipsec.secrets'
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] loading secrets from '/etc/ipsec.d/ipsec.nm-l2tp.secrets'
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] loaded IKE secret for %any
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] sql plugin: database URI not set
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] opening triplet file /etc/ipsec.d/triplets.dat failed: No such file or directory
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] loaded 0 RADIUS server configurations
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] HA config misses local/remote address
июн 18 18:50:58 magicbook charon[78694]: 00[CFG] no script for ext-auth script defined, disabled
июн 18 18:50:58 magicbook charon[78694]: 00[LIB] loaded plugins: charon ldap pkcs11 aesni aes des rc2 sha2 sha3 sha1 md5 mgf1 random nonce x509 revocation constraints pubkey pkcs1 pkcs7 pkcs8 pkcs12 pgp dnskey sshkey pem openssl fips-prf gmp curve25519 agent chapoly xcbc cmac hmac ntru drbg newhope bliss curl sqlite attr kernel-netlink resolve socket-default bypass-lan connmark forecast farp stroke vici updown eap-identity eap-sim eap-aka eap-a>
июн 18 18:50:58 magicbook charon[78694]: 00[LIB] dropped capabilities, running as uid 0, gid 0
июн 18 18:50:58 magicbook charon[78694]: 00[JOB] spawning 16 worker threads
июн 18 18:50:58 magicbook charon[78694]: 05[IKE] installed bypass policy for 192.168.5.0/24
июн 18 18:50:58 magicbook charon[78694]: 05[KNL] received netlink error: Invalid argument (22)
июн 18 18:50:58 magicbook charon[78694]: 05[KNL] unable to install source route for %any6
июн 18 18:50:58 magicbook charon[78694]: 05[IKE] installed bypass policy for ::1/128
июн 18 18:50:58 magicbook charon[78694]: 05[IKE] installed bypass policy for fdb6:e163:9f30:3::/64
июн 18 18:50:58 magicbook charon[78694]: 05[IKE] installed bypass policy for fe80::/64
июн 18 18:50:58 magicbook charon[78694]: 09[CFG] rereading secrets
июн 18 18:50:58 magicbook charon[78694]: 09[CFG] loading secrets from '/etc/ipsec.secrets'
июн 18 18:50:58 magicbook charon[78694]: 09[CFG] loading secrets from '/etc/ipsec.d/ipsec.nm-l2tp.secrets'
июн 18 18:50:58 magicbook charon[78694]: 09[CFG] loaded IKE secret for %any
июн 18 18:50:58 magicbook ipsec_starter[78693]: charon (78694) started after 20 ms
июн 18 18:50:58 magicbook charon[78694]: 10[CFG] received stroke: add connection '70147d0a-5d7f-467a-80ee-9048601960e1'
июн 18 18:50:58 magicbook charon[78694]: 10[CFG] added configuration '70147d0a-5d7f-467a-80ee-9048601960e1'
июн 18 18:50:58 magicbook charon[78694]: 12[CFG] received stroke: initiate '70147d0a-5d7f-467a-80ee-9048601960e1'
июн 18 18:50:58 magicbook charon[78694]: 14[IKE] initiating Main Mode IKE_SA 70147d0a-5d7f-467a-80ee-9048601960e1[1] to 212.192.80.206
июн 18 18:50:58 magicbook charon[78694]: 14[IKE] initiating Main Mode IKE_SA 70147d0a-5d7f-467a-80ee-9048601960e1[1] to 212.192.80.206
июн 18 18:50:58 magicbook charon[78694]: 14[ENC] generating ID_PROT request 0 [ SA V V V V V ]
июн 18 18:50:58 magicbook charon[78694]: 14[NET] sending packet: from 192.168.5.28[500] to 212.192.80.206[500] (212 bytes)
июн 18 18:50:58 magicbook charon[78694]: 15[NET] received packet: from 212.192.80.206[500] to 192.168.5.28[500] (124 bytes)
июн 18 18:50:58 magicbook charon[78694]: 15[ENC] parsed ID_PROT response 0 [ SA V V ]
июн 18 18:50:58 magicbook charon[78694]: 15[IKE] received draft-ietf-ipsec-nat-t-ike-02\n vendor ID
