Pfsense + Amazon VPC
-
Hola,
Alguien ha trabajado con Amazon VPC y pfsense. He estado leyendo la limitada documentación que existe en internet acerca de la conexión IPsec hacia VPC y no he podido realizar la conexión.
Practicamente existe solo dos portales con documentación sobre esto:
http://complaintsincorporated.com/2012/07/27/amazon-vpc-adventure-customer-gateway-on-the-cheap/#comment-842
http://www.seattleit.net/blog/pfsense-ipsec-vpn-gateway-amazon-vpc-bgp-routing/Alguien que pueda ayudarme? No puedo levantar los dos tuneles IPsec, esta es parte de mi log de racoon:
Oct 23 19:53:13 racoon: DEBUG: received an R-U-THERE-ACK Oct 23 19:53:13 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: DPD R-U-There-Ack received Oct 23 19:53:13 racoon: DEBUG: succeed. Oct 23 19:53:13 racoon: DEBUG: seen nptype=11(notify) Oct 23 19:53:13 racoon: DEBUG: seen nptype=8(hash) Oct 23 19:53:13 racoon: DEBUG: begin. Oct 23 19:53:13 racoon: DEBUG: hash validated. Oct 23 19:53:13 racoon: DEBUG: 6a226a3a 2ade0f08 1ba2ae15 587931a0 d0b06e47 Oct 23 19:53:13 racoon: DEBUG: HASH computed: Oct 23 19:53:13 racoon: DEBUG: hmac(hmac_sha1) Oct 23 19:53:13 racoon: DEBUG: f87a34ff 00000020 00000001 01108d29 1877487b e5ce962f e303299b 781ada79 00000cdd Oct 23 19:53:13 racoon: DEBUG: HASH with: Oct 23 19:53:13 racoon: DEBUG: IV freed Oct 23 19:53:13 racoon: DEBUG: 1877487b e5ce962f e303299b 781ada79 08100501 f87a34ff 0000005c 0b000018 6a226a3a 2ade0f08 1ba2ae15 587931a0 d0b06e47 00000020 00000001 01108d29 1877487b e5ce962f e303299b 781ada79 00000cdd 00000000 00000000 Oct 23 19:53:13 racoon: DEBUG: decrypted. Oct 23 19:53:13 racoon: DEBUG: skip to trim padding. Oct 23 19:53:13 racoon: DEBUG: padding len=1 Oct 23 19:53:13 racoon: DEBUG: 0b000018 6a226a3a 2ade0f08 1ba2ae15 587931a0 d0b06e47 00000020 00000001 01108d29 1877487b e5ce962f e303299b 781ada79 00000cdd 00000000 00000000 Oct 23 19:53:13 racoon: DEBUG: decrypted payload, but not trimed. Oct 23 19:53:13 racoon: DEBUG: f5ae452d 0baa5d4b 2a004aa1 56bf329b Oct 23 19:53:13 racoon: DEBUG: decrypted payload by IV: Oct 23 19:53:13 racoon: DEBUG: 29a2080a 7aafd968 94792600 e5b69a06 Oct 23 19:53:13 racoon: DEBUG: with key: Oct 23 19:53:13 racoon: DEBUG: encryption(aes) Oct 23 19:53:13 racoon: DEBUG: a6a35de2 5270aa49 68ba0876 6b5af70a Oct 23 19:53:13 racoon: DEBUG: IV was saved for next processing: Oct 23 19:53:13 racoon: DEBUG: encryption(aes) Oct 23 19:53:13 racoon: DEBUG: begin decryption. Oct 23 19:53:13 racoon: DEBUG: f5ae452d 0baa5d4b 2a004aa1 56bf329b Oct 23 19:53:13 racoon: DEBUG: phase2 IV computed: Oct 23 19:53:13 racoon: DEBUG: encryption(aes) Oct 23 19:53:13 racoon: DEBUG: hash(sha1) Oct 23 19:53:13 racoon: DEBUG: dba44c78 38113bd4 39e9a2d9 1523e00d f87a34ff Oct 23 19:53:13 racoon: DEBUG: phase1 last IV: Oct 23 19:53:13 racoon: DEBUG: compute IV for phase2 Oct 23 19:53:13 racoon: DEBUG: receive Information. Oct 23 19:53:13 racoon: DEBUG: 1877487b e5ce962f e303299b 781ada79 08100501 f87a34ff 0000005c 00da4d9d 51deede4 35d63208 db0697b9 ecc662ba 10aeae39 a6f6497a 7dc81714 169a3245 fbab6421 a6ab288b f98c3cd6 a6a35de2 5270aa49 68ba0876 6b5af70a Oct 23 19:53:13 racoon: DEBUG: 92 bytes message received from 72.BBB.BBB.BBB[500] to 201.CCC.CCC.CCC[500] Oct 23 19:53:13 racoon: DEBUG: === Oct 23 19:53:13 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: rescheduling send_r_u (5). Oct 23 19:53:13 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: DPD R-U-There sent (0) Oct 23 19:53:13 racoon: DEBUG: IV freed Oct 23 19:53:13 racoon: DEBUG: sendto Information notify. Oct 23 19:53:13 racoon: DEBUG: 1877487b e5ce962f e303299b 781ada79 08100501 c5620b1b 0000005c 979153fa 5d32729c 0a66c6be dde9ce2e 650109d9 48b8c19a 7464ad6f b59aba37 1e0fa29a 06bb00dc 04af4bf2 309857f1 d75bd825 8d2c2821 f9751b39 940dbc70 Oct 23 19:53:13 racoon: DEBUG: 1 times of 92 bytes message will be sent to 72.BBB.BBB.BBB[500] Oct 23 19:53:13 racoon: DEBUG: send packet to 72.BBB.BBB.BBB[500] Oct 23 19:53:13 racoon: DEBUG: send packet from 201.CCC.CCC.CCC[500] Oct 23 19:53:13 racoon: DEBUG: sockname 201.CCC.CCC.CCC[500] Oct 23 19:53:13 racoon: DEBUG: 92 bytes from 201.CCC.CCC.CCC[500] to 72.BBB.BBB.BBB[500] Oct 23 19:53:13 racoon: DEBUG: encrypted. Oct 23 19:53:13 racoon: DEBUG: d75bd825 8d2c2821 f9751b39 940dbc70 Oct 23 19:53:13 racoon: DEBUG: save IV for next: Oct 23 19:53:13 racoon: DEBUG: 910adfe3 f6351bc2 7e9b5658 5cdd5384 Oct 23 19:53:13 racoon: DEBUG: encrypted payload by IV: Oct 23 19:53:13 racoon: DEBUG: 29a2080a 7aafd968 94792600 e5b69a06 Oct 23 19:53:13 racoon: DEBUG: with key: Oct 23 19:53:13 racoon: DEBUG: encryption(aes) Oct 23 19:53:13 racoon: DEBUG: 0b000018 e2a2166c 283b7e17 4906091b a07b42a3 5870cd12 00000020 00000001 01108d28 1877487b e5ce962f e303299b 781ada79 00000cdd a9c18ad4 d8e3a007 Oct 23 19:53:13 racoon: DEBUG: pad length = 8 Oct 23 19:53:13 racoon: DEBUG: encryption(aes) Oct 23 19:53:13 racoon: DEBUG: begin encryption. Oct 23 19:53:13 racoon: DEBUG: e2a2166c 283b7e17 4906091b a07b42a3 5870cd12 Oct 23 19:53:13 racoon: DEBUG: HASH computed: Oct 23 19:53:13 racoon: DEBUG: hmac(hmac_sha1) Oct 23 19:53:13 racoon: DEBUG: c5620b1b 00000020 00000001 01108d28 1877487b e5ce962f e303299b 781ada79 00000cdd Oct 23 19:53:13 racoon: DEBUG: HASH with: Oct 23 19:53:13 racoon: DEBUG: 910adfe3 f6351bc2 7e9b5658 5cdd5384 Oct 23 19:53:13 racoon: DEBUG: phase2 IV computed: Oct 23 19:53:13 racoon: DEBUG: encryption(aes) Oct 23 19:53:13 racoon: DEBUG: hash(sha1) Oct 23 19:53:13 racoon: DEBUG: dba44c78 38113bd4 39e9a2d9 1523e00d c5620b1b Oct 23 19:53:13 racoon: DEBUG: phase1 last IV: Oct 23 19:53:13 racoon: DEBUG: compute IV for phase2 Oct 23 19:53:13 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: DPD monitoring.... Oct 23 19:53:08 racoon: [VPC2]: [72.AAA.AAA.AAA] ERROR: unknown Informational exchange received. Oct 23 19:53:08 racoon: DEBUG: f0444f67 a33089dc d0b0f015 23426223 08100501 19b4abf9 0000005c d80f6eb1 fb90f4dc 92371057 fbc24f76 f6172c11 61d05f4a e92d6cf7 559116bd 95965a19 6a854f14 1490def1 bcbd9a7e 5b6cac56 43d34363 092a4e9f 6d751d2f Oct 23 19:53:08 racoon: DEBUG: 92 bytes message received from 72.AAA.AAA.AAA[500] to 201.CCC.CCC.CCC[500] Oct 23 19:53:08 racoon: DEBUG: === Oct 23 19:53:06 racoon: [VPC2]: [72.AAA.AAA.AAA] ERROR: unknown Informational exchange received. Oct 23 19:53:06 racoon: DEBUG: f0444f67 a33089dc d0b0f015 23426223 08100501 4478454c 0000005c 5de7dc93 0d8e587a 64f748c7 b72a283f c81824a2 8d60c1f2 7eff7856 76058d85 aeddf418 773ce24f 662c6373 2e81becf 668dd3f0 c3b45ade ea80638a df80c206 Oct 23 19:53:06 racoon: DEBUG: 92 bytes message received from 72.AAA.AAA.AAA[500] to 201.CCC.CCC.CCC[500] Oct 23 19:53:06 racoon: DEBUG: === Oct 23 19:53:03 racoon: [VPC2]: [72.AAA.AAA.AAA] ERROR: unknown Informational exchange received. Oct 23 19:53:03 racoon: DEBUG: f0444f67 a33089dc d0b0f015 23426223 08100501 940b67fa 0000005c b4849784 20eafda9 f5f6c7b8 9ebb488d 5b53ecd6 25140b6a f9c5de2a d6acac57 8f27f503 1d2281fe 398d082d c09b20c4 57499868 3f7c9424 e1982d1d 5c06ef0b Oct 23 19:53:03 racoon: DEBUG: 92 bytes message received from 72.AAA.AAA.AAA[500] to 201.CCC.CCC.CCC[500] Oct 23 19:53:03 racoon: DEBUG: === Oct 23 19:53:03 racoon: DEBUG: received an R-U-THERE-ACK Oct 23 19:53:03 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: DPD R-U-There-Ack received Oct 23 19:53:03 racoon: DEBUG: succeed. Oct 23 19:53:03 racoon: DEBUG: seen nptype=11(notify) Oct 23 19:53:03 racoon: DEBUG: seen nptype=8(hash) Oct 23 19:53:03 racoon: DEBUG: begin. Oct 23 19:53:03 racoon: DEBUG: hash validated. Oct 23 19:53:03 racoon: DEBUG: 0c47e785 84708d1c a16ecd5f bfdd4b4f 85f05d23 Oct 23 19:53:03 racoon: DEBUG: HASH computed: Oct 23 19:53:03 racoon: DEBUG: hmac(hmac_sha1) Oct 23 19:53:03 racoon: DEBUG: 2f82121b 00000020 00000001 01108d29 1877487b e5ce962f e303299b 781ada79 00000cdc Oct 23 19:53:03 racoon: DEBUG: HASH with: Oct 23 19:53:03 racoon: DEBUG: IV freed Oct 23 19:53:03 racoon: DEBUG: 1877487b e5ce962f e303299b 781ada79 08100501 2f82121b 0000005c 0b000018 0c47e785 84708d1c a16ecd5f bfdd4b4f 85f05d23 00000020 00000001 01108d29 1877487b e5ce962f e303299b 781ada79 00000cdc 00000000 00000000 Oct 23 19:53:03 racoon: DEBUG: decrypted. Oct 23 19:53:03 racoon: DEBUG: skip to trim padding. Oct 23 19:53:03 racoon: DEBUG: padding len=1 Oct 23 19:53:03 racoon: DEBUG: 0b000018 0c47e785 84708d1c a16ecd5f bfdd4b4f 85f05d23 00000020 00000001 01108d29 1877487b e5ce962f e303299b 781ada79 00000cdc 00000000 00000000 Oct 23 19:53:03 racoon: DEBUG: decrypted payload, but not trimed. Oct 23 19:53:03 racoon: DEBUG: 4a5aada3 73b56e68 2219b780 1f836e83 Oct 23 19:53:03 racoon: DEBUG: decrypted payload by IV: Oct 23 19:53:03 racoon: DEBUG: 29a2080a 7aafd968 94792600 e5b69a06 Oct 23 19:53:03 racoon: DEBUG: with key: Oct 23 19:53:03 racoon: DEBUG: encryption(aes) Oct 23 19:53:03 racoon: DEBUG: f181b5f9 3633ae86 adabc222 eebdeed5 Oct 23 19:53:03 racoon: DEBUG: IV was saved for next processing: Oct 23 19:53:03 racoon: DEBUG: encryption(aes) Oct 23 19:53:03 racoon: DEBUG: begin decryption. Oct 23 19:53:03 racoon: DEBUG: 4a5aada3 73b56e68 2219b780 1f836e83 Oct 23 19:53:03 racoon: DEBUG: phase2 IV computed: Oct 23 19:53:03 racoon: DEBUG: encryption(aes) Oct 23 19:53:03 racoon: DEBUG: hash(sha1) Oct 23 19:53:03 racoon: DEBUG: dba44c78 38113bd4 39e9a2d9 1523e00d 2f82121b Oct 23 19:53:03 racoon: DEBUG: phase1 last IV: Oct 23 19:53:03 racoon: DEBUG: compute IV for phase2 Oct 23 19:53:03 racoon: DEBUG: receive Information. Oct 23 19:53:03 racoon: DEBUG: 1877487b e5ce962f e303299b 781ada79 08100501 2f82121b 0000005c dd9ed5fd 0f83ba34 2d6abe16 0a141c48 762a650d c917a9ca bfe1b16a 3e17241c 748003bf 0c81e66d 488b1426 51eb2688 f181b5f9 3633ae86 adabc222 eebdeed5 Oct 23 19:53:03 racoon: DEBUG: 92 bytes message received from 72.BBB.BBB.BBB[500] to 201.CCC.CCC.CCC[500] Oct 23 19:53:03 racoon: DEBUG: === Oct 23 19:53:02 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: rescheduling send_r_u (5). Oct 23 19:53:02 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: DPD R-U-There sent (0) Oct 23 19:53:02 racoon: DEBUG: IV freed Oct 23 19:53:02 racoon: DEBUG: sendto Information notify. Oct 23 19:53:02 racoon: DEBUG: 1877487b e5ce962f e303299b 781ada79 08100501 d99ecc67 0000005c ebaa7149 74d829f0 af0dba8e d99bca08 9b3ccc20 d08997ad 04db3d0d fd3e132d cf201545 46bb0510 44122ffd a37b580c 0abf043d 947bde17 9ff70937 400b2907 Oct 23 19:53:02 racoon: DEBUG: 1 times of 92 bytes message will be sent to 72.BBB.BBB.BBB[500] Oct 23 19:53:02 racoon: DEBUG: send packet to 72.BBB.BBB.BBB[500] Oct 23 19:53:02 racoon: DEBUG: send packet from 201.CCC.CCC.CCC[500] Oct 23 19:53:02 racoon: DEBUG: sockname 201.CCC.CCC.CCC[500] Oct 23 19:53:02 racoon: DEBUG: 92 bytes from 201.CCC.CCC.CCC[500] to 72.BBB.BBB.BBB[500] Oct 23 19:53:02 racoon: DEBUG: encrypted. Oct 23 19:53:02 racoon: DEBUG: 0abf043d 947bde17 9ff70937 400b2907 Oct 23 19:53:02 racoon: DEBUG: save IV for next: Oct 23 19:53:02 racoon: DEBUG: 45f2da43 db8cd16d 1a294913 3d156402 Oct 23 19:53:02 racoon: DEBUG: encrypted payload by IV: Oct 23 19:53:02 racoon: DEBUG: 29a2080a 7aafd968 94792600 e5b69a06 Oct 23 19:53:02 racoon: DEBUG: with key: Oct 23 19:53:02 racoon: DEBUG: encryption(aes) Oct 23 19:53:02 racoon: DEBUG: 0b000018 b94b5170 b36f1c02 b7bd993b 64123923 dcd893cc 00000020 00000001 01108d28 1877487b e5ce962f e303299b 781ada79 00000cdc f5c2f8d2 de83e707 Oct 23 19:53:02 racoon: DEBUG: pad length = 8 Oct 23 19:53:02 racoon: DEBUG: encryption(aes) Oct 23 19:53:02 racoon: DEBUG: begin encryption. Oct 23 19:53:02 racoon: DEBUG: b94b5170 b36f1c02 b7bd993b 64123923 dcd893cc Oct 23 19:53:02 racoon: DEBUG: HASH computed: Oct 23 19:53:02 racoon: DEBUG: hmac(hmac_sha1) Oct 23 19:53:02 racoon: DEBUG: d99ecc67 00000020 00000001 01108d28 1877487b e5ce962f e303299b 781ada79 00000cdc Oct 23 19:53:02 racoon: DEBUG: HASH with: Oct 23 19:53:02 racoon: DEBUG: 45f2da43 db8cd16d 1a294913 3d156402 Oct 23 19:53:02 racoon: DEBUG: phase2 IV computed: Oct 23 19:53:02 racoon: DEBUG: encryption(aes) Oct 23 19:53:02 racoon: DEBUG: hash(sha1) Oct 23 19:53:02 racoon: DEBUG: dba44c78 38113bd4 39e9a2d9 1523e00d d99ecc67 Oct 23 19:53:02 racoon: DEBUG: phase1 last IV: Oct 23 19:53:02 racoon: DEBUG: compute IV for phase2 Oct 23 19:53:02 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: DPD monitoring.... Oct 23 19:53:01 racoon: [VPC2]: [72.AAA.AAA.AAA] ERROR: unknown Informational exchange received. Oct 23 19:53:01 racoon: DEBUG: f0444f67 a33089dc d0b0f015 23426223 08100501 2ccf9fd3 0000005c 53745688 77b9ac7f 3d2944f7 ae0d0f26 0256b6ba 45ab2f7b 0126bb32 0a813528 3c307371 be797809 ca1287ee 3ca0a383 7076bbcb a7358baf 12787eac fe849a9d Oct 23 19:53:01 racoon: DEBUG: 92 bytes message received from 72.AAA.AAA.AAA[500] to 201.CCC.CCC.CCC[500] Oct 23 19:53:01 racoon: DEBUG: === Oct 23 19:52:52 racoon: DEBUG: received an R-U-THERE-ACK Oct 23 19:52:52 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: DPD R-U-There-Ack received Oct 23 19:52:52 racoon: DEBUG: succeed. Oct 23 19:52:52 racoon: DEBUG: seen nptype=11(notify) Oct 23 19:52:52 racoon: DEBUG: seen nptype=8(hash) Oct 23 19:52:52 racoon: DEBUG: begin. Oct 23 19:52:52 racoon: DEBUG: hash validated. Oct 23 19:52:52 racoon: DEBUG: 46dec591 4871198e 8e6d54d4 5504e982 13d63d55 Oct 23 19:52:52 racoon: DEBUG: HASH computed: Oct 23 19:52:52 racoon: DEBUG: hmac(hmac_sha1) Oct 23 19:52:52 racoon: DEBUG: eb9674ff 00000020 00000001 01108d29 1877487b e5ce962f e303299b 781ada79 00000cdb Oct 23 19:52:52 racoon: DEBUG: HASH with: Oct 23 19:52:52 racoon: DEBUG: IV freed Oct 23 19:52:52 racoon: DEBUG: 1877487b e5ce962f e303299b 781ada79 08100501 eb9674ff 0000005c 0b000018 46dec591 4871198e 8e6d54d4 5504e982 13d63d55 00000020 00000001 01108d29 1877487b e5ce962f e303299b 781ada79 00000cdb 00000000 00000000 Oct 23 19:52:52 racoon: DEBUG: decrypted. Oct 23 19:52:52 racoon: DEBUG: skip to trim padding. Oct 23 19:52:52 racoon: DEBUG: padding len=1 Oct 23 19:52:52 racoon: DEBUG: 0b000018 46dec591 4871198e 8e6d54d4 5504e982 13d63d55 00000020 00000001 01108d29 1877487b e5ce962f e303299b 781ada79 00000cdb 00000000 00000000 Oct 23 19:52:52 racoon: DEBUG: decrypted payload, but not trimed. Oct 23 19:52:52 racoon: DEBUG: 831ef237 1a09bcc7 d847983a 38e34f1f Oct 23 19:52:52 racoon: DEBUG: decrypted payload by IV: Oct 23 19:52:52 racoon: DEBUG: 29a2080a 7aafd968 94792600 e5b69a06 Oct 23 19:52:52 racoon: DEBUG: with key: Oct 23 19:52:52 racoon: DEBUG: encryption(aes) Oct 23 19:52:52 racoon: DEBUG: 895a36d6 34085db1 c81f273d 9b2af905 Oct 23 19:52:52 racoon: DEBUG: IV was saved for next processing: Oct 23 19:52:52 racoon: DEBUG: encryption(aes) Oct 23 19:52:52 racoon: DEBUG: begin decryption. Oct 23 19:52:52 racoon: DEBUG: 831ef237 1a09bcc7 d847983a 38e34f1f Oct 23 19:52:52 racoon: DEBUG: phase2 IV computed: Oct 23 19:52:52 racoon: DEBUG: encryption(aes) Oct 23 19:52:52 racoon: DEBUG: hash(sha1) Oct 23 19:52:52 racoon: DEBUG: dba44c78 38113bd4 39e9a2d9 1523e00d eb9674ff Oct 23 19:52:52 racoon: DEBUG: phase1 last IV: Oct 23 19:52:52 racoon: DEBUG: compute IV for phase2 Oct 23 19:52:52 racoon: DEBUG: receive Information. Oct 23 19:52:52 racoon: DEBUG: 1877487b e5ce962f e303299b 781ada79 08100501 eb9674ff 0000005c d1044df5 dd917d99 8bb02264 9f2887a7 7cc59b89 b7d1737c 637eefbb ce45c3f0 10cdea25 2b5d30b0 0bf2365b 2d586f51 895a36d6 34085db1 c81f273d 9b2af905 Oct 23 19:52:52 racoon: DEBUG: 92 bytes message received from 72.BBB.BBB.BBB[500] to 201.CCC.CCC.CCC[500] Oct 23 19:52:52 racoon: DEBUG: === Oct 23 19:52:51 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: rescheduling send_r_u (5). Oct 23 19:52:51 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: DPD R-U-There sent (0) Oct 23 19:52:51 racoon: DEBUG: IV freed Oct 23 19:52:51 racoon: DEBUG: sendto Information notify. Oct 23 19:52:51 racoon: DEBUG: 1877487b e5ce962f e303299b 781ada79 08100501 eef9d26c 0000005c d4d714da 2920dc03 17773a10 422c4dd9 ceecf23c f90025db 3751c5bb 75e050f5 394333cd 5eb9fd66 ad786ad8 245d5a7c 3ad23f2e dfecf866 2f321e8d f86077a2 Oct 23 19:52:51 racoon: DEBUG: 1 times of 92 bytes message will be sent to 72.BBB.BBB.BBB[500] Oct 23 19:52:51 racoon: DEBUG: send packet to 72.BBB.BBB.BBB[500] Oct 23 19:52:51 racoon: DEBUG: send packet from 201.CCC.CCC.CCC[500] Oct 23 19:52:51 racoon: DEBUG: sockname 201.CCC.CCC.CCC[500] Oct 23 19:52:51 racoon: DEBUG: 92 bytes from 201.CCC.CCC.CCC[500] to 72.BBB.BBB.BBB[500] Oct 23 19:52:51 racoon: DEBUG: encrypted. Oct 23 19:52:51 racoon: DEBUG: 3ad23f2e dfecf866 2f321e8d f86077a2 Oct 23 19:52:51 racoon: DEBUG: save IV for next: Oct 23 19:52:51 racoon: DEBUG: fedb1759 d8dd1564 58aafe43 3235eaee Oct 23 19:52:51 racoon: DEBUG: encrypted payload by IV: Oct 23 19:52:51 racoon: DEBUG: 29a2080a 7aafd968 94792600 e5b69a06 Oct 23 19:52:51 racoon: DEBUG: with key: Oct 23 19:52:51 racoon: DEBUG: encryption(aes) Oct 23 19:52:51 racoon: DEBUG: 0b000018 44996923 cec37d0b 9ef09342 e64fdd0a 186f6498 00000020 00000001 01108d28 1877487b e5ce962f e303299b 781ada79 00000cdb f4efa8e1 d1b08407 Oct 23 19:52:51 racoon: DEBUG: pad length = 8 Oct 23 19:52:51 racoon: DEBUG: encryption(aes) Oct 23 19:52:51 racoon: DEBUG: begin encryption. Oct 23 19:52:51 racoon: DEBUG: 44996923 cec37d0b 9ef09342 e64fdd0a 186f6498 Oct 23 19:52:51 racoon: DEBUG: HASH computed: Oct 23 19:52:51 racoon: DEBUG: hmac(hmac_sha1) Oct 23 19:52:51 racoon: DEBUG: eef9d26c 00000020 00000001 01108d28 1877487b e5ce962f e303299b 781ada79 00000cdb Oct 23 19:52:51 racoon: DEBUG: HASH with: Oct 23 19:52:51 racoon: DEBUG: fedb1759 d8dd1564 58aafe43 3235eaee Oct 23 19:52:51 racoon: DEBUG: phase2 IV computed: Oct 23 19:52:51 racoon: DEBUG: encryption(aes) Oct 23 19:52:51 racoon: DEBUG: hash(sha1) Oct 23 19:52:51 racoon: DEBUG: dba44c78 38113bd4 39e9a2d9 1523e00d eef9d26c Oct 23 19:52:51 racoon: DEBUG: phase1 last IV: Oct 23 19:52:51 racoon: DEBUG: compute IV for phase2 Oct 23 19:52:51 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: DPD monitoring.... Oct 23 19:52:51 racoon: DEBUG: IV freed Oct 23 19:52:51 racoon: [VPC2]: INFO: ISAKMP-SA deleted 201.CCC.CCC.CCC[500]-72.AAA.AAA.AAA[500] spi:f0444f67a33089dc:d0b0f01523426223 Oct 23 19:52:51 racoon: INFO: purged ISAKMP-SA spi=f0444f67a33089dc:d0b0f01523426223. Oct 23 19:52:51 racoon: DEBUG: pk_recv: retry[0] recv() Oct 23 19:52:51 racoon: DEBUG: call pfkey_send_dump Oct 23 19:52:51 racoon: INFO: purging ISAKMP-SA spi=f0444f67a33089dc:d0b0f01523426223. Oct 23 19:52:51 racoon: [VPC2]: [72.AAA.AAA.AAA] INFO: DPD: remote (ISAKMP-SA spi=f0444f67a33089dc:d0b0f01523426223) seems to be dead. Oct 23 19:52:51 racoon: [VPC2]: [72.AAA.AAA.AAA] DEBUG: DPD monitoring.... Oct 23 19:52:46 racoon: [VPC2]: [72.AAA.AAA.AAA] DEBUG: rescheduling send_r_u (5). Oct 23 19:52:46 racoon: [VPC2]: [72.AAA.AAA.AAA] DEBUG: DPD R-U-There sent (0) Oct 23 19:52:46 racoon: DEBUG: IV freed Oct 23 19:52:46 racoon: DEBUG: sendto Information notify. Oct 23 19:52:46 racoon: DEBUG: f0444f67 a33089dc d0b0f015 23426223 08100501 b0dfea2f 0000005c 9bed912d 2de34d10 f79543f6 12d17e97 7814f732 9c1a0d1d a1f8ca53 47b709bf c87ca70c 95b2b3bb 2b0246dd 0cfe018c d6f66453 29293109 92535ad8 5442d1e5 Oct 23 19:52:46 racoon: DEBUG: 1 times of 92 bytes message will be sent to 72.AAA.AAA.AAA[500] Oct 23 19:52:46 racoon: DEBUG: send packet to 72.AAA.AAA.AAA[500] Oct 23 19:52:46 racoon: DEBUG: send packet from 201.CCC.CCC.CCC[500] Oct 23 19:52:46 racoon: DEBUG: sockname 201.CCC.CCC.CCC[500] Oct 23 19:52:46 racoon: DEBUG: 92 bytes from 201.CCC.CCC.CCC[500] to 72.AAA.AAA.AAA[500] Oct 23 19:52:46 racoon: DEBUG: encrypted. Oct 23 19:52:46 racoon: DEBUG: d6f66453 29293109 92535ad8 5442d1e5 Oct 23 19:52:46 racoon: DEBUG: save IV for next: Oct 23 19:52:46 racoon: DEBUG: 1d027e47 15e78206 354ec7e8 7cc29fee Oct 23 19:52:46 racoon: DEBUG: encrypted payload by IV: Oct 23 19:52:46 racoon: DEBUG: 2fa0935f 6621c205 ad14c787 ebecaf32 Oct 23 19:52:46 racoon: DEBUG: with key: Oct 23 19:52:46 racoon: DEBUG: encryption(aes) Oct 23 19:52:46 racoon: DEBUG: 0b000018 6fb83b54 b11ff276 a140c569 607b2e32 c974f46a 00000020 00000001 01108d28 f0444f67 a33089dc d0b0f015 23426223 00000af9 c784cfe4 85d1ca07 Oct 23 19:52:46 racoon: DEBUG: pad length = 8 Oct 23 19:52:46 racoon: DEBUG: encryption(aes) Oct 23 19:52:46 racoon: DEBUG: begin encryption. Oct 23 19:52:46 racoon: DEBUG: 6fb83b54 b11ff276 a140c569 607b2e32 c974f46a Oct 23 19:52:46 racoon: DEBUG: HASH computed: Oct 23 19:52:46 racoon: DEBUG: hmac(hmac_sha1) Oct 23 19:52:46 racoon: DEBUG: b0dfea2f 00000020 00000001 01108d28 f0444f67 a33089dc d0b0f015 23426223 00000af9 Oct 23 19:52:46 racoon: DEBUG: HASH with: Oct 23 19:52:46 racoon: DEBUG: 1d027e47 15e78206 354ec7e8 7cc29fee Oct 23 19:52:46 racoon: DEBUG: phase2 IV computed: Oct 23 19:52:46 racoon: DEBUG: encryption(aes) Oct 23 19:52:46 racoon: DEBUG: hash(sha1) Oct 23 19:52:46 racoon: DEBUG: c81b8b3c 5c6b8418 6dee3a92 51893a5c b0dfea2f Oct 23 19:52:46 racoon: DEBUG: phase1 last IV: Oct 23 19:52:46 racoon: DEBUG: compute IV for phase2 Oct 23 19:52:46 racoon: [VPC2]: [72.AAA.AAA.AAA] DEBUG: DPD monitoring.... Oct 23 19:52:41 racoon: DEBUG: received an R-U-THERE-ACK Oct 23 19:52:41 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: DPD R-U-There-Ack received Oct 23 19:52:41 racoon: DEBUG: succeed. Oct 23 19:52:41 racoon: DEBUG: seen nptype=11(notify) Oct 23 19:52:41 racoon: DEBUG: seen nptype=8(hash) Oct 23 19:52:41 racoon: DEBUG: begin. Oct 23 19:52:41 racoon: DEBUG: hash validated. Oct 23 19:52:41 racoon: DEBUG: b0836e06 8350abf6 c434e494 19b502da f8caf3d9 Oct 23 19:52:41 racoon: DEBUG: HASH computed: Oct 23 19:52:41 racoon: DEBUG: hmac(hmac_sha1) Oct 23 19:52:41 racoon: DEBUG: ce9b7193 00000020 00000001 01108d29 1877487b e5ce962f e303299b 781ada79 00000cda Oct 23 19:52:41 racoon: DEBUG: HASH with: Oct 23 19:52:41 racoon: DEBUG: IV freed Oct 23 19:52:41 racoon: DEBUG: 1877487b e5ce962f e303299b 781ada79 08100501 ce9b7193 0000005c 0b000018 b0836e06 8350abf6 c434e494 19b502da f8caf3d9 00000020 00000001 01108d29 1877487b e5ce962f e303299b 781ada79 00000cda 00000000 00000000 Oct 23 19:52:41 racoon: DEBUG: decrypted. Oct 23 19:52:41 racoon: DEBUG: skip to trim padding. Oct 23 19:52:41 racoon: DEBUG: padding len=1 Oct 23 19:52:41 racoon: DEBUG: 0b000018 b0836e06 8350abf6 c434e494 19b502da f8caf3d9 00000020 00000001 01108d29 1877487b e5ce962f e303299b 781ada79 00000cda 00000000 00000000 Oct 23 19:52:41 racoon: DEBUG: decrypted payload, but not trimed. Oct 23 19:52:41 racoon: DEBUG: e062f0ba 13a76ba3 1c34ffd8 1ac6c278 Oct 23 19:52:41 racoon: DEBUG: decrypted payload by IV: Oct 23 19:52:41 racoon: DEBUG: 29a2080a 7aafd968 94792600 e5b69a06 Oct 23 19:52:41 racoon: DEBUG: with key: Oct 23 19:52:41 racoon: DEBUG: encryption(aes) Oct 23 19:52:41 racoon: DEBUG: d3f4769e 9c007569 17603492 1d74c26b Oct 23 19:52:41 racoon: DEBUG: IV was saved for next processing: Oct 23 19:52:41 racoon: DEBUG: encryption(aes) Oct 23 19:52:41 racoon: DEBUG: begin decryption. Oct 23 19:52:41 racoon: DEBUG: e062f0ba 13a76ba3 1c34ffd8 1ac6c278 Oct 23 19:52:41 racoon: DEBUG: phase2 IV computed: Oct 23 19:52:41 racoon: DEBUG: encryption(aes) Oct 23 19:52:41 racoon: DEBUG: hash(sha1) Oct 23 19:52:41 racoon: DEBUG: dba44c78 38113bd4 39e9a2d9 1523e00d ce9b7193 Oct 23 19:52:41 racoon: DEBUG: phase1 last IV: Oct 23 19:52:41 racoon: DEBUG: compute IV for phase2 Oct 23 19:52:41 racoon: DEBUG: receive Information. Oct 23 19:52:41 racoon: DEBUG: 1877487b e5ce962f e303299b 781ada79 08100501 ce9b7193 0000005c 8586a2ac 110d80d3 ddec401b 44999e7d 20504929 6f77099b 62ca1b86 b4e822ac d0adb4a9 42871677 6af17487 59d22699 d3f4769e 9c007569 17603492 1d74c26b Oct 23 19:52:41 racoon: DEBUG: 92 bytes message received from 72.BBB.BBB.BBB[500] to 201.CCC.CCC.CCC[500] Oct 23 19:52:41 racoon: DEBUG: === Oct 23 19:52:41 racoon: [VPC2]: [72.AAA.AAA.AAA] DEBUG: rescheduling send_r_u (5). Oct 23 19:52:41 racoon: [VPC2]: [72.AAA.AAA.AAA] DEBUG: DPD R-U-There sent (0) Oct 23 19:52:41 racoon: DEBUG: IV freed Oct 23 19:52:41 racoon: DEBUG: sendto Information notify. Oct 23 19:52:41 racoon: DEBUG: f0444f67 a33089dc d0b0f015 23426223 08100501 f23518c7 0000005c 749241d8 d532eafe 263dc42f 5ae9889c d75cd7f2 0e5bd4da 1e3fd94c 297e6f74 548677de b8091fd6 844e0f3e 3ecc8b70 26975c96 a3a72fdd 14ac238c 897cf1b0 Oct 23 19:52:41 racoon: DEBUG: 1 times of 92 bytes message will be sent to 72.AAA.AAA.AAA[500] Oct 23 19:52:41 racoon: DEBUG: send packet to 72.AAA.AAA.AAA[500] Oct 23 19:52:41 racoon: DEBUG: send packet from 201.CCC.CCC.CCC[500] Oct 23 19:52:41 racoon: DEBUG: sockname 201.CCC.CCC.CCC[500] Oct 23 19:52:41 racoon: DEBUG: 92 bytes from 201.CCC.CCC.CCC[500] to 72.AAA.AAA.AAA[500] Oct 23 19:52:41 racoon: DEBUG: encrypted. Oct 23 19:52:41 racoon: DEBUG: 26975c96 a3a72fdd 14ac238c 897cf1b0 Oct 23 19:52:41 racoon: DEBUG: save IV for next: Oct 23 19:52:41 racoon: DEBUG: f82a8b6b 5ed100da 83d24655 63faa89c Oct 23 19:52:41 racoon: DEBUG: encrypted payload by IV: Oct 23 19:52:41 racoon: DEBUG: 2fa0935f 6621c205 ad14c787 ebecaf32 Oct 23 19:52:41 racoon: DEBUG: with key: Oct 23 19:52:41 racoon: DEBUG: encryption(aes) Oct 23 19:52:41 racoon: DEBUG: 0b000018 30a2cb90 7e67414c e9b25fbe b6788195 b45e3a60 00000020 00000001 01108d28 f0444f67 a33089dc d0b0f015 23426223 00000af8 819399b2 9ba28407 Oct 23 19:52:41 racoon: DEBUG: pad length = 8 Oct 23 19:52:41 racoon: DEBUG: encryption(aes) Oct 23 19:52:41 racoon: DEBUG: begin encryption. Oct 23 19:52:41 racoon: DEBUG: 30a2cb90 7e67414c e9b25fbe b6788195 b45e3a60 Oct 23 19:52:41 racoon: DEBUG: HASH computed: Oct 23 19:52:41 racoon: DEBUG: hmac(hmac_sha1) Oct 23 19:52:41 racoon: DEBUG: f23518c7 00000020 00000001 01108d28 f0444f67 a33089dc d0b0f015 23426223 00000af8 Oct 23 19:52:41 racoon: DEBUG: HASH with: Oct 23 19:52:41 racoon: DEBUG: f82a8b6b 5ed100da 83d24655 63faa89c Oct 23 19:52:41 racoon: DEBUG: phase2 IV computed: Oct 23 19:52:41 racoon: DEBUG: encryption(aes) Oct 23 19:52:41 racoon: DEBUG: hash(sha1) Oct 23 19:52:41 racoon: DEBUG: c81b8b3c 5c6b8418 6dee3a92 51893a5c f23518c7 Oct 23 19:52:41 racoon: DEBUG: phase1 last IV: Oct 23 19:52:41 racoon: DEBUG: compute IV for phase2 Oct 23 19:52:41 racoon: [VPC2]: [72.AAA.AAA.AAA] DEBUG: DPD monitoring.... Oct 23 19:52:41 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: rescheduling send_r_u (5). Oct 23 19:52:41 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: DPD R-U-There sent (0) Oct 23 19:52:41 racoon: DEBUG: IV freed Oct 23 19:52:41 racoon: DEBUG: sendto Information notify. Oct 23 19:52:41 racoon: DEBUG: 1877487b e5ce962f e303299b 781ada79 08100501 9ff1fdf9 0000005c b701ae24 82fbadb7 22cab95b 67166b80 7e3a08b6 93eb6029 dc81f95e 072a2f60 17550000 c3ba586a a2e62a10 88c95df6 cc710d90 3bd6c720 5bc82d6d 43cab141 Oct 23 19:52:41 racoon: DEBUG: 1 times of 92 bytes message will be sent to 72.BBB.BBB.BBB[500] Oct 23 19:52:41 racoon: DEBUG: send packet to 72.BBB.BBB.BBB[500] Oct 23 19:52:41 racoon: DEBUG: send packet from 201.CCC.CCC.CCC[500] Oct 23 19:52:41 racoon: DEBUG: sockname 201.CCC.CCC.CCC[500] Oct 23 19:52:41 racoon: DEBUG: 92 bytes from 201.CCC.CCC.CCC[500] to 72.BBB.BBB.BBB[500] Oct 23 19:52:41 racoon: DEBUG: encrypted. Oct 23 19:52:41 racoon: DEBUG: cc710d90 3bd6c720 5bc82d6d 43cab141 Oct 23 19:52:41 racoon: DEBUG: save IV for next: Oct 23 19:52:41 racoon: DEBUG: 1be098ee c7b6314b d54beefc 27ddaf82 Oct 23 19:52:41 racoon: DEBUG: encrypted payload by IV: Oct 23 19:52:41 racoon: DEBUG: 29a2080a 7aafd968 94792600 e5b69a06 Oct 23 19:52:41 racoon: DEBUG: with key: Oct 23 19:52:41 racoon: DEBUG: encryption(aes) Oct 23 19:52:41 racoon: DEBUG: 0b000018 cbd503b8 69657079 40488504 88144517 ea2125dc 00000020 00000001 01108d28 1877487b e5ce962f e303299b 781ada79 00000cda bfb7bdb6 87919c07 Oct 23 19:52:41 racoon: DEBUG: pad length = 8 Oct 23 19:52:41 racoon: DEBUG: encryption(aes) Oct 23 19:52:41 racoon: DEBUG: begin encryption. Oct 23 19:52:41 racoon: DEBUG: cbd503b8 69657079 40488504 88144517 ea2125dc Oct 23 19:52:41 racoon: DEBUG: HASH computed: Oct 23 19:52:41 racoon: DEBUG: hmac(hmac_sha1) Oct 23 19:52:41 racoon: DEBUG: 9ff1fdf9 00000020 00000001 01108d28 1877487b e5ce962f e303299b 781ada79 00000cda Oct 23 19:52:41 racoon: DEBUG: HASH with: Oct 23 19:52:41 racoon: DEBUG: 1be098ee c7b6314b d54beefc 27ddaf82 Oct 23 19:52:41 racoon: DEBUG: phase2 IV computed: Oct 23 19:52:41 racoon: DEBUG: encryption(aes) Oct 23 19:52:41 racoon: DEBUG: hash(sha1) Oct 23 19:52:41 racoon: DEBUG: dba44c78 38113bd4 39e9a2d9 1523e00d 9ff1fdf9 Oct 23 19:52:41 racoon: DEBUG: phase1 last IV: Oct 23 19:52:41 racoon: DEBUG: compute IV for phase2 Oct 23 19:52:41 racoon: [VPC1]: [72.BBB.BBB.BBB] DEBUG: DPD monitoring.... Oct 23 19:52:36 racoon: [VPC2]: [72.AAA.AAA.AAA] DEBUG: rescheduling send_r_u (5). Oct 23 19:52:36 racoon: [VPC2]: [72.AAA.AAA.AAA] DEBUG: DPD R-U-There sent (0) Oct 23 19:52:36 racoon: DEBUG: IV freed Oct 23 19:52:36 racoon: DEBUG: sendto Information notify. Oct 23 19:52:36 racoon: DEBUG: f0444f67 a33089dc d0b0f015 23426223 08100501 9f5fa70f 0000005c d5151b41 5f159c49 1c560cd6 5d2c5d72 dfa1f612 1ceb47ec 5235238a c688734a f79ec79d cb21c508 f1f36849 78e07c42 a475ce95 f493efdc d7404703 5a31ac59 Oct 23 19:52:36 racoon: DEBUG: 1 times of 92 bytes message will be sent to 72.AAA.AAA.AAA[500] Oct 23 19:52:36 racoon: DEBUG: send packet to 72.AAA.AAA.AAA[500] Oct 23 19:52:36 racoon: DEBUG: send packet from 201.CCC.CCC.CCC[500] Oct 23 19:52:36 racoon: DEBUG: sockname 201.CCC.CCC.CCC[500] Oct 23 19:52:36 racoon: DEBUG: 92 bytes from 201.CCC.CCC.CCC[500] to 72.AAA.AAA.AAA[500] -
gustavo.avila,
Enmascaré tus IPs públicas… No deben postearse datos sensibles.
Me llama la atención que tienes dos IPs distintas que empiezan por 72.
Google vpc site:pfsense.org
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.