--- road.console.txt 2019-08-24 18:12:56.143678507 +0000 +++ OUTPUT/road.console.txt 2019-08-26 13:15:47.211664055 +0000 @@ -17,42 +17,31 @@ ipsec auto --up road1 002 "road1" #1: initiating Main Mode 1v1 "road1" #1: STATE_MAIN_I1: initiate -1v1 "road1" #1: STATE_MAIN_I2: sent MI2, expecting MR2 -002 "road1" #1: I am sending my cert -002 "road1" #1: I am sending a certificate request -1v1 "road1" #1: STATE_MAIN_I3: sent MI3, expecting MR3 -002 "road1" #1: Peer ID is ID_DER_ASN1_DN: 'C=CA, ST=Ontario, L=Toronto, O=Libreswan, OU=Test Department, CN=east.testing.libreswan.org, E=user-east@testing.libreswan.org' -002 "road1" #1: certificate verified OK: E=user-east@testing.libreswan.org,CN=east.testing.libreswan.org,OU=Test Department,O=Libreswan,L=Toronto,ST=Ontario,C=CA -003 "road1" #1: Authenticated using RSA -004 "road1" #1: STATE_MAIN_I4: ISAKMP SA established {auth=RSA_SIG cipher=AES_CBC_256 integ=HMAC_SHA2_256 group=MODP2048} -002 "road1" #2: initiating Quick Mode RSASIG+ENCRYPT+TUNNEL+PFS+UP+IKEV1_ALLOW+SAREF_TRACK+IKE_FRAG_ALLOW+ESN_NO -1v1 "road1" #2: STATE_QUICK_I1: initiate -004 "road1" #2: STATE_QUICK_I2: sent QI2, IPsec SA established tunnel mode {ESP/NAT=>0xESPESP <0xESPESP xfrm=AES_CBC_128-HMAC_SHA1_96 NATOA=none NATD=192.1.2.23:4500 DPD=passive} +010 "road1" #1: STATE_MAIN_I1: retransmission; will wait 0.5 seconds for response +010 "road1" #1: STATE_MAIN_I1: retransmission; will wait 1 seconds for response +010 "road1" #1: STATE_MAIN_I1: retransmission; will wait 2 seconds for response road # killall -9 pluto +pluto: no process found road # ipsec start Redirecting to: [initsystem] +pluto: FATAL: lock file "/run/pluto/pluto.pid" already exists +| certs and keys locked by 'free_preshared_secrets' +| certs and keys unlocked by 'free_preshared_secrets' +| crl fetch request list locked by 'free_crl_fetch' +| crl fetch request list unlocked by 'free_crl_fetch' +ABORT: ASSERTION FAILED: event_initialized(&se->ev) (in free_signal_handlers() at server.c:624) +/etc/init.d/ipsec: line 120: 10599 Aborted (core dumped) ${IPSEC_EXECDIR}/pluto --config ${IPSEC_CONF} ${PLUTO_OPTIONS} road # /testing/pluto/bin/wait-until-pluto-started +whack: is Pluto running? connect() for "/run/pluto/pluto.ctl" failed (111 Connection refused) road # ipsec auto --add road2 -002 added connection description "road2" +connect(pluto_ctl) failed: Connection refused road # ipsec auto --up road2 -002 "road2" #1: initiating Main Mode -1v1 "road2" #1: STATE_MAIN_I1: initiate -1v1 "road2" #1: STATE_MAIN_I2: sent MI2, expecting MR2 -002 "road2" #1: I am sending my cert -002 "road2" #1: I am sending a certificate request -1v1 "road2" #1: STATE_MAIN_I3: sent MI3, expecting MR3 -002 "road2" #1: Peer ID is ID_DER_ASN1_DN: 'C=CA, ST=Ontario, L=Toronto, O=Libreswan, OU=Test Department, CN=east.testing.libreswan.org, E=user-east@testing.libreswan.org' -002 "road2" #1: certificate verified OK: E=user-east@testing.libreswan.org,CN=east.testing.libreswan.org,OU=Test Department,O=Libreswan,L=Toronto,ST=Ontario,C=CA -003 "road2" #1: Authenticated using RSA -004 "road2" #1: STATE_MAIN_I4: ISAKMP SA established {auth=RSA_SIG cipher=AES_CBC_256 integ=HMAC_SHA2_256 group=MODP2048} -002 "road2" #2: initiating Quick Mode RSASIG+ENCRYPT+TUNNEL+PFS+UP+IKEV1_ALLOW+SAREF_TRACK+IKE_FRAG_ALLOW+ESN_NO -1v1 "road2" #2: STATE_QUICK_I1: initiate -004 "road2" #2: STATE_QUICK_I2: sent QI2, IPsec SA established tunnel mode {ESP/NAT=>0xESPESP <0xESPESP xfrm=AES_CBC_128-HMAC_SHA1_96 NATOA=none NATD=192.1.2.23:4500 DPD=passive} +whack: is Pluto running? connect() for "/run/pluto/pluto.ctl" failed (111 Connection refused) road # echo done done