июн 18 18:50:58 magicbook charon[78694]: 15[IKE] received FRAGMENTATION vendor ID
июн 18 18:50:58 magicbook charon[78694]: 15[CFG] selected proposal: IKE:3DES_CBC/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024
июн 18 18:50:58 magicbook charon[78694]: 15[ENC] generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
июн 18 18:50:58 magicbook charon[78694]: 15[NET] sending packet: from 192.168.5.28[500] to 212.192.80.206[500] (244 bytes)
июн 18 18:50:58 magicbook charon[78694]: 01[NET] received packet: from 212.192.80.206[500] to 192.168.5.28[500] (304 bytes)
июн 18 18:50:58 magicbook charon[78694]: 01[ENC] parsed ID_PROT response 0 [ KE No V V V V NAT-D NAT-D ]
июн 18 18:50:58 magicbook charon[78694]: 01[IKE] received Cisco Unity vendor ID
июн 18 18:50:58 magicbook charon[78694]: 01[IKE] received XAuth vendor ID
июн 18 18:50:58 magicbook charon[78694]: 01[ENC] received unknown vendor ID: e5:a6:37:4e:70:75:30:9e:c1:44:db:7a:47:f5:c8:36
июн 18 18:50:58 magicbook charon[78694]: 01[ENC] received unknown vendor ID: 1f:07:f7:0e:aa:65:14:d3:b0:fa:96:54:2a:50:01:00
июн 18 18:50:58 magicbook charon[78694]: 01[IKE] local host is behind NAT, sending keep alives
июн 18 18:50:58 magicbook charon[78694]: 01[ENC] generating ID_PROT request 0 [ ID HASH ]
июн 18 18:50:58 magicbook charon[78694]: 01[NET] sending packet: from 192.168.5.28[4500] to 212.192.80.206[4500] (68 bytes)
июн 18 18:50:58 magicbook charon[78694]: 06[NET] received packet: from 212.192.80.206[4500] to 192.168.5.28[4500] (84 bytes)
июн 18 18:50:58 magicbook charon[78694]: 06[ENC] parsed ID_PROT response 0 [ ID HASH V ]
июн 18 18:50:58 magicbook charon[78694]: 06[IKE] received DPD vendor ID
июн 18 18:50:58 magicbook charon[78694]: 06[IKE] IKE_SA 70147d0a-5d7f-467a-80ee-9048601960e1[1] established between 192.168.5.28[192.168.5.28]...212.192.80.206[212.192.80.206]
июн 18 18:50:58 magicbook charon[78694]: 06[IKE] IKE_SA 70147d0a-5d7f-467a-80ee-9048601960e1[1] established between 192.168.5.28[192.168.5.28]...212.192.80.206[212.192.80.206]
июн 18 18:50:58 magicbook charon[78694]: 06[IKE] scheduling reauthentication in 9976s
июн 18 18:50:58 magicbook charon[78694]: 06[IKE] maximum IKE_SA lifetime 10516s
июн 18 18:50:58 magicbook charon[78694]: 06[ENC] generating QUICK_MODE request 1610789051 [ HASH SA No ID ID NAT-OA NAT-OA ]
июн 18 18:50:58 magicbook charon[78694]: 06[NET] sending packet: from 192.168.5.28[4500] to 212.192.80.206[4500] (244 bytes)
июн 18 18:50:59 magicbook charon[78694]: 05[NET] received packet: from 212.192.80.206[4500] to 192.168.5.28[4500] (164 bytes)
июн 18 18:50:59 magicbook charon[78694]: 05[ENC] parsed QUICK_MODE response 1610789051 [ HASH SA No ID ID NAT-OA ]
июн 18 18:50:59 magicbook charon[78694]: 05[CFG] selected proposal: ESP:3DES_CBC/HMAC_MD5_96/NO_EXT_SEQ
июн 18 18:50:59 magicbook charon[78694]: 05[IKE] no acceptable traffic selectors found
июн 18 18:50:59 magicbook charon[78694]: 05[ENC] generating INFORMATIONAL_V1 request 101459469 [ HASH N(NO_PROP) ]
июн 18 18:50:59 magicbook charon[78694]: 05[NET] sending packet: from 192.168.5.28[4500] to 212.192.80.206[4500] (76 bytes)
июн 18 18:50:59 magicbook NetworkManager[78718]: initiating Main Mode IKE_SA 70147d0a-5d7f-467a-80ee-9048601960e1[1] to 212.192.80.206
июн 18 18:50:59 magicbook NetworkManager[78718]: generating ID_PROT request 0 [ SA V V V V V ]
июн 18 18:50:59 magicbook NetworkManager[78718]: sending packet: from 192.168.5.28[500] to 212.192.80.206[500] (212 bytes)
