Target : undefined show vpn status profile name:default -------------------------------------------------- current using tunnel :unselected tunnel current tunnel using time :0 ipsec is preempt status :disable ipsec is fast failover status :disable ipsec hold on period :600s ipsec tunnel monitor frequency (seconds/packet) :5 ipsec tunnel monitor timeout by lost packet cnt :6 ipsec reconnect duration (seconds) :30 ipsec primary tunnel crypto type :Cert ipsec primary tunnel peer address :192.168.248.100 ipsec primary tunnel peer tunnel ip :0.0.0.0 ipsec primary tunnel ap tunnel ip :0.0.0.0 ipsec primary tunnel using interface : ipsec primary tunnel using MTU :0 ipsec primary tunnel profile index :0 ipsec primary tunnel current sm status :Retrying ipsec primary tunnel tunnel status :Down ipsec primary tunnel tunnel retry times :17 ipsec primary tunnel tunnel uptime :0 ipsec backup tunnel crypto type :Cert ipsec backup tunnel peer address :N/A ipsec backup tunnel peer tunnel ip :N/A ipsec backup tunnel ap tunnel ip :N/A ipsec backup tunnel using interface :N/A ipsec backup tunnel using MTU :N/A ipsec backup tunnel current sm status :Init ipsec backup tunnel tunnel status :Down ipsec backup tunnel tunnel retry times :0 ipsec backup tunnel tunnel uptime :0 end of show vpn status ======================================================== show gre status GRE not configured - no status end of show gre status ======================================================== show upgrade info swarm upgrade status -------------------- Mac IP Address Seed AP AP Class Status Image Info --- ---------- ------- -------- ------ ---------- 20:4c:03:22:91:ec 192.168.242.12 No Ursa image-ok From Seed Auto reboot :enable Use external URL :enable Master wait Time :0 secs 0 count Switch Partition :enable Upgrade in process :No UAP convert process :No end of show upgrade info ======================================================== show log upgrade ----------Download log start---------- download log not available ----------Download log end------------ Download status: incomplete ----------Upgrade log start---------- upgrade log not available ----------Upgrade log end------------ Upgrade status: upgrade status not available end of show log upgrade ======================================================== show log rapper Apr 16, 13:55:03: Created fragment, size = 476 Apr 16, 13:55:03: Sending no:1 fragment out of 5 fragments, size = 0 Apr 16, 13:55:03: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:03: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:03: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:03: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:03: Sending fragment, size = 516 Apr 16, 13:55:03: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:03: Created fragment, size = 476 Apr 16, 13:55:03: Sending no:2 fragment out of 5 fragments, size = 0 Apr 16, 13:55:03: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:03: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:03: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:03: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:03: Sending fragment, size = 516 Apr 16, 13:55:03: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:03: Created fragment, size = 476 Apr 16, 13:55:03: Sending no:3 fragment out of 5 fragments, size = 0 Apr 16, 13:55:03: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:03: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:03: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:03: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:03: Sending fragment, size = 516 Apr 16, 13:55:03: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:03: Created fragment, size = 476 Apr 16, 13:55:03: Sending no:4 fragment out of 5 fragments, size = 0 Apr 16, 13:55:03: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:03: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:03: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:03: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:03: Sending fragment, size = 516 Apr 16, 13:55:03: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:03: Created fragment, size = 336 Apr 16, 13:55:03: Sending last fragment, size = 376 Apr 16, 13:55:03: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:03: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:03: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=376 Apr 16, 13:55:03: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:08: IKE2_xchgOut:(226): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:08: transmit message spi={07a37d8d6ff9403b fb70c99ad06733ec} np=E{IDi} exchange=IKE_AUTH msgid=1 len=2268 #SEND 2272 bytes to 192.168.248.100[4500] (20.0)(pid:11791) time:2020-04-16 13:55:08 Apr 16, 13:55:08: IKE2_xchgOut:513 Apr 16, 13:55:08: ikeTotalDatasize 2244, maxFragDataSize = 476, num 5, last 340 Apr 16, 13:55:08: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:08: Created fragment, size = 476 Apr 16, 13:55:08: Sending no:1 fragment out of 5 fragments, size = 0 Apr 16, 13:55:08: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:08: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:08: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:08: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:08: Sending fragment, size = 516 Apr 16, 13:55:08: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:08: Created fragment, size = 476 Apr 16, 13:55:08: Sending no:2 fragment out of 5 fragments, size = 0 Apr 16, 13:55:08: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:08: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:08: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:08: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:08: Sending fragment, size = 516 Apr 16, 13:55:08: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:08: Created fragment, size = 476 Apr 16, 13:55:08: Sending no:3 fragment out of 5 fragments, size = 0 Apr 16, 13:55:08: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:08: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:08: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:08: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:08: Sending fragment, size = 516 Apr 16, 13:55:08: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:08: Created fragment, size = 476 Apr 16, 13:55:08: Sending no:4 fragment out of 5 fragments, size = 0 Apr 16, 13:55:08: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:08: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:08: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:08: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:08: Sending fragment, size = 516 Apr 16, 13:55:08: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:08: Created fragment, size = 336 Apr 16, 13:55:08: Sending last fragment, size = 376 Apr 16, 