AtheerISR#
*Nov 30 14:02:31.345: ISAKMP-PAK: (0):received packet from 37.104.23.38 dport 500 sport 500 Global (N) NEW SA
*Nov 30 14:02:31.345: ISAKMP: (0):Created a peer struct for 37.104.23.38, peer port 500
*Nov 30 14:02:31.345: ISAKMP: (0):New peer created peer = 0x80007FA2FDDD8A60 peer_handle = 0x8000000040000023
*Nov 30 14:02:31.345: ISAKMP: (0):Locking peer struct 0x80007FA2FDDD8A60, refcount 1 for crypto_isakmp_process_block
*Nov 30 14:02:31.346: ISAKMP: (0):local port 500, remote port 500
*Nov 30 14:02:31.346: ISAKMP: (0):Find a dup sa in the avl tree during calling isadb_insert sa = 80007FA30BF1B060
*Nov 30 14:02:31.346: ISAKMP: (0):Input = IKE_MESG_FROM_PEER, IKE_MM_EXCH
*Nov 30 14:02:31.346: ISAKMP: (0):Old State = IKE_READY  New State = IKE_R_MM1

*Nov 30 14:02:31.346: ISAKMP: (0):processing SA payload. message ID = 0
*Nov 30 14:02:31.346: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.346: ISAKMP: (0):processing IKE frag vendor id payload
*Nov 30 14:02:31.347: ISAKMP: (0):Support for IKE Fragmentation not enabled
*Nov 30 14:02:31.347: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.347: ISAKMP: (0):processing IKE frag vendor id payload
*Nov 30 14:02:31.347: ISAKMP: (0):Support for IKE Fragmentation not enabled
*Nov 30 14:02:31.347: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.347: ISAKMP: (0):vendor ID seems Unity/DPD but major 69 mismatch
*Nov 30 14:02:31.347: ISAKMP: (0):vendor ID is NAT-T RFC 3947
*Nov 30 14:02:31.347: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.347: ISAKMP: (0):vendor ID seems Unity/DPD but major 123 mismatch
*Nov 30 14:02:31.347: ISAKMP: (0):vendor ID is NAT-T v2
*Nov 30 14:02:31.347: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.347: ISAKMP: (0):vendor ID seems Unity/DPD but major 194 mismatch
*Nov 30 14:02:31.348: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.348: ISAKMP: (0):vendor ID seems Unity/DPD but major 241 mismatch
*Nov 30 14:02:31.348: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.348: ISAKMP: (0):vendor ID seems Unity/DPD but major 184 mismatch
*Nov 30 14:02:31.348: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.348: ISAKMP: (0):vendor ID seems Unity/DPD but major 134 mismatch
*Nov 30 14:02:31.348: ISAKMP: (0):found peer pre-shared key matching 37.104.23.38
*Nov 30 14:02:31.348: ISAKMP: (0):local preshared key found
*Nov 30 14:02:31.348: ISAKMP: (0):Scanning profiles for xauth ...
*Nov 30 14:02:31.348: ISAKMP: (0):Checking ISAKMP transform 1 against priority 10 policy
*Nov 30 14:02:31.348: ISAKMP: (0):      encryption AES-CBC
*Nov 30 14:02:31.348: ISAKMP: (0):      keylength of 256
*Nov 30 14:02:31.348: ISAKMP: (0):      hash SHA
*Nov 30 14:02:31.348: ISAKMP: (0):      default group 20
*Nov 30 14:02:31.348: ISAKMP: (0):      auth pre-share
*Nov 30 14:02:31.348: ISAKMP: (0):      life type in seconds
*Nov 30 14:02:31.348: ISAKMP:      life duration (VPI) of  0x0 0x0 0x70 0x80
*Nov 30 14:02:31.349: ISAKMP-ERROR: (0):Encryption algorithm offered does not match policy!