июн 18 18:50:59 magicbook NetworkManager[78718]: received packet: from 212.192.80.206[500] to 192.168.5.28[500] (124 bytes)
июн 18 18:50:59 magicbook NetworkManager[78718]: parsed ID_PROT response 0 [ SA V V ]
июн 18 18:50:59 magicbook NetworkManager[78718]: received draft-ietf-ipsec-nat-t-ike-02\n vendor ID
июн 18 18:50:59 magicbook NetworkManager[78718]: received FRAGMENTATION vendor ID
июн 18 18:50:59 magicbook NetworkManager[78718]: selected proposal: IKE:3DES_CBC/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024
июн 18 18:50:59 magicbook NetworkManager[78718]: generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
июн 18 18:50:59 magicbook NetworkManager[78718]: sending packet: from 192.168.5.28[500] to 212.192.80.206[500] (244 bytes)
июн 18 18:50:59 magicbook NetworkManager[78718]: received packet: from 212.192.80.206[500] to 192.168.5.28[500] (304 bytes)
июн 18 18:50:59 magicbook NetworkManager[78718]: parsed ID_PROT response 0 [ KE No V V V V NAT-D NAT-D ]
июн 18 18:50:59 magicbook NetworkManager[78718]: received Cisco Unity vendor ID
июн 18 18:50:59 magicbook NetworkManager[78718]: received XAuth vendor ID
июн 18 18:50:59 magicbook NetworkManager[78718]: received unknown vendor ID: e5:a6:37:4e:70:75:30:9e:c1:44:db:7a:47:f5:c8:36
июн 18 18:50:59 magicbook NetworkManager[78718]: received unknown vendor ID: 1f:07:f7:0e:aa:65:14:d3:b0:fa:96:54:2a:50:01:00
июн 18 18:50:59 magicbook NetworkManager[78718]: local host is behind NAT, sending keep alives
июн 18 18:50:59 magicbook NetworkManager[78718]: generating ID_PROT request 0 [ ID HASH ]
июн 18 18:50:59 magicbook NetworkManager[78718]: sending packet: from 192.168.5.28[4500] to 212.192.80.206[4500] (68 bytes)
июн 18 18:50:59 magicbook NetworkManager[78718]: received packet: from 212.192.80.206[4500] to 192.168.5.28[4500] (84 bytes)
июн 18 18:50:59 magicbook NetworkManager[78718]: parsed ID_PROT response 0 [ ID HASH V ]
июн 18 18:50:59 magicbook NetworkManager[78718]: received DPD vendor ID
июн 18 18:50:59 magicbook NetworkManager[78718]: IKE_SA 70147d0a-5d7f-467a-80ee-9048601960e1[1] established between 192.168.5.28[192.168.5.28]...212.192.80.206[212.192.80.206]
июн 18 18:50:59 magicbook NetworkManager[78718]: scheduling reauthentication in 9976s
июн 18 18:50:59 magicbook NetworkManager[78718]: maximum IKE_SA lifetime 10516s
июн 18 18:50:59 magicbook NetworkManager[78718]: generating QUICK_MODE request 1610789051 [ HASH SA No ID ID NAT-OA NAT-OA ]
июн 18 18:50:59 magicbook NetworkManager[78718]: sending packet: from 192.168.5.28[4500] to 212.192.80.206[4500] (244 bytes)
июн 18 18:50:59 magicbook NetworkManager[78718]: received packet: from 212.192.80.206[4500] to 192.168.5.28[4500] (164 bytes)
июн 18 18:50:59 magicbook NetworkManager[78718]: parsed QUICK_MODE response 1610789051 [ HASH SA No ID ID NAT-OA ]
июн 18 18:50:59 magicbook NetworkManager[78718]: selected proposal: ESP:3DES_CBC/HMAC_MD5_96/NO_EXT_SEQ
июн 18 18:50:59 magicbook NetworkManager[78718]: no acceptable traffic selectors found
июн 18 18:50:59 magicbook NetworkManager[78718]: establishing connection '70147d0a-5d7f-467a-80ee-9048601960e1' failed
июн 18 18:50:59 magicbook nm-l2tp-service[78671]: xl2tpd started with pid 78724
июн 18 18:50:59 magicbook NetworkManager[78724]: xl2tpd[78724]: Not looking for kernel SAref support.
июн 18 18:50:59 magicbook NetworkManager[78724]: xl2tpd[78724]: Using l2tp kernel support.