13:55:08: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:08: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:08: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=376 Apr 16, 13:55:08: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:13: IKE2_xchgOut:(226): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:13: transmit message spi={07a37d8d6ff9403b fb70c99ad06733ec} np=E{IDi} exchange=IKE_AUTH msgid=1 len=2268 #SEND 2272 bytes to 192.168.248.100[4500] (25.0)(pid:11791) time:2020-04-16 13:55:13 Apr 16, 13:55:13: IKE2_xchgOut:513 Apr 16, 13:55:13: ikeTotalDatasize 2244, maxFragDataSize = 476, num 5, last 340 Apr 16, 13:55:13: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:13: Created fragment, size = 476 Apr 16, 13:55:13: Sending no:1 fragment out of 5 fragments, size = 0 Apr 16, 13:55:13: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:13: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:13: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:13: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:13: Sending fragment, size = 516 Apr 16, 13:55:13: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:13: Created fragment, size = 476 Apr 16, 13:55:13: Sending no:2 fragment out of 5 fragments, size = 0 Apr 16, 13:55:13: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:13: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:13: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:13: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:13: Sending fragment, size = 516 Apr 16, 13:55:13: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:13: Created fragment, size = 476 Apr 16, 13:55:13: Sending no:3 fragment out of 5 fragments, size = 0 Apr 16, 13:55:13: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:13: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:13: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:13: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:13: Sending fragment, size = 516 Apr 16, 13:55:13: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:13: Created fragment, size = 476 Apr 16, 13:55:13: Sending no:4 fragment out of 5 fragments, size = 0 Apr 16, 13:55:13: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:13: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:13: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:13: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:13: Sending fragment, size = 516 Apr 16, 13:55:13: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:13: Created fragment, size = 336 Apr 16, 13:55:13: Sending last fragment, size = 376 Apr 16, 13:55:13: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:13: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:13: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=376 Apr 16, 13:55:13: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:16: rapper got Signal 15 Apr 16, 13:55:16: need rapper EXIT immediately, since sometimes dispatcher loop hasn't start Apr 16, 13:55:18: get_ike_version: Use IKE Version 2 Apr 16, 13:55:18: rapper_write_pid_to_file: wrote rapper pid 12051 to file /tmp/rapper_pid_1 Apr 16, 13:55:18: papi_init papifd:6 ack:14 IKE_EXAMPLE: Starting up IKE server Apr 16, 13:55:18: IKE_init: ethmacstr = 20:4C:03:22:91:EC Initialized Timers IKE_init: completed after (0.0)(pid:12051) time:2020-04-16 13:55:18 seconds. Apr 16, 13:55:18: RAP using default certificates Apr 16, 13:55:18: IAP using default CA certificates Apr 16, 13:55:18: Before getting Certs Apr 16, 13:55:18: TPM enabled Apr 16, 13:55:18: get_usb_type: Unable to open /tmp/usb_type Apr 16, 13:55:18: get_usb_csr: Unable to open /tmp/usb_csr Apr 16, 13:55:18: CA_MGMT_EXAMPLE_computeHostKeys init cert-len 0 Apr 16, 13:55:18: Factory Device Cert is /tmp/deviceCerts/certifiedKeyCert.der Apr 16, 13:55:18: Reading DER Device Cert file /tmp/deviceCerts/certifiedKeyCert.der Apr 16, 13:55:18: DER Device Cert file len:1713 Apr 16, 13:55:18: Intermediate Cert index:0 is /tmp/deviceCerts/certifiedKeyCaCert.der Apr 16, 13:55:18: Reading DER Intermediate Cert file Apr 16, 13:55:18: DER Intermediate Cert file len:1118 Apr 16, 13:55:18: Intermediate Cert index:1 is /tmp/deviceCerts/caChainCert1.der Apr 16, 13:55:18: Reading DER Intermediate Cert file Apr 16, 13:55:18: DER Intermediate Cert file len:1333 Apr 16, 13:55:18: Decode PEM Key length :0 Apr 16, 13:55:18: testHostKeys : status 0 Apr 16, 13:55:18: testHostKeys : free temp Certificate status 0 Apr 16, 13:55:18: CA_MGMT_EXAMPLE_computeHostKeys after testHostKeys cert-len 1713 Apr 16, 13:55:18: CA Cert index:0 is /tmp/deviceCerts/OpensslOldCA_RootCert.der Apr 16, 13:55:18: Reading CA Cert file Apr 16, 13:55:18: i=0 DER CA Cert file len:1416 Apr 16, 13:55:18: CA Cert index:1 is /tmp/deviceCerts/MSCAV1_RootCert.der Apr 16, 13:55:18: Reading CA Cert file Apr 16, 13:55:18: i=1 DER CA Cert file len:1009 Apr 16, 13:55:18: CA Cert index:2 is /tmp/deviceCerts/Aruba_EST_CA_RootCert.der Apr 16, 13:55:18: Reading CA Cert file Apr 16, 13:55:18: i=2 DER CA Cert file len:992 Apr 16, 13:55:18: Got 3 Trusted Certs Apr 16, 13:55:18: CSS CA Cert is /tmp/deviceCerts/CSS_CA_RootCert.der Apr 16, 13:55:18: Reading DER CA Cert file Apr 16, 13:55:18: Error in reading DER CA Cert:/tmp/deviceCerts/CSS_CA_RootCert.der, Ignore It Apr 16, 13:55:18: CA Cert status : 0 Before IKE_initServer Apr 16, 13:55:18: IKE_initServer: Cert length 1713 IKE_initServer: Host Certificate is set (RSA-SIG) {CN=CNDTK2R0PR::20:4c:03:22:91:ec} Apr 16, 13:55:18: get_ip_from_dev: interface name = br0 Apr 16, 13:55:18: get_ip_from_dev: interface name = br0 Apr 16, 13:55:18: IKE_EXAMPLE_addServer port:0 natt:0 Apr 16, 13:55:18: get_ip_from_dev: interface name = br0 Apr 16, 13:55:18: IKE_EXAMPLE_addServer:2323 dev_name br0 saddr 192.168.242.12 Apr 16, 13:55:18: IKE_EXAMPLE_addUdpSkt STARTS Apr 16, 13:55:18: IKE_EXAMPLE_addUdpSkt:2028 family is v4 hostAddr= 192.168.242.12 wHostPort = 49957 Apr 16, 13:55:18: get_ip_from_dev: interface name = br0 Apr 16, 13:55:18: srcdev_name = br0 ip 192.168.242.12 Apr 16, 13:55:18: IKE_EXAMPLE_addUdpSkt: Using SocketIndex:0 IKE_EXAMPLE: Socket created on 192.168.242.12[49957] Apr 16, 13:55:18: IKE_EXAMPLE_addServer:2381 socket descriptor is 0 port number 49957 for server instance 0 at 0th index addr 192.168.242.12 Apr 16, 13:55:18: IKE_EXAMPLE_addUdpSkt STARTS Apr 16, 13:55:18: IKE_EXAMPLE_addUdpSkt:2028 family is v4 hostAddr= 192.168.242.12 wHostPort = 49958 Apr 16, 13:55:18: get_ip_from_dev: interface name = br0 Apr 16, 13:55:18: srcdev_name = br0 ip 192.168.242.12 Apr 16, 13:55:18: IKE_EXAMPLE_addUdpSkt: Using SocketIndex:1 IKE_EXAMPLE: Socket created on 192.168.242.12[49958] Apr 16, 13:55:18: IKE_EXAMPLE_addServer:2430 socket descriptor is 1 port number 49958 for server instance 0 at 1st index addr 192.168.242.12 Apr 16, 13:55:18: IKE_EXAMPLE_addDefaultServers status:0 Apr 16, 13:55:18: setup_tunnel:5085: Setenv TUNDEV setup_tunnel successful Apr 16, 13:55:18: tunnel address = 192.168.248.100 Apr 16, 13:55:18: hostAddr = 192.168.242.12 (0.0)(pid:12051) time:2020-04-16 13:55:18 SA_INIT dest=192.168.248.100 Apr 16, 13:55:18: IKE_evtRecv: Initialize IKE SA Apr 16, 13:55:18: IKE_CUSTOM_getVersion(peerAddr:192.168.248.100): ikeVersion:2 Apr 16, 13:55:18: IKE2_evtInit:1168: peerAddr=192.168.248.100 peerAddr->family=2 Apr 16, 13:55:18: IKE_allocSa my_rapper_index 0 serverInstance 1 for 192.168.242.12 Timer ID: 1 Initialized Apr 16, 13:55:18: IKE_SA_INIT Apr 16, 13:55:18: IKE2_newSa(822): NEW SA, DhGrp 2 (0) Apr 16, 13:55:18: IKE2_newSa(peerAddr:-1062668188): IKE_SA-lifetime:28000 Apr 16, 13:55:18: IKE2_getStateInfo start oExchange = 34 dir = 0 Apr 16, 13:55:18: IKE2_xchgOut:(226): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 I --> Apr 16, 13:55:18: I --> Apr 16, 13:55:18: construct outgoing message Apr 16, 13:55:18: initI_out : IPV4 IMPLEMENTATION Apr 16, 13:55:18: OutSa(v2-peerAddr::: pxSa->dwPeerAddr:192.168.248.100): Entered Apr 16, 13:55:18: OutSa: ike sa ENCR_AES 128-BITS ENCR_AES 256-BITS PRF_HMAC_SHA1 AUTH_HMAC_SHA1_96 DH_2 NAT_D (us): 18 07 b4 d0 5f 1c 8c b5 63 23 1c e8 b2 f4 be 0a e6 52 c6 02 NAT_D (peer): 69 1b 2f 45 69 3b dc a1 4b 92 93 fc c3 be f7 f7 6b 9b 2b 21 Apr 16, 13:55:18: RAPPER_ERROR_FILE doesn't exist Apr 16, 13:55:18: RAPPER_ERROR_FILE doesn't exist Apr 16, 13:55:18: RAPPER_ERROR_FILE doesn't exist Apr 16, 13:55:18: RAPPER_ERROR_FILE doesn't exist Apr 16, 13:55:18: RAPPER_ERROR_FILE doesn't exist Apr 16, 13:55:18: transmit message spi={6ca3113bf4470ee6 0000000000000000} np=SA exchange=IKE_SA_INIT msgid=0 len=392 #SEND 396 bytes to 192.168.248.100[4500] (1.0)(pid:12051) time:2020-04-16 13:55:18 Apr 16, 13:55:18: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:18: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:18: IKE_SAMPLE_ikeXchgSend Successfully setsockopt UDP_ENCAP port 49958 Apr 16, 13:55:18: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=396 Apr 16, 13:55:18: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 2 Remote IP address = 192.168.248.100 IKE_EXAMPLE: IKE_keyConnect() started, id = 0xApr 16, 13:55:18: IKE_EXAMPLE: IKE_keyConnect() started, id = 0x on device br0 97597f6d... Apr 16, 13:55:18: papi:15200 Apr 16, 13:55:18: IKE_EXAMPLE_msgRecv:2153:V4 IMPLEMENATION peerAddr = 192.168.248.100 Apr 16, 13:55:18: IKE2_msgRecv:(1650): IPV4 IMPLEMENTATION bUseNattPort=1 Apr 16, 13:55:18: IKE2_msgRecv:1664 original ike_context created #RECV 60 bytes from 192.168.248.100[4500] at 192.168.242.12 (1.0)(pid:12051) time:2020-04-16 13:55:18 Apr 16, 13:55:18: IKE2_msgRecv:1744: Apr 16, 13:55:18: IKE2_xchgIn:(798): IPV4 IMPLEMENTATION ctx->dwBufferSize=60 ctx->bUseNattPort=1 spi={6ca3113bf4470ee6 0000000000000000} np=N exchange=IKE_SA_INIT msgid=0 len=56 I <-- Apr 16, 13:55:18: InNotify:(8320): IPV4 IMPLEMENTATION ctx->dwBufferSize=28 ctx->bUseNattPort=1 Notify: COOKIE Apr 16, 13:55:18: IKE2_xchgIn:1378 bResponse=1 status=0 Apr 16, 13:55:18: IKE2_msgRecv:1834 create new context, status_in=0 Apr 16, 13:55:18: |ocsp| IKE2_msgRecv_resume:2077 Apr 16, 13:55:18: IKE2_xchgOut:(226): IPV4 IMPLEMENTATION ctx->dwBufferSize=60 ctx->bUseNattPort=1 Apr 16, 13:55:18: transmit message spi={6ca3113bf4470ee6 0000000000000000} np=N exchange=IKE_SA_INIT msgid=0 len=420 #SEND 424 bytes to 192.168.248.100[4500] (1.0)(pid:12051) time:2020-04-16 13:55:18 Apr 16, 13:55:18: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:18: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:18: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=424 Apr 16, 13:55:18: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:18: cleanup_and_free_context: delete ctx memory Apr 16, 13:55:18: |ocsp| cleanup_context_data:2257 Apr 16, 13:55:18: IKE2_msgRecv:1850 status=0 OK=0 Apr 16, 13:55:18: IKE_EXAMPLE_msgRecv:2153:V4 IMPLEMENATION peerAddr = 192.168.248.100 Apr 16, 13:55:18: IKE2_msgRecv:(1650): IPV4 IMPLEMENTATION bUseNattPort=1 Apr 16, 13:55:18: IKE2_msgRecv:1664 original ike_context created #RECV 525 bytes from 192.168.248.100[4500] at 192.168.242.12 (1.0)(pid:12051) time:2020-04-16 13:55:18 Apr 16, 13:55:18: IKE2_msgRecv:1744: Apr 16, 13:55:18: IKE2_xchgIn:(798): IPV4 IMPLEMENTATION ctx->dwBufferSize=525 ctx->bUseNattPort=1 spi={6ca3113bf4470ee6 9139aa6586e0cfdc} np=SA exchange=IKE_SA_INIT msgid=0 len=521 I <-- Proposal #1: IKE[4] ENCR_AES 256-BITS PRF_HMAC_SHA1 AUTH_HMAC_SHA1_96 DH_2 Apr 16, 13:55:18: InNotify:(8320): IPV4 IMPLEMENTATION ctx->dwBufferSize=281 ctx->bUseNattPort=1 Notify: NAT_DETECTION_SOURCE_IP Apr 16, 13:55:18: InNotify:(8320): IPV4 IMPLEMENTATION ctx->dwBufferSize=253 ctx->bUseNattPort=1 Notify: NAT_DETECTION_DESTINATION_IP NAT_D (us/NAT): 1e 6f 7f fb 68 08 69 24 c3 33 8a 97 41 22 f8 f9 1a 2b 4f 83 Apr 16, 13:55:18: InCr:7803 SA rapper index 0 my_rapper_index 0 VID: 40 48 b7 d5 6e bc e8 85 25 e7 de 7f 00 d6 c2 d3 Apr 16, 13:55:18: Fragmentation is enabled Apr 16, 13:55:18: IKE2_getStateInfo start oExchange = 35 dir = 0 Apr 16, 13:55:18: IKE2_xchgIn:1378 bResponse=1 status=0 Apr 16, 13:55:18: IKE2_msgRecv:1834 create new context, status_in=0 Apr 16, 13:55:18: |ocsp| IKE2_msgRecv_resume:2077 Apr 16, 13:55:18: IKE2_xchgOut:(226): IPV4 IMPLEMENTATION ctx->dwBufferSize=525 ctx->bUseNattPort=1 I --> Apr 16, 13:55:18: I --> Apr 16, 13:55:18: construct outgoing message Notify: INITIAL_CONTACT Apr 16, 13:55:18: OutCert: adding leaf Cert of Len:1713 Apr 16, 13:55:18: RAPPER priority old: -19, set to -20 (1.0)(pid:12051) time:2020-04-16 13:55:18 Apr 16, 13:55:18: OutAuth oSigAlgo 0, Len 15, 30 14 msg 00 00 00 00 6c a3 11 3b f4 47 0e e6 00 00 00 00 00 00 00 00 29 20 22 08 00 00 00 00 00 00 01 a4 21 00 00 1c 01 00 40 06 00 00 04 ac a3 dd 51 51 67 b0 eb 87 28 d1 3a 50 9c 11 60 7d 22 00 00 3c 00 00 00 38 01 01 00 05 03 00 00 0c 01 00 00 0c 80 0e 00 80 03 00 00 0c 01 00 00 0c 80 0e 01 00 03 00 00 08 02 00 00 02 03 00 00 08 03 00 00 02 00 00 00 08 04 00 00 02 28 00 00 88 00 02 00 00 fd 93 7b 97 01 af 96 7b 60 66 8d 97 f3 cf 01 0f d8 dc 78 1c be 13 28 6b 3d 77 3b 13 15 d6 db 74 c1 a4 68 1a b1 30 ba 2a db 75 56 8d 3c 98 79 56 da 5d 75 46 5a 65 6d 91 b9 09 53 42 3a 92 47 79 51 7d 80 cd df 85 da 7d dc 58 b1 d6 d4 6d 25 67 9b a6 a7 e2 54 e7 74 2f f6 88 93 fc 31 71 1c 0f 27 6b 36 e6 aa 6d 0d c3 a7 6b 4d 17 f4 41 ca ee 7f 63 79 d3 21 80 f4 fe 4a 5a 7a 84 69 20 a0 6c 29 00 00 14 8b 9f 22 23 98 09 44 ae fd 61 27 14 63 e1 bc 35 29 00 00 1c 00 00 40 04 18 07 b4 d0 5f 1c 8c b5 63 23 1c e8 b2 f4 be 0a e6 52 c6 02 2b 00 00 1c 00 00 40 05 69 1b 2f 45 69 3b dc a1 4b 92 93 fc c3 be f7 f7 6b 9b 2b 21 2b 00 00 14 40 48 b7 d5 6e bc e8 85 25 e7 de 7f 00 d6 c2 d3 2b 00 00 18 91 27 e6 75 f9 9a 10 88 16 b3 38 d1 8a 29 8a 42 c0 dd 94 18 2b 00 00 18 17 25 f0 89 27 42 ea 52 3b 79 ec 84 8c 97 20 1a 30 94 d6 c5 00 00 00 18 17 25 f0 89 27 42 ea 52 3b 79 ec 84 8c 97 20 1a 30 94 d6 c5 non 9a 3b 8d 03 4a 15 62 ef 6b 67 30 81 18 0f aa 98 8f 21 95 6e a0 14 34 2f lst d6 67 fb be 53 35 b7 5a bd cb 96 54 67 2e 10 