*Nov 30 14:02:31.349: ISAKMP-ERROR: (0):atts are not acceptable. Next payload is 3
*Nov 30 14:02:31.349: ISAKMP: (0):Checking ISAKMP transform 2 against priority 10 policy
*Nov 30 14:02:31.349: ISAKMP: (0):      encryption AES-CBC
*Nov 30 14:02:31.349: ISAKMP: (0):      keylength of 128
*Nov 30 14:02:31.349: ISAKMP: (0):      hash SHA
*Nov 30 14:02:31.349: ISAKMP: (0):      default group 19
*Nov 30 14:02:31.349: ISAKMP: (0):      auth pre-share
*Nov 30 14:02:31.349: ISAKMP: (0):      life type in seconds
*Nov 30 14:02:31.349: ISAKMP:      life duration (VPI) of  0x0 0x0 0x70 0x80
*Nov 30 14:02:31.349: ISAKMP-ERROR: (0):Encryption algorithm offered does not match policy!
*Nov 30 14:02:31.349: ISAKMP-ERROR: (0):atts are not acceptable. Next payload is 3
*Nov 30 14:02:31.349: ISAKMP: (0):Checking ISAKMP transform 3 against priority 10 policy
*Nov 30 14:02:31.349: ISAKMP: (0):      encryption AES-CBC
*Nov 30 14:02:31.349: ISAKMP: (0):      keylength of 256
*Nov 30 14:02:31.
AtheerISR#349: ISAKMP: (0):      hash SHA
*Nov 30 14:02:31.349: ISAKMP: (0):      default group 14
*Nov 30 14:02:31.349: ISAKMP: (0):      auth pre-share
*Nov 30 14:02:31.349: ISAKMP: (0):      life type in seconds
*Nov 30 14:02:31.350: ISAKMP:      life duration (VPI) of  0x0 0x0 0x70 0x80
*Nov 30 14:02:31.350: ISAKMP-ERROR: (0):Encryption algorithm offered does not match policy!
*Nov 30 14:02:31.350: ISAKMP-ERROR: (0):atts are not acceptable. Next payload is 3
*Nov 30 14:02:31.350: ISAKMP: (0):Checking ISAKMP transform 4 against priority 10 policy
*Nov 30 14:02:31.350: ISAKMP: (0):      encryption 3DES-CBC
*Nov 30 14:02:31.350: ISAKMP: (0):      hash SHA
*Nov 30 14:02:31.350: ISAKMP: (0):      default group 14
*Nov 30 14:02:31.350: ISAKMP: (0):      auth pre-share
*Nov 30 14:02:31.350: ISAKMP: (0):      life type in seconds
*Nov 30 14:02:31.350: ISAKMP:      life duration (VPI) of  0x0 0x0 0x70 0x80
*Nov 30 14:02:31.350: ISAKMP-ERROR: (0):Diffie-Hellman group offered does not match policy!
*Nov 30 14:02:31.350: ISAKMP-ERROR: (0):atts are not acceptable. Next payload is 3
*Nov 30 14:02:31.350: ISAKMP: (0):Checking ISAKMP transform 5 against priority 10 policy
*Nov 30 14:02:31.350: ISAKMP: (0):      encryption 3DES-CBC
*Nov 30 14:02:31.350: ISAKMP: (0):      hash SHA
*Nov 30 14:02:31.350: ISAKMP: (0):      default group 2
*Nov 30 14:02:31.350: ISAKMP: (0):      auth pre-share
*Nov 30 14:02:31.350: ISAKMP: (0):      life type in seconds
*Nov 30 14:02:31.350: ISAKMP:      life duration (VPI) of  0x0 0x0 0x70 0x80
*Nov 30 14:02:31.350: ISAKMP: (0):atts are acceptable. Next payload is 0
*Nov 30 14:02:31.350: ISAKMP: (0):Acceptable atts:actual life: 3600
*Nov 30 14:02:31.351: ISAKMP: (0):Acceptable atts:life: 0
*Nov 30 14:02:31.351: ISAKMP: (0):Fill atts in sa vpi_length:4
*Nov 30 14:02:31.351: ISAKMP: (0):Fill atts in sa life_in_seconds:28800
*Nov 30 14:02:31.351: ISAKMP: (0):Returning Actual lifetime: 3600
*Nov 30 14:02:31.351: ISAKMP: (0):Started lifetime timer: 3600.