июн 18 18:50:59 magicbook NetworkManager[78724]: xl2tpd[78724]: xl2tpd version xl2tpd-1.3.15 started on magicbook PID:78724
июн 18 18:50:59 magicbook NetworkManager[78724]: xl2tpd[78724]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
июн 18 18:50:59 magicbook NetworkManager[78724]: xl2tpd[78724]: Forked by Scott Balmos and David Stipp, (C) 2001
июн 18 18:50:59 magicbook NetworkManager[78724]: xl2tpd[78724]: Inherited by Jeff McAdams, (C) 2002
июн 18 18:50:59 magicbook NetworkManager[78724]: xl2tpd[78724]: Forked again by Xelerance (www.xelerance.com) (C) 2006-2016
июн 18 18:50:59 magicbook NetworkManager[78724]: xl2tpd[78724]: Listening on IP address 0.0.0.0, port 1701
июн 18 18:50:59 magicbook NetworkManager[78724]: xl2tpd[78724]: Connecting to host 212.192.80.206, port 1701
июн 18 18:50:59 magicbook NetworkManager[78646]: <info> [1592488259.2667] vpn-connection[0x564a0d7600a0,70147d0a-5d7f-467a-80ee-9048601960e1,"etis",0]: VPN plugin: state changed: starting (3)
июн 18 18:51:07 magicbook charon[78694]: 01[NET] received packet: from 212.192.80.206[4500] to 192.168.5.28[4500] (164 bytes)
июн 18 18:51:07 magicbook charon[78694]: 01[IKE] received retransmit of response with ID 1610789051, but next request already sent
июн 18 18:51:13 magicbook NetworkManager[78724]: xl2tpd[78724]: death_handler: Fatal signal 15 received
июн 18 18:51:13 magicbook NetworkManager[78724]: xl2tpd[78724]: Connection 0 closed to 212.192.80.206, port 1701 (Server closing)
июн 18 18:51:13 magicbook NetworkManager[78646]: <warn> [1592488273.2809] vpn-connection[0x564a0d7600a0,70147d0a-5d7f-467a-80ee-9048601960e1,"etis",0]: VPN plugin: failed: connect-failed (1)
июн 18 18:51:13 magicbook NetworkManager[78646]: <warn> [1592488273.2810] vpn-connection[0x564a0d7600a0,70147d0a-5d7f-467a-80ee-9048601960e1,"etis",0]: VPN plugin: failed: connect-failed (1)
июн 18 18:51:13 magicbook NetworkManager[78646]: <info> [1592488273.2812] vpn-connection[0x564a0d7600a0,70147d0a-5d7f-467a-80ee-9048601960e1,"etis",0]: VPN plugin: state changed: stopping (5)
июн 18 18:51:13 magicbook NetworkManager[78729]: Stopping strongSwan IPsec...
июн 18 18:51:13 magicbook charon[78694]: 00[DMN] signal of type SIGINT received. Shutting down
июн 18 18:51:13 magicbook charon[78694]: 00[IKE] deleting IKE_SA 70147d0a-5d7f-467a-80ee-9048601960e1[1] between 192.168.5.28[192.168.5.28]...212.192.80.206[212.192.80.206]
июн 18 18:51:13 magicbook charon[78694]: 00[IKE] deleting IKE_SA 70147d0a-5d7f-467a-80ee-9048601960e1[1] between 192.168.5.28[192.168.5.28]...212.192.80.206[212.192.80.206]
июн 18 18:51:13 magicbook charon[78694]: 00[IKE] sending DELETE for IKE_SA 70147d0a-5d7f-467a-80ee-9048601960e1[1]
июн 18 18:51:13 magicbook charon[78694]: 00[ENC] generating INFORMATIONAL_V1 request 2194390186 [ HASH D ]
июн 18 18:51:13 magicbook charon[78694]: 00[NET] sending packet: from 192.168.5.28[4500] to 212.192.80.206[4500] (84 bytes)
июн 18 18:51:13 magicbook charon[78694]: 00[IKE] uninstalling bypass policy for fdb6:e163:9f30:3::/64
июн 18 18:51:13 magicbook charon[78694]: 00[IKE] uninstalling bypass policy for 192.168.5.0/24
июн 18 18:51:13 magicbook charon[78694]: 00[IKE] uninstalling bypass policy for ::1/128
июн 18 18:51:13 magicbook charon[78694]: 00[IKE] uninstalling bypass policy for fe80::/64
июн 18 18:51:13 magicbook ipsec_starter[78693]: child 78694 (charon) has quit (exit code 0)
июн 18 18:51:13 magicbook ipsec_starter[78693]:
июн 18 18:51:13 magicbook ipsec_starter[78693]: charon stopped after 200 ms
июн 18 18:51:13 magicbook ipsec_starter[78693]: ipsec starter stopped
июн 18 18:51:13 magicbook nm-l2tp-service[78671]: ipsec shut down
июн 18 18:51:13 magicbook NetworkManager[78646]: <info> [1592488273.4033] vpn-connection[0x564a0d7600a0,70147d0a-5d7f-467a-80ee-9048601960e1,"etis",0]: VPN plugin: state changed: stopped (6)
июн 18 18:51:13 magicbook NetworkManager[78646]: <info> [1592488273.4086] vpn-connection[0x564a0d7600a0,70147d0a-5d7f-467a-80ee-9048601960e1,"etis",0]: VPN service disappeared
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment