| 23:13:17 | Start |
|
*** Target IKE initialization phase ***
Target: Reset IKE SA entries: saddump |
| 23:13:17 |
vRemote(ikeResetSA.rmt) ``/usr/local/v6eval//bin/freebsd-i386//ikeResetSA.rmt -t freebsd-i386 -u root -p v6eval -d ucom0 -o 1 saddump ''
Connected
dell#
dell# /usr/local/sbin/setkey -c <<EOD
dump;
flush;
EOD
? dump;
? flush;
? EOD
No SAD entries.
dell#
dell# sendMessagesSync: never got /usr/local/sbin/setkey -c <<EODdump;flush;EOD
echo $status
0
dell# kill -TERM `head -1 /var/run/racoon.pid`
head: /var/run/racoon.pid: No such file or directory
dell#
echo $status
dell# echo $status
1
dell# /bin/rm -f /var/run/racoon.pid
dell#
echo $status
dell# echo $status
0~
[EOT]
|
|
Target: Clear SPD entries: spddump |
| 23:13:25 |
vRemote(ipsecResetSPD.rmt) ``/usr/local/v6eval//bin/freebsd-i386//ipsecResetSPD.rmt -t freebsd-i386 -u root -p v6eval -d ucom0 -o 1 spddump ''
Connected
dell#
dell# /usr/local/sbin/setkey -c <<EOD
spddump;
spdflush;
? spddump;
? spdflush;
EOD
? EOD
No SPD entries.
dell#
dell# sendMessagesSync: never got /usr/local/sbin/setkey -c <<EODspddump;spdflush;EOD
echo $status
0~
[EOT]
|
|
Target: Set SPD entries: src=3ffe:501:ffff:100:290:99ff:fe7e:3e52 dst=3ffe:501:ffff:101::11 upperspec=any direction=out protocol=PROTO_IPSEC_ESP mode=Transport |
| 23:13:33 |
vRemote(ipsecSetSPD.rmt) ``/usr/local/v6eval//bin/freebsd-i386//ipsecSetSPD.rmt -t freebsd-i386 -u root -p v6eval -d ucom0 -o 1 src=3ffe:501:ffff:100:290:99ff:fe7e:3e52 dst=3ffe:501:ffff:101::11 upperspec=any direction=out protocol=PROTO_IPSEC_ESP mode=Transport ''
Connected
dell#
dell# /usr/local/sbin/setkey -c <<EOD
spdadd 3ffe:501:ffff:100:290:99ff:fe7e:3e52 3ffe:501:ffff:101::11
any
-P out ipsec
esp/transport/3ffe:501:ffff:100:290:99ff:fe7e:3e52-3ffe:501:ffff:101::11/require
;
spddump;
EOD
? spdadd 3ffe:501:ffff:100:290:99ff:fe7e:3e52 3ffe:501:ffff:101::11
any
-P out ipsec
esp/transport/3ffe:501:ffff:100:290:99ff:fe7e:3e52-3ffe:501:ffff:101::11/require
;
spddump;
EOD
? any
? -P out ipsec
? esp/transport/3ffe:501:ffff:100:290:99ff:fe7e:3e52-3ffe:501:ffff:101::1 �1/require
? ;
? spddump;
? EOD
3ffe:501:ffff:100:290:99ff:fe7e:3e52[any] 3ffe:501:ffff:101::11[any] any
out ipsec
esp/transport/3ffe:501:ffff:100:290:99ff:fe7e:3e52-3ffe:501:ffff:101::11/require
created: Mar 17 14:20:51 2006 lastused: Mar 17 14:20:51 2006
lifetime: 0(s) validtime: 0(s)
spid=17181 seq=0 pid=1165
refcnt=1
dell#
dell# sendMessagesSync: never got /usr/local/sbin/setkey -c <<EODspdadd 3ffe:501:ffff:100:290:99ff:fe7e:3e52 3ffe:501:ffff:101::11 any -P out ipsec esp/transport/3ffe:501:ffff:100:290:99ff:fe7e:3e52-3ffe:501:ffff:101::11/require;spddump;EOD
echo $status
0~
[EOT]
|
|
Target: Set IKE SA entries: dst=3ffe:501:ffff:101::11 dst_port=500 exchange_mode=aggressive doi=ipsec_doi situation=identity_only isakmp_src_id_type=address isakmp_src_id=3ffe:501:ffff:100:290:99ff:fe7e:3e52 dh_group=2 lifetime=28800 lifetime_unit=seconds encryption_algorithm=des hash_algorithm=md5 authentication_method=pre_shared_key dh_group_2=2 encryption_algorithm_2=3des hash_algorithm_2=sha1 authentication_method_2=pre_shared_key key_id=3ffe:501:ffff:101::11 key_value=0x494b452d54455354 ph2_id_type=address ph2_src_id=3ffe:501:ffff:100:290:99ff:fe7e:3e52 ph2_dst_id=3ffe:501:ffff:101::11 ph2_src_upper=any ph2_dst_upper=any ipsec_p_num=1 ipsec_p1_t_num=1 ph2_p1_t1_lt=8 ph2_p1_t1_lt_unit=hour ph2_p1_t1_enc_alg=ESP_3DES ph2_p1_t1_auth_mtd=HMAC_SHA |
| 23:13:41 |
vRemote(ikeSetSA.rmt) ``/usr/local/v6eval//bin/freebsd-i386//ikeSetSA.rmt -t freebsd-i386 -u root -p v6eval -d ucom0 -o 1 dst=3ffe:501:ffff:101::11 dst_port=500 exchange_mode=aggressive doi=ipsec_doi situation=identity_only isakmp_src_id_type=address isakmp_src_id=3ffe:501:ffff:100:290:99ff:fe7e:3e52 dh_group=2 lifetime=28800 lifetime_unit=seconds encryption_algorithm=des hash_algorithm=md5 authentication_method=pre_shared_key dh_group_2=2 encryption_algorithm_2=3des hash_algorithm_2=sha1 authentication_method_2=pre_shared_key key_id=3ffe:501:ffff:101::11 key_value=0x494b452d54455354 ph2_id_type=address ph2_src_id=3ffe:501:ffff:100:290:99ff:fe7e:3e52 ph2_dst_id=3ffe:501:ffff:101::11 ph2_src_upper=any ph2_dst_upper=any ipsec_p_num=1 ipsec_p1_t_num=1 ph2_p1_t1_lt=8 ph2_p1_t1_lt_unit=hour ph2_p1_t1_enc_alg=ESP_3DES ph2_p1_t1_auth_mtd=HMAC_SHA ''
Connected
dell#
dell# ~[set] echocheck
dell#
dell# ~[put] freebsd-i386.psk.txt /tmp/psk.txt
D��dell#
dell#
dell# /bin/chmod 600 /tmp/psk.txt
dell# echo $status
0
dell# ~[set] echocheck
dell#
dell# ~[put] freebsd-i386.ike.conf /tmp/ike.conf
D��
dell#
dell#
dell# test -f /var/run/racoon.pid &&kill -TERM `head -1 /var/run/racoon.pid`
dell#
dell# echo $status
1
dell# /usr/local/sbin/racoon -f /tmp/ike.conf
dell#
dell# echo $status
0~
[EOT]
|
| 23:13:54 |
vRemote(ikeEnable.rmt) ``/usr/local/v6eval//bin/freebsd-i386//ikeEnable.rmt -t freebsd-i386 -u root -p v6eval -d ucom0 -o 1 ''
|
|
*** Target initialization phase ***
|
| 23:13:54 | Start Capturing Packets (Link0)
|
| 23:13:54 |
vRecv(Link0,rs_from_nut rs_from_nut_wsll) timeout:15 cntLimit:0 seektime:0
vRecv() return status=1
|
|
*** Target testing phase ***
|
| 23:14:09 | Clear Captured Packets (Link0)
|
|
*** Phase-1 1st message recv ***
HOST1(NUT) send ICMP to HOST2(TN)
|
| 23:14:09 |
vRemoteAsync(ping6.rmt) ``/usr/local/v6eval//bin/freebsd-i386//ping6.rmt -t freebsd-i386 -u root -p v6eval -d ucom0 -o 1 count=2 interval=1 if=rl0 addr=3ffe:501:ffff:101::11''
Link to remote control log
|
| 23:14:09 |
vRecv(Link0,isakmp_phase1_recv ns_uni rs_from_nut rs_from_nut_wsll ns_uni_tll_sll ns_uni_sll ns_multi_llt ns_multi) timeout:10 cntLimit:0 seektime:0
Recv 1st message from HOST1(NUT)
|
|
OK payload_check
*** Phase-1 2nd message send ***
|
| 23:14:13 | Clear Captured Packets (Link0)
|
| 23:14:13 |
vSend(Link0,isakmp_phase1_send_2nd_agg)
Send 2nd message from HOST2(TN)
|
|
*** Phase-1 3rd message recv ***
|
| 23:14:13 |
vRecv(Link0,isakmp_phase1_recv_3rd isakmp_phase1_recv_3rd_agg_enc ns_uni rs_from_nut rs_from_nut_wsll ns_uni_tll_sll ns_uni_sll ns_multi_llt ns_multi) timeout:5 cntLimit:0 seektime:0
vRecv() return status=1
|
|
NG:Receive no packets
OK:Phase-1 3rd message is not returned.
Multiple Transform Payloads check(modify proposal) is correct
*** Target test finish ***
|
| 23:14:18 | Stop Capturing Packets (Link0)
|
| 23:14:18 |
vRemoteAsyncWait()
Link to remote control start point
sleep 3 [sec] for escaping critical point of asynchronous remoteconf.
Connected
dell#
dell# /sbin/ping6 -n -c 2 -i 1 -h 64 -s 2 -p 00 -I rl0 3ffe:501:ffff:101::11
PATTERN: 0x00
PING6(50=40+8+2 bytes) 3ffe:501:ffff:100:290:99ff:fe7e:3e52 --> 3ffe:501:ffff:101::11
--- 3ffe:501:ffff:101::11 ping6 statistics ---
2 packets transmitted, 0 packets received, 100.0% packet loss
dell#
echo $status
dell# echo $status
1~
[EOT]
|
|
Target: Reset IKE SA entries: saddump |
| 23:14:27 |
vRemote(ikeResetSA.rmt) ``/usr/local/v6eval//bin/freebsd-i386//ikeResetSA.rmt -t freebsd-i386 -u root -p v6eval -d ucom0 -o 1 saddump ''
Connected
dell#
dell# /usr/local/sbin/setkey -c <<EOD
dump;
flush;
EOD
? dump;
? flush;
? EOD
No SAD entries.
dell#
dell# sendMessagesSync: never got /usr/local/sbin/setkey -c <<EODdump;flush;EOD
echo $status
0
dell# kill -TERM `head -1 /var/run/racoon.pid`
dell#
dell# echo $status
0
dell# /bin/rm -f /var/run/racoon.pid
dell#
echo $status
dell# echo $status
0~
[EOT]
|
|
Target: Clear SPD entries: spddump |
| 23:14:34 |
vRemote(ipsecResetSPD.rmt) ``/usr/local/v6eval//bin/freebsd-i386//ipsecResetSPD.rmt -t freebsd-i386 -u root -p v6eval -d ucom0 -o 1 spddump ''
Connected
dell#
dell# /usr/local/sbin/setkey -c <<EOD
spddump;
spdflush;? spddump;
EOD
? spdflush;
EOD
? EOD
3ffe:501:ffff:100:290:99ff:fe7e:3e52[any] 3ffe:501:ffff:101::11[any] any
out ipsec
esp/transport/3ffe:501:ffff:100:290:99ff:fe7e:3e52-3ffe:501:ffff:101::11/require
created: Mar 17 14:20:51 2006 lastused: Mar 17 14:21:31 2006
lifetime: 0(s) validtime: 0(s)
spid=17181 seq=0 pid=1176
refcnt=1
dell#
dell# sendMessagesSync: never got /usr/local/sbin/setkey -c <<EODspddump;spdflush;EOD
echo $status
0~
[EOT]
|
|
OK
|
| 23:14:41 | End |