8b e9 41 09 a3 HASH_i 6e ce 55 eb 84 fb 83 23 02 63 31 01 a6 ed 77 ef 42 3e 86 b4 (3.0)(pid:12051) time:2020-04-16 13:55:20 Apr 16, 13:55:20: OutAuth TPM sign api passed (3.0)(pid:12051) time:2020-04-16 13:55:20 Apr 16, 13:55:20: IKE_SAMPLE_ikeInitCfg(peerAddr=192.168.248.100): No CP-CFG IPV4 IMPLEMENTATION CFG_REQUEST IP4_ADDRESS IP4_NETMASK find index: 00000000Apr 16, 13:55:20: OutSa(v2-peerAddr:192.168.248.100 pxSa->dwPeerAddr:192.168.248.100): Entered Apr 16, 13:55:20: OutSa: child sa Apr 16, 13:55:20: OutTfm2(v2-peerAddr:-1062668188): oTfmId:0 wAuthAlgo:0 wEncrKeyLen:0 wAuthKeyLen:0 bNoEnumEncr:0 bNoEnumAuth:0 ENCR_AES 128-BITS ENCR_AES 256-BITS ENCR_3DES AUTH_HMAC_SHA1_96 ESN_0 Apr 16, 13:55:20: OutTs:1934: Apr 16, 13:55:20: OutTs:1979: ctx->dwBufferSize=12479 wBodyLen=8 TSi: 0.0.0.0~255.255.255.255 Apr 16, 13:55:20: OutTs:1934: Apr 16, 13:55:20: OutTs:1979: ctx->dwBufferSize=12455 wBodyLen=8 TSr: 0.0.0.0~255.255.255.255 Apr 16, 13:55:20: transmit message spi={6ca3113bf4470ee6 9139aa6586e0cfdc} np=E{IDi} exchange=IKE_AUTH msgid=1 len=2268 #SEND 2272 bytes to 192.168.248.100[4500] (3.0)(pid:12051) time:2020-04-16 13:55:20 Apr 16, 13:55:20: IKE2_xchgOut:513 Apr 16, 13:55:20: ikeTotalDatasize 2244, maxFragDataSize = 476, num 5, last 340 Apr 16, 13:55:20: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=12412 ctx->bUseNattPort=1 Apr 16, 13:55:20: Created fragment, size = 476 Apr 16, 13:55:20: Sending no:1 fragment out of 5 fragments, size = 0 Apr 16, 13:55:20: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:20: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:20: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:20: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 2 Remote IP address = 192.168.248.100 Apr 16, 13:55:20: Sending fragment, size = 516 Apr 16, 13:55:20: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=12412 ctx->bUseNattPort=1 Apr 16, 13:55:20: Created fragment, size = 476 Apr 16, 13:55:20: Sending no:2 fragment out of 5 fragments, size = 0 Apr 16, 13:55:20: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:20: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:20: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:20: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 2 Remote IP address = 192.168.248.100 Apr 16, 13:55:20: Sending fragment, size = 516 Apr 16, 13:55:20: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=12412 ctx->bUseNattPort=1 Apr 16, 13:55:20: Created fragment, size = 476 Apr 16, 13:55:20: Sending no:3 fragment out of 5 fragments, size = 0 Apr 16, 13:55:20: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:20: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:20: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:20: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 2 Remote IP address = 192.168.248.100 Apr 16, 13:55:20: Sending fragment, size = 516 Apr 16, 13:55:20: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=12412 ctx->bUseNattPort=1 Apr 16, 13:55:20: Created fragment, size = 476 Apr 16, 13:55:20: Sending no:4 fragment out of 5 fragments, size = 0 Apr 16, 13:55:20: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:20: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:20: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:20: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 2 Remote IP address = 192.168.248.100 Apr 16, 13:55:20: Sending fragment, size = 516 Apr 16, 13:55:20: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=12412 ctx->bUseNattPort=1 Apr 16, 13:55:20: Created fragment, size = 336 Apr 16, 13:55:20: Sending last fragment, size = 376 Apr 16, 13:55:20: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:20: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:20: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=376 Apr 16, 13:55:20: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 2 Remote IP address = 192.168.248.100 Apr 16, 13:55:20: cleanup_and_free_context: delete ctx memory Apr 16, 13:55:20: |ocsp| cleanup_context_data:2257 Apr 16, 13:55:20: IKE2_msgRecv:1850 status=0 OK=0 Apr 16, 13:55:23: IKE2_xchgOut:(226): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:23: transmit message spi={6ca3113bf4470ee6 9139aa6586e0cfdc} np=E{IDi} exchange=IKE_AUTH msgid=1 len=2268 #SEND 2272 bytes to 192.168.248.100[4500] (6.0)(pid:12051) time:2020-04-16 13:55:23 Apr 16, 13:55:23: IKE2_xchgOut:513 Apr 16, 13:55:23: ikeTotalDatasize 2244, maxFragDataSize = 476, num 5, last 340 Apr 16, 13:55:23: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:23: Created fragment, size = 476 Apr 16, 13:55:23: Sending no:1 fragment out of 5 fragments, size = 0 Apr 16, 13:55:23: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:23: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:23: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:23: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:23: Sending fragment, size = 516 Apr 16, 13:55:23: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:23: Created fragment, size = 476 Apr 16, 13:55:23: Sending no:2 fragment out of 5 fragments, size = 0 Apr 16, 13:55:23: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:23: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:23: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:23: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:23: Sending fragment, size = 516 Apr 16, 13:55:23: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:23: Created fragment, size = 476 Apr 16, 13:55:23: Sending no:3 fragment out of 5 fragments, size = 0 Apr 16, 13:55:23: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:23: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:23: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:23: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:23: Sending fragment, size = 516 Apr 16, 13:55:23: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:23: Created fragment, size = 476 Apr 16, 13:55:23: Sending no:4 fragment out of 5 fragments, size = 0 Apr 16, 13:55:23: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:23: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:23: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:23: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:23: Sending fragment, size = 516 Apr 16, 13:55:23: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:23: Created fragment, size = 336 Apr 16, 13:55:23: Sending last fragment, size = 376 Apr 16, 13:55:23: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:23: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:23: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=376 Apr 16, 13:55:23: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 end of show log rapper ======================================================== Target : undefined show vpn status profile name:default -------------------------------------------------- current using tunnel :unselected tunnel current tunnel using time :0 ipsec is preempt status :disable ipsec is fast failover status :disable ipsec hold on period :600s ipsec tunnel monitor frequency (seconds/packet) :5 ipsec tunnel monitor timeout by lost packet cnt :6 ipsec reconnect duration (seconds) :30 ipsec primary tunnel crypto type :Cert ipsec primary tunnel peer address :192.168.248.100 ipsec primary tunnel peer tunnel ip :0.0.0.0 ipsec primary tunnel ap tunnel ip :0.0.0.0 ipsec primary tunnel using interface : ipsec primary tunnel using MTU :0 ipsec primary tunnel profile index :0 ipsec primary tunnel current sm status :Retrying ipsec primary tunnel tunnel status :Down ipsec primary tunnel tunnel retry times :17 ipsec primary tunnel tunnel uptime :0 ipsec backup tunnel crypto type :Cert ipsec backup tunnel peer address :N/A ipsec backup tunnel peer tunnel ip :N/A ipsec backup tunnel ap tunnel ip :N/A ipsec backup tunnel using interface :N/A ipsec backup tunnel using MTU :N/A ipsec backup tunnel current sm status :Init ipsec backup tunnel tunnel status :Down ipsec backup tunnel tunnel retry times :0 ipsec backup tunnel tunnel uptime :0 end of show vpn status ======================================================== show gre status GRE not configured - no status end of show gre status ======================================================== show upgrade info swarm upgrade status -------------------- Mac IP Address Seed AP AP Class Status Image Info --- ---------- ------- -------- ------ ---------- 20:4c:03:22:91:ec 192.168.242.12 No Ursa image-ok From Seed Auto reboot :enable Use external URL :enable Master wait Time :0 secs 0 count Switch Partition :enable Upgrade in process :No UAP convert process :No end of show upgrade info ======================================================== show log upgrade ----------Download log start---------- download log not available ----------Download log end------------ Download status: incomplete ----------Upgrade log start---------- upgrade log not available ----------Upgrade log end------------ Upgrade status: upgrade status not available end of show log upgrade ======================================================== show log rapper Apr 16, 13:55:03: Created fragment, size = 476 Apr 16, 13:55:03: Sending no:1 fragment out of 5 fragments, size = 0 Apr 16, 13:55:03: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:03: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:03: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:03: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:03: Sending fragment, size = 516 Apr 16, 13:55:03: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:03: Created fragment, size = 476 Apr 16, 13:55:03: Sending no:2 fragment out of 5 fragments, size = 0 Apr 16, 13:55:03: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:03: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:03: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:03: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:03: Sending fragment, size = 516 Apr 16, 13:55:03: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:03: Created fragment, size = 476 Apr 16, 13:55:03: Sending no:3 fragment out of 5 fragments, size = 0 Apr 16, 13:55:03: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:03: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:03: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:03: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:03: Sending fragment, size = 516 Apr 16, 13:55:03: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:03: Created fragment, size = 476 Apr 16, 13:55:03: Sending no:4 fragment out of 5 fragments, size = 0 Apr 16, 13:55:03: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:03: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:03: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:03: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:03: Sending fragment, size = 516 Apr 16, 13:55:03: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:03: Created fragment, size = 336 Apr 16, 13:55:03: Sending last fragment, size = 376 Apr 16, 13:55:03: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:03: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:03: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=376 Apr 16, 13:55:03: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:08: IKE2_xchgOut:(226): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:08: transmit message spi={07a37d8d6ff9403b fb70c99ad06733ec} np=E{IDi} exchange=IKE_AUTH msgid=1 len=2268 #SEND 2272 bytes to 192.168.248.100[4500] (20.0)(pid:11791) time:2020-04-16 13:55:08 Apr 16, 13:55:08: IKE2_xchgOut:513 Apr 16, 13:55:08: ikeTotalDatasize 2244, maxFragDataSize = 476, num 5, last 340 Apr 16, 13:55:08: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:08: Created fragment, size = 476 Apr 16, 13:55:08: Sending no:1 fragment out of 5 fragments, size = 0 Apr 16, 13:55:08: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:08: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:08: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:08: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:08: Sending fragment, size = 516 Apr 16, 13:55:08: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:08: Created fragment, size = 476 Apr 16, 13:55:08: Sending no:2 fragment out of 5 fragments, size = 0 Apr 16, 13:55:08: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:08: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:08: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:08: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:08: Sending fragment, size = 516 Apr 16, 13:55:08: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:08: Created fragment, size = 476 Apr 16, 13:55:08: Sending no:3 fragment out of 5 fragments, size = 0 Apr 16, 13:55:08: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:08: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:08: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:08: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:08: Sending fragment, size = 516 Apr 16, 13:55:08: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:08: Created fragment, size = 476 Apr 16, 13:55:08: Sending no:4 fragment out of 5 fragments, size = 0 Apr 16, 13:55:08: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:08: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:08: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:08: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:08: Sending fragment, size = 516 Apr 16, 13:55:08: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:08: Created fragment, size = 336 Apr 16, 13:55:08: Sending last fragment, size = 376 Apr 16, 13:55:08: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:08: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:08: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=376 Apr 16, 13:55:08: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:13: IKE2_xchgOut:(226): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:13: transmit message spi={07a37d8d6ff9403b fb70c99ad06733ec} np=E{IDi} exchange=IKE_AUTH msgid=1 len=2268 #SEND 2272 bytes to 192.168.248.100[4500] (25.0)(pid:11791) time:2020-04-16 13:55:13 Apr 16, 13:55:13: IKE2_xchgOut:513 Apr 16, 13:55:13: ikeTotalDatasize 2244, maxFragDataSize = 476, num 5, last 340 Apr 16, 13:55:13: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:13: Created fragment, size = 476 Apr 16, 13:55:13: Sending no:1 fragment out of 5 fragments, size = 0 Apr 16, 13:55:13: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:13: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:13: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:13: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:13: Sending fragment, size = 516 Apr 16, 13:55:13: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:13: Created fragment, size = 476 Apr 16, 13:55:13: Sending no:2 fragment out of 5 fragments, size = 0 Apr 16, 13:55:13: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:13: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:13: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:13: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:13: Sending fragment, size = 516 Apr 16, 13:55:13: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:13: Created fragment, size = 476 Apr 16, 13:55:13: Sending no:3 fragment out of 5 fragments, size = 0 Apr 16, 13:55:13: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:13: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:13: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:13: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:13: Sending fragment, size = 516 Apr 16, 13:55:13: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:13: Created fragment, size = 476 Apr 16, 13:55:13: Sending no:4 fragment out of 5 fragments, size = 0 Apr 16, 13:55:13: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:13: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:13: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:13: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:13: Sending fragment, size = 516 Apr 16, 13:55:13: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:13: Created fragment, size = 336 Apr 16, 13:55:13: Sending last fragment, size = 376 Apr 16, 13:55:13: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:13: Sending from SrcPort 49956 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:13: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=376 Apr 16, 13:55:13: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:16: rapper got Signal 15 Apr 16, 13:55:16: need rapper EXIT immediately, since sometimes dispatcher loop hasn't start Apr 16, 13:55:18: get_ike_version: Use IKE Version 2 Apr 16, 13:55:18: rapper_write_pid_to_file: wrote rapper pid 12051 to file /tmp/rapper_pid_1 Apr 16, 13:55:18: papi_init papifd:6 ack:14 IKE_EXAMPLE: Starting up IKE server Apr 16, 13:55:18: IKE_init: ethmacstr = 20:4C:03:22:91:EC Initialized Timers IKE_init: completed after (0.0)(pid:12051) time:2020-04-16 13:55:18 seconds. Apr 16, 13:55:18: RAP using default certificates Apr 16, 13:55:18: IAP using default CA certificates Apr 16, 13:55:18: Before getting Certs Apr 16, 13:55:18: TPM enabled Apr 16, 13:55:18: get_usb_type: Unable to open /tmp/usb_type Apr 16, 13:55:18: get_usb_csr: Unable to open /tmp/usb_csr Apr 16, 13:55:18: CA_MGMT_EXAMPLE_computeHostKeys init cert-len 0 Apr 16, 13:55:18: Factory Device Cert is /tmp/deviceCerts/certifiedKeyCert.der Apr 16, 13:55:18: Reading DER Device Cert file /tmp/deviceCerts/certifiedKeyCert.der Apr 16, 13:55:18: DER Device Cert file len:1713 Apr 16, 13:55:18: Intermediate Cert index:0 is /tmp/deviceCerts/certifiedKeyCaCert.der Apr 16, 13:55:18: Reading DER Intermediate Cert file Apr 16, 13:55:18: DER Intermediate Cert file len:1118 Apr 16, 13:55:18: Intermediate Cert index:1 is /tmp/deviceCerts/caChainCert1.der Apr 16, 13:55:18: Reading DER Intermediate Cert file Apr 16, 13:55:18: DER Intermediate Cert file len:1333 Apr 16, 13:55:18: Decode PEM Key length :0 Apr 16, 13:55:18: testHostKeys : status 0 Apr 16, 13:55:18: testHostKeys : free temp Certificate status 0 Apr 16, 13:55:18: CA_MGMT_EXAMPLE_computeHostKeys after testHostKeys cert-len 1713 Apr 16, 13:55:18: CA Cert index:0 is /tmp/deviceCerts/OpensslOldCA_RootCert.der Apr 16, 13:55:18: Reading CA Cert file Apr 16, 13:55:18: i=0 DER CA Cert file len:1416 Apr 16, 13:55:18: CA Cert index:1 is /tmp/deviceCerts/MSCAV1_RootCert.der Apr 16, 13:55:18: Reading CA Cert file Apr 16, 13:55:18: i=1 DER CA Cert file len:1009 Apr 16, 13:55:18: CA Cert index:2 is /tmp/deviceCerts/Aruba_EST_CA_RootCert.der Apr 16, 13:55:18: Reading CA Cert file Apr 16, 13:55:18: i=2 DER CA Cert file len:992 Apr 16, 13:55:18: Got 3 Trusted Certs Apr 16, 13:55:18: CSS CA Cert is /tmp/deviceCerts/CSS_CA_RootCert.der Apr 16, 13:55:18: Reading DER CA Cert file Apr 16, 13:55:18: Error in reading DER CA Cert:/tmp/deviceCerts/CSS_CA_RootCert.der, Ignore It Apr 16, 13:55:18: CA Cert status : 0 Before IKE_initServer Apr 16, 13:55:18: IKE_initServer: Cert length 1713 IKE_initServer: Host Certificate is set (RSA-SIG) {CN=CNDTK2R0PR::20:4c:03:22:91:ec} Apr 16, 13:55:18: get_ip_from_dev: interface name = br0 Apr 16, 13:55:18: get_ip_from_dev: interface name = br0 Apr 16, 13:55:18: IKE_EXAMPLE_addServer port:0 natt:0 Apr 16, 13:55:18: get_ip_from_dev: interface name = br0 Apr 16, 13:55:18: IKE_EXAMPLE_addServer:2323 dev_name br0 saddr 192.168.242.12 Apr 16, 13:55:18: IKE_EXAMPLE_addUdpSkt STARTS Apr 16, 13:55:18: IKE_EXAMPLE_addUdpSkt:2028 family is v4 hostAddr= 192.168.242.12 wHostPort = 49957 Apr 16, 13:55:18: get_ip_from_dev: interface name = br0 Apr 16, 13:55:18: srcdev_name = br0 ip 192.168.242.12 Apr 16, 13:55:18: IKE_EXAMPLE_addUdpSkt: Using SocketIndex:0 IKE_EXAMPLE: Socket created on 192.168.242.12[49957] Apr 16, 13:55:18: IKE_EXAMPLE_addServer:2381 socket descriptor is 0 port number 49957 for server instance 0 at 0th index addr 192.168.242.12 Apr 16, 13:55:18: IKE_EXAMPLE_addUdpSkt STARTS Apr 16, 13:55:18: IKE_EXAMPLE_addUdpSkt:2028 family is v4 hostAddr= 192.168.242.12 wHostPort = 49958 Apr 16, 13:55:18: get_ip_from_dev: interface name = br0 Apr 16, 13:55:18: srcdev_name = br0 ip 192.168.242.12 Apr 16, 13:55:18: IKE_EXAMPLE_addUdpSkt: Using SocketIndex:1 IKE_EXAMPLE: Socket created on 192.168.242.12[49958] Apr 16, 13:55:18: IKE_EXAMPLE_addServer:2430 socket descriptor is 1 port number 49958 for server instance 0 at 1st index addr 192.168.242.12 Apr 16, 13:55:18: IKE_EXAMPLE_addDefaultServers status:0 Apr 16, 13:55:18: setup_tunnel:5085: Setenv TUNDEV setup_tunnel successful Apr 16, 13:55:18: tunnel address = 192.168.248.100 Apr 16, 13:55:18: hostAddr = 192.168.242.12 (0.0)(pid:12051) time:2020-04-16 13:55:18 SA_INIT dest=192.168.248.100 Apr 16, 13:55:18: IKE_evtRecv: Initialize IKE SA Apr 16, 13:55:18: IKE_CUSTOM_getVersion(peerAddr:192.168.248.100): ikeVersion:2 Apr 16, 13:55:18: IKE2_evtInit:1168: peerAddr=192.168.248.100 peerAddr->family=2 Apr 16, 13:55:18: IKE_allocSa my_rapper_index 0 serverInstance 1 for 192.168.242.12 Timer ID: 1 Initialized Apr 16, 13:55:18: IKE_SA_INIT Apr 16, 13:55:18: IKE2_newSa(822): NEW SA, DhGrp 2 (0) Apr 16, 13:55:18: IKE2_newSa(peerAddr:-1062668188): IKE_SA-lifetime:28000 Apr 16, 13:55:18: IKE2_getStateInfo start oExchange = 34 dir = 0 Apr 16, 13:55:18: IKE2_xchgOut:(226): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 I --> Apr 16, 13:55:18: I --> Apr 16, 13:55:18: construct outgoing message Apr 16, 13:55:18: initI_out : IPV4 IMPLEMENTATION Apr 16, 13:55:18: OutSa(v2-peerAddr::: pxSa->dwPeerAddr:192.168.248.100): Entered Apr 16, 13:55:18: OutSa: ike sa ENCR_AES 128-BITS ENCR_AES 256-BITS PRF_HMAC_SHA1 AUTH_HMAC_SHA1_96 DH_2 NAT_D (us): 18 07 b4 d0 5f 1c 8c b5 63 23 1c e8 b2 f4 be 0a e6 52 c6 02 NAT_D (peer): 69 1b 2f 45 69 3b dc a1 4b 92 93 fc c3 be f7 f7 6b 9b 2b 21 Apr 16, 13:55:18: RAPPER_ERROR_FILE doesn't exist Apr 16, 13:55:18: RAPPER_ERROR_FILE doesn't exist Apr 16, 13:55:18: RAPPER_ERROR_FILE doesn't exist Apr 16, 13:55:18: RAPPER_ERROR_FILE doesn't exist Apr 16, 13:55:18: RAPPER_ERROR_FILE doesn't exist Apr 16, 13:55:18: transmit message spi={6ca3113bf4470ee6 0000000000000000} np=SA exchange=IKE_SA_INIT msgid=0 len=392 #SEND 396 bytes to 192.168.248.100[4500] (1.0)(pid:12051) time:2020-04-16 13:55:18 Apr 16, 13:55:18: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:18: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:18: IKE_SAMPLE_ikeXchgSend Successfully setsockopt UDP_ENCAP port 49958 Apr 16, 13:55:18: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=396 Apr 16, 13:55:18: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 2 Remote IP address = 192.168.248.100 IKE_EXAMPLE: IKE_keyConnect() started, id = 0xApr 16, 13:55:18: IKE_EXAMPLE: IKE_keyConnect() started, id = 0x on device br0 97597f6d... Apr 16, 13:55:18: papi:15200 Apr 16, 13:55:18: IKE_EXAMPLE_msgRecv:2153:V4 IMPLEMENATION peerAddr = 192.168.248.100 Apr 16, 13:55:18: IKE2_msgRecv:(1650): IPV4 IMPLEMENTATION bUseNattPort=1 Apr 16, 13:55:18: IKE2_msgRecv:1664 original ike_context created #RECV 60 bytes from 192.168.248.100[4500] at 192.168.242.12 (1.0)(pid:12051) time:2020-04-16 13:55:18 Apr 16, 13:55:18: IKE2_msgRecv:1744: Apr 16, 13:55:18: IKE2_xchgIn:(798): IPV4 IMPLEMENTATION ctx->dwBufferSize=60 ctx->bUseNattPort=1 spi={6ca3113bf4470ee6 0000000000000000} np=N exchange=IKE_SA_INIT msgid=0 len=56 I <-- Apr 16, 13:55:18: InNotify:(8320): IPV4 IMPLEMENTATION ctx->dwBufferSize=28 ctx->bUseNattPort=1 Notify: COOKIE Apr 16, 13:55:18: IKE2_xchgIn:1378 bResponse=1 status=0 Apr 16, 13:55:18: IKE2_msgRecv:1834 create new context, status_in=0 Apr 16, 13:55:18: |ocsp| IKE2_msgRecv_resume:2077 Apr 16, 13:55:18: IKE2_xchgOut:(226): IPV4 IMPLEMENTATION ctx->dwBufferSize=60 ctx->bUseNattPort=1 Apr 16, 13:55:18: transmit message spi={6ca3113bf4470ee6 0000000000000000} np=N exchange=IKE_SA_INIT msgid=0 len=420 #SEND 424 bytes to 192.168.248.100[4500] (1.0)(pid:12051) time:2020-04-16 13:55:18 Apr 16, 13:55:18: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:18: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:18: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=424 Apr 16, 13:55:18: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:18: cleanup_and_free_context: delete ctx memory Apr 16, 13:55:18: |ocsp| cleanup_context_data:2257 Apr 16, 13:55:18: IKE2_msgRecv:1850 status=0 OK=0 Apr 16, 13:55:18: IKE_EXAMPLE_msgRecv:2153:V4 IMPLEMENATION peerAddr = 192.168.248.100 Apr 16, 13:55:18: IKE2_msgRecv:(1650): IPV4 IMPLEMENTATION bUseNattPort=1 Apr 16, 13:55:18: IKE2_msgRecv:1664 original ike_context created #RECV 525 bytes from 192.168.248.100[4500] at 192.168.242.12 (1.0)(pid:12051) time:2020-04-16 13:55:18 Apr 16, 13:55:18: IKE2_msgRecv:1744: Apr 16, 13:55:18: IKE2_xchgIn:(798): IPV4 IMPLEMENTATION ctx->dwBufferSize=525 ctx->bUseNattPort=1 spi={6ca3113bf4470ee6 9139aa6586e0cfdc} np=SA exchange=IKE_SA_INIT msgid=0 len=521 I <-- Proposal #1: IKE[4] ENCR_AES 256-BITS PRF_HMAC_SHA1 AUTH_HMAC_SHA1_96 DH_2 Apr 16, 13:55:18: InNotify:(8320): IPV4 IMPLEMENTATION ctx->dwBufferSize=281 ctx->bUseNattPort=1 Notify: NAT_DETECTION_SOURCE_IP Apr 16, 13:55:18: InNotify:(8320): IPV4 IMPLEMENTATION ctx->dwBufferSize=253 ctx->bUseNattPort=1 Notify: NAT_DETECTION_DESTINATION_IP NAT_D (us/NAT): 1e 6f 7f fb 68 08 69 24 c3 33 8a 97 41 22 f8 f9 1a 2b 4f 83 Apr 16, 13:55:18: InCr:7803 SA rapper index 0 my_rapper_index 0 VID: 40 48 b7 d5 6e bc e8 85 25 e7 de 7f 00 d6 c2 d3 Apr 16, 13:55:18: Fragmentation is enabled Apr 16, 13:55:18: IKE2_getStateInfo start oExchange = 35 dir = 0 Apr 16, 13:55:18: IKE2_xchgIn:1378 bResponse=1 status=0 Apr 16, 13:55:18: IKE2_msgRecv:1834 create new context, status_in=0 Apr 16, 13:55:18: |ocsp| IKE2_msgRecv_resume:2077 Apr 16, 13:55:18: IKE2_xchgOut:(226): IPV4 IMPLEMENTATION ctx->dwBufferSize=525 ctx->bUseNattPort=1 I --> Apr 16, 13:55:18: I --> Apr 16, 13:55:18: construct outgoing message Notify: INITIAL_CONTACT Apr 16, 13:55:18: OutCert: adding leaf Cert of Len:1713 Apr 16, 13:55:18: RAPPER priority old: -19, set to -20 (1.0)(pid:12051) time:2020-04-16 13:55:18 Apr 16, 13:55:18: OutAuth oSigAlgo 0, Len 15, 30 14 msg 00 00 00 00 6c a3 11 3b f4 47 0e e6 00 00 00 00 00 00 00 00 29 20 22 08 00 00 00 00 00 00 01 a4 21 00 00 1c 01 00 40 06 00 00 04 ac a3 dd 51 51 67 b0 eb 87 28 d1 3a 50 9c 11 60 7d 22 00 00 3c 00 00 00 38 01 01 00 05 03 00 00 0c 01 00 00 0c 80 0e 00 80 03 00 00 0c 01 00 00 0c 80 0e 01 00 03 00 00 08 02 00 00 02 03 00 00 08 03 00 00 02 00 00 00 08 04 00 00 02 28 00 00 88 00 02 00 00 fd 93 7b 97 01 af 96 7b 60 66 8d 97 f3 cf 01 0f d8 dc 78 1c be 13 28 6b 3d 77 3b 13 15 d6 db 74 c1 a4 68 1a b1 30 ba 2a db 75 56 8d 3c 98 79 56 da 5d 75 46 5a 65 6d 91 b9 09 53 42 3a 92 47 79 51 7d 80 cd df 85 da 7d dc 58 b1 d6 d4 6d 25 67 9b a6 a7 e2 54 e7 74 2f f6 88 93 fc 31 71 1c 0f 27 6b 36 e6 aa 6d 0d c3 a7 6b 4d 17 f4 41 ca ee 7f 63 79 d3 21 80 f4 fe 4a 5a 7a 84 69 20 a0 6c 29 00 00 14 8b 9f 22 23 98 09 44 ae fd 61 27 14 63 e1 bc 35 29 00 00 1c 00 00 40 04 18 07 b4 d0 5f 1c 8c b5 63 23 1c e8 b2 f4 be 0a e6 52 c6 02 2b 00 00 1c 00 00 40 05 69 1b 2f 45 69 3b dc a1 4b 92 93 fc c3 be f7 f7 6b 9b 2b 21 2b 00 00 14 40 48 b7 d5 6e bc e8 85 25 e7 de 7f 00 d6 c2 d3 2b 00 00 18 91 27 e6 75 f9 9a 10 88 16 b3 38 d1 8a 29 8a 42 c0 dd 94 18 2b 00 00 18 17 25 f0 89 27 42 ea 52 3b 79 ec 84 8c 97 20 1a 30 94 d6 c5 00 00 00 18 17 25 f0 89 27 42 ea 52 3b 79 ec 84 8c 97 20 1a 30 94 d6 c5 non 9a 3b 8d 03 4a 15 62 ef 6b 67 30 81 18 0f aa 98 8f 21 95 6e a0 14 34 2f lst d6 67 fb be 53 35 b7 5a bd cb 96 54 67 2e 10 8b e9 41 09 a3 HASH_i 6e ce 55 eb 84 fb 83 23 02 63 31 01 a6 ed 77 ef 42 3e 86 b4 (3.0)(pid:12051) time:2020-04-16 13:55:20 Apr 16, 13:55:20: OutAuth TPM sign api passed (3.0)(pid:12051) time:2020-04-16 13:55:20 Apr 16, 13:55:20: IKE_SAMPLE_ikeInitCfg(peerAddr=192.168.248.100): No CP-CFG IPV4 IMPLEMENTATION CFG_REQUEST IP4_ADDRESS IP4_NETMASK find index: 00000000Apr 16, 13:55:20: OutSa(v2-peerAddr:192.168.248.100 pxSa->dwPeerAddr:192.168.248.100): Entered Apr 16, 13:55:20: OutSa: child sa Apr 16, 13:55:20: OutTfm2(v2-peerAddr:-1062668188): oTfmId:0 wAuthAlgo:0 wEncrKeyLen:0 wAuthKeyLen:0 bNoEnumEncr:0 bNoEnumAuth:0 ENCR_AES 128-BITS ENCR_AES 256-BITS ENCR_3DES AUTH_HMAC_SHA1_96 ESN_0 Apr 16, 13:55:20: OutTs:1934: Apr 16, 13:55:20: OutTs:1979: ctx->dwBufferSize=12479 wBodyLen=8 TSi: 0.0.0.0~255.255.255.255 Apr 16, 13:55:20: OutTs:1934: Apr 16, 13:55:20: OutTs:1979: ctx->dwBufferSize=12455 wBodyLen=8 TSr: 0.0.0.0~255.255.255.255 Apr 16, 13:55:20: transmit message spi={6ca3113bf4470ee6 9139aa6586e0cfdc} np=E{IDi} exchange=IKE_AUTH msgid=1 len=2268 #SEND 2272 bytes to 192.168.248.100[4500] (3.0)(pid:12051) time:2020-04-16 13:55:20 Apr 16, 13:55:20: IKE2_xchgOut:513 Apr 16, 13:55:20: ikeTotalDatasize 2244, maxFragDataSize = 476, num 5, last 340 Apr 16, 13:55:20: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=12412 ctx->bUseNattPort=1 Apr 16, 13:55:20: Created fragment, size = 476 Apr 16, 13:55:20: Sending no:1 fragment out of 5 fragments, size = 0 Apr 16, 13:55:20: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:20: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:20: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:20: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 2 Remote IP address = 192.168.248.100 Apr 16, 13:55:20: Sending fragment, size = 516 Apr 16, 13:55:20: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=12412 ctx->bUseNattPort=1 Apr 16, 13:55:20: Created fragment, size = 476 Apr 16, 13:55:20: Sending no:2 fragment out of 5 fragments, size = 0 Apr 16, 13:55:20: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:20: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:20: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:20: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 2 Remote IP address = 192.168.248.100 Apr 16, 13:55:20: Sending fragment, size = 516 Apr 16, 13:55:20: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=12412 ctx->bUseNattPort=1 Apr 16, 13:55:20: Created fragment, size = 476 Apr 16, 13:55:20: Sending no:3 fragment out of 5 fragments, size = 0 Apr 16, 13:55:20: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:20: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:20: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:20: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 2 Remote IP address = 192.168.248.100 Apr 16, 13:55:20: Sending fragment, size = 516 Apr 16, 13:55:20: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=12412 ctx->bUseNattPort=1 Apr 16, 13:55:20: Created fragment, size = 476 Apr 16, 13:55:20: Sending no:4 fragment out of 5 fragments, size = 0 Apr 16, 13:55:20: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:20: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:20: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:20: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 2 Remote IP address = 192.168.248.100 Apr 16, 13:55:20: Sending fragment, size = 516 Apr 16, 13:55:20: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=12412 ctx->bUseNattPort=1 Apr 16, 13:55:20: Created fragment, size = 336 Apr 16, 13:55:20: Sending last fragment, size = 376 Apr 16, 13:55:20: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:20: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:20: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=376 Apr 16, 13:55:20: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 2 Remote IP address = 192.168.248.100 Apr 16, 13:55:20: cleanup_and_free_context: delete ctx memory Apr 16, 13:55:20: |ocsp| cleanup_context_data:2257 Apr 16, 13:55:20: IKE2_msgRecv:1850 status=0 OK=0 Apr 16, 13:55:23: IKE2_xchgOut:(226): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:23: transmit message spi={6ca3113bf4470ee6 9139aa6586e0cfdc} np=E{IDi} exchange=IKE_AUTH msgid=1 len=2268 #SEND 2272 bytes to 192.168.248.100[4500] (6.0)(pid:12051) time:2020-04-16 13:55:23 Apr 16, 13:55:23: IKE2_xchgOut:513 Apr 16, 13:55:23: ikeTotalDatasize 2244, maxFragDataSize = 476, num 5, last 340 Apr 16, 13:55:23: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:23: Created fragment, size = 476 Apr 16, 13:55:23: Sending no:1 fragment out of 5 fragments, size = 0 Apr 16, 13:55:23: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:23: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:23: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:23: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:23: Sending fragment, size = 516 Apr 16, 13:55:23: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:23: Created fragment, size = 476 Apr 16, 13:55:23: Sending no:2 fragment out of 5 fragments, size = 0 Apr 16, 13:55:23: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:23: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:23: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:23: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:23: Sending fragment, size = 516 Apr 16, 13:55:23: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:23: Created fragment, size = 476 Apr 16, 13:55:23: Sending no:3 fragment out of 5 fragments, size = 0 Apr 16, 13:55:23: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:23: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:23: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:23: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:23: Sending fragment, size = 516 Apr 16, 13:55:23: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:23: Created fragment, size = 476 Apr 16, 13:55:23: Sending no:4 fragment out of 5 fragments, size = 0 Apr 16, 13:55:23: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:23: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:23: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=516 Apr 16, 13:55:23: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 Apr 16, 13:55:23: Sending fragment, size = 516 Apr 16, 13:55:23: IKE2_fragCreate:(237): IPV4 IMPLEMENTATION ctx->dwBufferSize=0 ctx->bUseNattPort=0 Apr 16, 13:55:23: Created fragment, size = 336 Apr 16, 13:55:23: Sending last fragment, size = 376 Apr 16, 13:55:23: IKE_SAMPLE_ikeXchgSend:2727:V4 IMPLEMENATION dwPeerAddr=192.168.248.100 bUseNattPort=1 Apr 16, 13:55:23: Sending from SrcPort 49958 ---> DstPort 4500 myAddr = 192.168.242.12 Apr 16, 13:55:23: send message: dwPeerAddr=192.168.248.100, wPeerPort=4500, pBuffer=, dwBufferSize=376 Apr 16, 13:55:23: UDP_sendTo successful IKE_EXAMPLE: UDP_sendTo() successful, status = 0 sendto() returns 0 Remote IP address = 192.168.248.100 end of show log rapper ========================================================