*Nov 30 14:02:31.351: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.351: ISAKMP: (0):processing IKE frag vendor id payload
*Nov 30 14:02:31.351: ISAKMP: (0):Support for IKE Fragmentation not enabled
*Nov 30 14:02:31.351: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.351: ISAKMP: (0):processing IKE frag vendor id payload
*Nov 30 14:02:31.351: ISAKMP: (0):Support for IKE Fragmentation not enabled
*Nov 30 14:02:31.351: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.351: ISAKMP: (0):vendor ID seems Unity/DPD but major 69 mismatch
*Nov 30 14:02:31.351: ISAKMP: (0):vendor ID is NAT-T RFC 3947
*Nov 30 14:02:31.351: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.351: ISAKMP: (0):vendor ID seems Unity/DPD but major 123 mismatch
*Nov 30 14:02:31.351: ISAKMP: (0):vendor ID is NAT-T v2
*Nov 30 14:02:31.351: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.351: ISAKMP: (0):vendor ID seems Unity/DPD but major 194 mismatch
*Nov 30 14:02:31.352: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.352: ISAKMP: (0):vendor ID seems Unity/DPD but major 241 mismatch
*Nov 30 14:02:31.352: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.352: ISAKMP: (0):vendor ID seems Unity/DPD but major 184 mismatch
*Nov 30 14:02:31.352: ISAKMP: (0):processing vendor id payload
*Nov 30 14:02:31.352: ISAKMP: (0):vendor ID seems Unity/DPD but major 134 mismatch
*Nov 30 14:02:31.352: ISAKMP: (0):Input = IKE_MESG_INTERNAL, IKE_PROCESS_MAIN_MODE
*Nov 30 14:02:31.352: ISAKMP: (0):Old State = IKE_R_MM1  New State = IKE_R_MM1

*Nov 30 14:02:31.353: ISAKMP: (0):constructed NAT-T vendor-rfc3947 ID
*Nov 30 14:02:31.353: ISAKMP-PAK: (0):sending packet to 37.104.23.38 my_port 500 peer_port 500 (R) MM_SA_SETUP
*Nov 30 14:02:31.353: ISAKMP: (0):Sending an IKE IPv4 Packet.
*Nov 30 14:02:31.353: ISAKMP: (0):Input = IKE_MESG_INTERNAL, IKE_PROCESS_COMPLETE
*Nov 30 14:02:31.353: ISAKMP: (0):Old State = IKE_R_MM1  New State = IKE_R_MM2

*Nov 30 14:02:31.362: ISAKMP-PAK: (0):received packet f
AtheerISR#rom 37.104.23.38 dport 500 sport 500 Global (R) MM_SA_SETUP
*Nov 30 14:02:31.362: ISAKMP: (0):Input = IKE_MESG_FROM_PEER, IKE_MM_EXCH
*Nov 30 14:02:31.362: ISAKMP: (0):Old State = IKE_R_MM2  New State = IKE_R_MM3

*Nov 30 14:02:31.363: ISAKMP: (0):processing KE payload. message ID = 0
*Nov 30 14:02:31.367: ISAKMP: (0):processing NONCE payload. message ID = 0
*Nov 30 14:02:31.367: ISAKMP: (0):found peer pre-shared key matching 37.104.23.38
*Nov 30 14:02:31.367: ISAKMP: (1026):received payload type 20
*Nov 30 14:02:31.367: ISAKMP: (1026):His hash no match - this node outside NAT
*Nov 30 14:02:31.367: ISAKMP: (1026):received payload type 20
*Nov 30 14:02:31.368: ISAKMP: (1026):His hash no match - this node outside NAT
*Nov 30 14:02:31.368: ISAKMP: (1026):Input = IKE_MESG_INTERNAL, IKE_PROCESS_MAIN_MODE
*Nov 30 14:02:31.368: ISAKMP: (1
AtheerISR#026):Old State = IKE_R_MM3  New State = IKE_R_MM3

*Nov 30 14:02:31.368: ISAKMP-PAK: (1026):sending packet to 37.104.23.38 my_port 500 peer_port 500 (R) MM_KEY_EXCH
*Nov 30 14:02:31.368: ISAKMP: (1026):Sending an IKE IPv4 Packet.
*Nov 30 14:02:31.368: ISAKMP: (1026):Input = IKE_MESG_INTERNAL, IKE_PROCESS_COMPLETE
*Nov 30 14:02:31.369: ISAKMP: (1026):Old State = IKE_R_MM3  New State = IKE_R_MM4

*Nov 30 14:02:31.377: ISAKMP-PAK: (1026):received packet from 37.104.23.38 dport 4500 sport 4500 Global (R) MM_KEY_EXCH
*Nov 30 14:02:31.377: ISAKMP: (1026):Input = IKE_MESG_FROM_PEER, IKE_MM_EXCH
*Nov 30 14:02:31.377: ISAKMP: (1026):Old State = IKE_R_MM4  New State = IKE_R_MM5

*Nov 30 14:02:31.377: ISAKMP: (1026):processing ID payload. message ID = 0
*Nov 30 14:02:31.377: ISAKMP: (1026):ID payload
        next-payload : 8
        type         : 1
*Nov 30 14:0
AtheerISR#2:31.377: ISAKMP: (1026):     address      : 192.168.3.85
*Nov 30 14:02:31.377: ISAKMP: (1026):   protocol     : 0
        port         : 0
        length       : 12
*Nov 30 14:02:31.378: ISAKMP: (0):peer matches *none* of the profiles
*Nov 30 14:02:31.378: ISAKMP: (1026):processing HASH payload. message ID = 0
*Nov 30 14:02:31.378: ISAKMP: (1026):SA authentication status:
        authenticated
*Nov 30 14:02:31.378: ISAKMP: (1026):SA has been authenticated with 37.104.23.38
*Nov 30 14:02:31.378: ISAKMP: (1026):Detected port floating to port = 4500
*Nov 30 14:02:31.378: ISAKMP: (0):Trying to insert a peer 51.211.161.247/37.104.23.38/4500/,
*Nov 30 14:02:31.378: ISAKMP: (0): and found existing one 80007FA2FA8DFA00 to reuse, free 80007FA2FDDD8A60
*Nov 30 14:02:31.379: ISAKMP: (0):Unlocking peer struct 0x80007FA2FDDD8A60 Reuse existing peer, count 0
*Nov 30 14:02:31.379:
AtheerISR# ISAKMP: (0):Deleting peer node by peer_reap for 37.104.23.38: 80007FA2FDDD8A60
*Nov 30 14:02:31.380: ISAKMP: (0):Locking peer struct 0x80007FA2FA8DFA00, refcount 5 for Reuse existing peer
*Nov 30 14:02:31.380: ISAKMP: (1026):Input = IKE_MESG_INTERNAL, IKE_PROCESS_MAIN_MODE
*Nov 30 14:02:31.380: ISAKMP: (1026):Old State = IKE_R_MM5  New State = IKE_R_MM5

*Nov 30 14:02:31.381: ISAKMP: (1026):SA is doing
*Nov 30 14:02:31.381: ISAKMP: (1026):pre-shared key authentication using id type ID_IPV4_ADDR
*Nov 30 14:02:31.381: ISAKMP: (1026):ID payload
        next-payload : 8
        type         : 1
*Nov 30 14:02:31.381: ISAKMP: (1026):   address      : 51.211.161.247
*Nov 30 14:02:31.381: ISAKMP: (1026):   protocol     : 17
        port         : 0
        length       : 12
*Nov 30 14:02:31.381: ISAKMP: (1026):Total payload length: 12
*Nov 30 14:02:31.381: IS
AtheerISR#AKMP-PAK: (1026):sending packet to 37.104.23.38 my_port 4500 peer_port 4500 (R) MM_KEY_EXCH
*Nov 30 14:02:31.381: ISAKMP: (1026):Sending an IKE IPv4 Packet.
*Nov 30 14:02:31.382: ISAKMP: (1026):Returning Actual lifetime: 3600
*Nov 30 14:02:31.382: ISAKMP: (1026):set new node 1273479715 to QM_IDLE
*Nov 30 14:02:31.382: ISAKMP: (1026):Sending NOTIFY RESPONDER_LIFETIME protocol 1
        spi 9223512374989346416, message ID = 1273479715
*Nov 30 14:02:31.382: ISAKMP-PAK: (1026):sending packet to 37.104.23.38 my_port 4500 peer_port 4500 (R) MM_KEY_EXCH
*Nov 30 14:02:31.382: ISAKMP: (1026):Sending an IKE IPv4 Packet.
*Nov 30 14:02:31.382: ISAKMP: (1026):purging node 1273479715
*Nov 30 14:02:31.382: ISAKMP: (1026):Sending phase 1 responder lifetime 3600

*Nov 30 14:02:31.382: ISAKMP: (1026):Input = IKE_MESG_INTERNAL, IKE_PROCESS_COMPLETE
*Nov 30 14:02:3
AtheerISR#1.382: ISAKMP: (1026):Old State = IKE_R_MM5  New State = IKE_R_MM5

*Nov 30 14:02:31.383: ISAKMP: (1026):Input = IKE_MESG_INTERNAL, IKE_FETCH_USER_ATTR
*Nov 30 14:02:31.383: ISAKMP: (1026):Old State = IKE_R_MM5  New State = IKE_P1_COMPLETE

*Nov 30 14:02:31.383: ISAKMP: (1026):Input = IKE_MESG_INTERNAL, IKE_PHASE1_COMPLETE
*Nov 30 14:02:31.383: ISAKMP: (1026):Old State = IKE_P1_COMPLETE  New State = IKE_P1_COMPLETE

*Nov 30 14:02:31.390: ISAKMP-PAK: (1026):received packet from 37.104.23.38 dport 4500 sport 4500 Global (R) QM_IDLE
*Nov 30 14:02:31.390: ISAKMP: (1026):set new node 1 to QM_IDLE
*Nov 30 14:02:31.390: ISAKMP: (1026):processing HASH payload. message ID = 1
*Nov 30 14:02:31.390: ISAKMP: (1026):processing SA payload. message ID = 1
*Nov 30 14:02:31.391: ISAKMP: (1026):processing NAT-OAi payload. addr = 19
AtheerISR#2.168.3.85, message ID = 1
*Nov 30 14:02:31.391: ISAKMP: (1026):processing NAT-OAr payload. addr = 51.211.161.247, message ID = 1
*Nov 30 14:02:31.391: ISAKMP: (1026):Checking IPSec proposal 1
*Nov 30 14:02:31.391: ISAKMP: (1026):transform 1, ESP_AES
*Nov 30 14:02:31.391: ISAKMP: (1026):   attributes in transform:
*Nov 30 14:02:31.391: ISAKMP: (1026):      encaps is 4 (Transport-UDP)
*Nov 30 14:02:31.391: ISAKMP: (1026):      key length is 128
*Nov 30 14:02:31.391: ISAKMP: (1026):      authenticator is HMAC-SHA
*Nov 30 14:02:31.391: ISAKMP: (1026):      SA life type in seconds
*Nov 30 14:02:31.391: ISAKMP:      SA life duration (VPI) of  0x0 0x0 0xE 0x10
*Nov 30 14:02:31.391: ISAKMP: (1026):      SA life type in kilobytes
*Nov 30 14:02:31.391: ISAKMP:      SA life duration (VPI) of  0x0 0x3 0xD0 0x90
*Nov 30 14:02:31.391: ISAKMP: (1026):atts
AtheerISR# are acceptable.
*Nov 30 14:02:31.391: IPSEC(validate_proposal_request): proposal part #1
*Nov 30 14:02:31.391: IPSEC(validate_proposal_request): proposal part #1,
  (key eng. msg.) INBOUND local= 51.211.161.247:0, remote= 37.104.23.38:0,
    local_proxy= 51.211.161.247/255.255.255.255/17/1701,
    remote_proxy= 37.104.23.38/255.255.255.255/17/1701,
    protocol= ESP, transform= esp-aes esp-sha-hmac  (Transport-UDP), esn= FALSE,
    lifedur= 0s and 0kb,
    spi= 0x0(0), conn_id= 0, keysize= 128, flags= 0x0
*Nov 30 14:02:31.392: IPSEC(ipsec_process_proposal): invalid transform proposal received:
    {esp-aes esp-sha-hmac }
*Nov 30 14:02:31.392: ISAKMP-ERROR: (1026):IPSec policy invalidated proposal with error 256
*Nov 30 14:02:31.393: ISAKMP: (1026):Checking IPSec proposal 2
*Nov 30 14:02:31.393: ISAKMP: (1026):transform 1, ESP_3DES
*Nov 30
AtheerISR#14:02:31.393: ISAKMP: (1026):   attributes in transform:
*Nov 30 14:02:31.393: ISAKMP: (1026):      encaps is 4 (Transport-UDP)
*Nov 30 14:02:31.393: ISAKMP: (1026):      authenticator is HMAC-SHA
*Nov 30 14:02:31.393: ISAKMP: (1026):      SA life type in seconds
*Nov 30 14:02:31.393: ISAKMP:      SA life duration (VPI) of  0x0 0x0 0xE 0x10
*Nov 30 14:02:31.393: ISAKMP: (1026):      SA life type in kilobytes
*Nov 30 14:02:31.393: ISAKMP:      SA life duration (VPI) of  0x0 0x3 0xD0 0x90
*Nov 30 14:02:31.394: ISAKMP: (1026):atts are acceptable.
*Nov 30 14:02:31.394: IPSEC(validate_proposal_request): proposal part #1
*Nov 30 14:02:31.394: IPSEC(validate_proposal_request): proposal part #1,
  (key eng. msg.) INBOUND local= 51.211.161.247:0, remote= 37.104.23.38:0,
    local_proxy= 51.211.161.247/255.255.255.255/17/1701,
    remot
AtheerISR#e_proxy= 37.104.23.38/255.255.255.255/17/1701,
    protocol= ESP, transform= esp-3des esp-sha-hmac  (Transport-UDP), esn= FALSE,
    lifedur= 0s and 0kb,
    spi= 0x0(0), conn_id= 0, keysize= 0, flags= 0x0
*Nov 30 14:02:31.394: (ipsec_process_proposal)Map Accepted: ipnet-map, 10
*Nov 30 14:02:31.394: ISAKMP: (1026):processing NONCE payload. message ID = 1
*Nov 30 14:02:31.394: ISAKMP: (1026):processing ID payload. message ID = 1
*Nov 30 14:02:31.394: ISAKMP: (1026):processing ID payload. message ID = 1
*Nov 30 14:02:31.395: ISAKMP: (1026):received payload type 21
*Nov 30 14:02:31.395: ISAKMP: (1026):received payload type 21
*Nov 30 14:02:31.395: ISAKMP: (1026):QM Responder gets spi
*Nov 30 14:02:31.395: ISAKMP: (1026):Node 1, Input = IKE_MESG_FROM_PEER, IKE_QM_EXCH
*Nov 30 14:02:31.395: ISAKMP: (1026):Old State = IKE_QM_READY  New State = IKE_
AtheerISR#QM_SPI_STARVE
*Nov 30 14:02:31.395: ISAKMP: (1026):Node 1, Input = IKE_MESG_INTERNAL, IKE_GOT_SPI
*Nov 30 14:02:31.395: ISAKMP: (1026):Old State = IKE_QM_SPI_STARVE  New State = IKE_QM_IPSEC_INSTALL_AWAIT
*Nov 30 14:02:31.395: IPSEC(key_engine): got a queue event with 1 KMI message(s)
*Nov 30 14:02:31.396: IPSEC(crypto_ipsec_create_ipsec_sas): Map found ipnet-map, 10
*Nov 30 14:02:31.397: IPSEC(create_sa): sa created,
  (sa) sa_dest= 51.211.161.247, sa_proto= 50,
    sa_spi= 0x51B7473C(1370965820),
    sa_trans= esp-3des esp-sha-hmac , sa_conn_id= 2049
    sa_lifetime(k/sec)= (250000/3600),
  (identity) local= 51.211.161.247:0, remote= 37.104.23.38:0,
    local_proxy= 51.211.161.247/255.255.255.255/17/1701,
    remote_proxy= 37.104.23.38/255.255.255.255/17/4500
*Nov 30 14:02:31.397: ipsec_out_sa_hash_idx: sa=0x7FA304AA0C90, hash_idx=628, por
AtheerISR#t=4500/4500, addr=0x33D3A1F7/0x25681726
*Nov 30 14:02:31.397: crypto_ipsec_hook_out_sa: ipsec_out_sa_hash_array[628]=0x7FA304AA0C90
*Nov 30 14:02:31.397: IPSEC(create_sa): sa created,
  (sa) sa_dest= 37.104.23.38, sa_proto= 50,
    sa_spi= 0xB8BA5AA(193701290),
    sa_trans= esp-3des esp-sha-hmac , sa_conn_id= 2050
    sa_lifetime(k/sec)= (250000/3600),
  (identity) local= 51.211.161.247:0, remote= 37.104.23.38:0,
    local_proxy= 51.211.161.247/255.255.255.255/17/1701,
    remote_proxy= 37.104.23.38/255.255.255.255/17/4500
*Nov 30 14:02:31.400: ISAKMP-ERROR: (0):Failed to find peer index node to update peer_info_list
*Nov 30 14:02:31.401: IPSEC(rte_mgr): VPN Route Event Install new outbound sa: Static keyword or dynamic SA create for 37.104.23.38
*Nov 30 14:02:31.401: ISAKMP: (1026):Received IPSec Install callback... proceedi
AtheerISR#ng with the negotiation
*Nov 30 14:02:31.401: ISAKMP: (1026):Successfully installed IPSEC SA (SPI:0x51B7473C) on GigabitEthernet0/0/0
*Nov 30 14:02:31.401: ISAKMP-PAK: (1026):sending packet to 37.104.23.38 my_port 4500 peer_port 4500 (R) QM_IDLE
*Nov 30 14:02:31.401: ISAKMP: (1026):Sending an IKE IPv4 Packet.
*Nov 30 14:02:31.401: ISAKMP: (1026):Node 1, Input = IKE_MESG_FROM_IPSEC, IPSEC_INSTALL_DONE
*Nov 30 14:02:31.402: ISAKMP: (1026):Old State = IKE_QM_IPSEC_INSTALL_AWAIT  New State = IKE_QM_R_QM2
*Nov 30 14:02:31.409: ISAKMP-PAK: (1026):received packet from 37.104.23.38 dport 4500 sport 4500 Global (R) QM_IDLE
*Nov 30 14:02:31.409: ISAKMP: (1026):deleting node 1 error FALSE reason "QM done (await)"
*Nov 30 14:02:31.409: ISAKMP: (1026):Node 1, Input = IKE_MESG_FROM_PEER, IKE_QM_EXCH
*Nov 30 14:02:31.409: ISAKMP: (1026):Old State = I
AtheerISR#KE_QM_R_QM2  New State = IKE_QM_PHASE2_COMPLETE
*Nov 30 14:02:31.409: IPSEC(key_engine): got a queue event with 1 KMI message(s)
*Nov 30 14:02:31.409: IPSEC(key_engine_enable_outbound): rec'd enable notify from ISAKMP
*Nov 30 14:02:31.409: IPSEC(update_current_outbound_sa): updated peer 37.104.23.38 current outbound sa to SPI B8BA5AA
*Nov 30 14:02:32.432: PPP: Alloc Context [7FA2FFF29B90]
*Nov 30 14:02:32.432: ppp20 PPP: Phase is ESTABLISHING
*Nov 30 14:02:32.432: ppp20 PPP: Using vpn set call direction
*Nov 30 14:02:32.432: ppp20 PPP: Treating connection as a callin
*Nov 30 14:02:32.432: ppp20 PPP: Session handle[2C000014] Session id[20]
*Nov 30 14:02:32.432: ppp20 LCP: Event[OPEN] State[Initial to Starting]
*Nov 30 14:02:32.432: ppp20 PPP LCP: Enter passive mode, state[Stopped]
*Nov 30 14:02:32.441: ppp20 LCP: I CONFREQ [Stoppe
AtheerISR#d] id 0 len 21
*Nov 30 14:02:32.441: ppp20 LCP:    MRU 1400 (0x01040578)
*Nov 30 14:02:32.441: ppp20 LCP:    MagicNumber 0x782C64FE (0x0506782C64FE)
*Nov 30 14:02:32.441: ppp20 LCP:    PFC (0x0702)
*Nov 30 14:02:32.441: ppp20 LCP:    ACFC (0x0802)
*Nov 30 14:02:32.441: ppp20 LCP:    Callback 6 (0x0D0306)
*Nov 30 14:02:32.441: ppp20 LCP: O CONFREQ [Stopped] id 1 len 15
*Nov 30 14:02:32.441: ppp20 LCP:    AuthProto MS-CHAP-V2 (0x0305C22381)
*Nov 30 14:02:32.441: ppp20 LCP:    MagicNumber 0x9D82C167 (0x05069D82C167)
*Nov 30 14:02:32.442: ppp20 LCP: O CONFREJ [Stopped] id 0 len 7
*Nov 30 14:02:32.442: ppp20 LCP:    Callback 6 (0x0D0306)
*Nov 30 14:02:32.442: ppp20 LCP: Event[Receive ConfReq-] State[Stopped to REQsent]
*Nov 30 14:02:32.450: ppp20 LCP: I CONFACK [REQsent] id 1 len 15
*Nov 30 14:02:32.450: ppp20 LCP:    AuthProto MS-CHAP-V2 (0x0305C2
AtheerISR#2381)
*Nov 30 14:02:32.450: ppp20 LCP:    MagicNumber 0x9D82C167 (0x05069D82C167)
*Nov 30 14:02:32.450: ppp20 LCP: Event[Receive ConfAck] State[REQsent to ACKrcvd]
*Nov 30 14:02:32.451: ppp20 LCP: I CONFREQ [ACKrcvd] id 1 len 18
*Nov 30 14:02:32.451: ppp20 LCP:    MRU 1400 (0x01040578)
*Nov 30 14:02:32.452: ppp20 LCP:    MagicNumber 0x782C64FE (0x0506782C64FE)
*Nov 30 14:02:32.452: ppp20 LCP:    PFC (0x0702)
*Nov 30 14:02:32.452: ppp20 LCP:    ACFC (0x0802)
*Nov 30 14:02:32.452: ppp20 LCP: O CONFNAK [ACKrcvd] id 1 len 8
*Nov 30 14:02:32.452: ppp20 LCP:    MRU 1500 (0x010405DC)
*Nov 30 14:02:32.452: ppp20 LCP: Event[Receive ConfReq-] State[ACKrcvd to ACKrcvd]
*Nov 30 14:02:32.459: ppp20 LCP: I CONFREQ [ACKrcvd] id 2 len 18
*Nov 30 14:02:32.459: ppp20 LCP:    MRU 1400 (0x01040578)
*Nov 30 14:02:32.459: ppp20 LCP:    MagicNumber 0x782C64FE (0x050
AtheerISR#6782C64FE)
*Nov 30 14:02:32.460: ppp20 LCP:    PFC (0x0702)
*Nov 30 14:02:32.460: ppp20 LCP:    ACFC (0x0802)
*Nov 30 14:02:32.460: ppp20 LCP: O CONFNAK [ACKrcvd] id 2 len 8
*Nov 30 14:02:32.460: ppp20 LCP:    MRU 1500 (0x010405DC)
*Nov 30 14:02:32.460: ppp20 LCP: Event[Receive ConfReq-] State[ACKrcvd to ACKrcvd]
*Nov 30 14:02:32.467: ppp20 LCP: I CONFREQ [ACKrcvd] id 3 len 18
*Nov 30 14:02:32.467: ppp20 LCP:    MRU 1500 (0x010405DC)
*Nov 30 14:02:32.467: ppp20 LCP:    MagicNumber 0x782C64FE (0x0506782C64FE)
*Nov 30 14:02:32.467: ppp20 LCP:    PFC (0x0702)
*Nov 30 14:02:32.468: ppp20 LCP:    ACFC (0x0802)
*Nov 30 14:02:32.468: ppp20 LCP: O CONFACK [ACKrcvd] id 3 len 18
*Nov 30 14:02:32.468: ppp20 LCP:    MRU 1500 (0x010405DC)
*Nov 30 14:02:32.468: ppp20 LCP:    MagicNumber 0x782C64FE (0x0506782C64FE)
*Nov 30 14:02:32.468: ppp2
AtheerISR#0 LCP:    PFC (0x0702)
*Nov 30 14:02:32.468: ppp20 LCP:    ACFC (0x0802)
*Nov 30 14:02:32.468: ppp20 LCP: Event[Receive ConfReq+] State[ACKrcvd to Open]
*Nov 30 14:02:32.476: ppp20 LCP: I IDENTIFY [Open] id 4 len 18 magic 0x782C64FEMSRASV5.20
*Nov 30 14:02:32.477: ppp20 LCP: I IDENTIFY [Open] id 5 len 18 magic 0x782C64FEMSRAS-0-AT
*Nov 30 14:02:32.477: ppp20 LCP: I IDENTIFY [Open] id 6 len 24 magic 0x782C64FEHB_{[;C@FXk{[;VA
*Nov 30 14:02:32.482: ppp20 PPP: Phase is AUTHENTICATING, by this end
*Nov 30 14:02:32.483: ppp20 MS-CHAP-V2: O CHALLENGE id 1 len 30 from "AtheerISR"
*Nov 30 14:02:32.483: ppp20 LCP: State is Open
*Nov 30 14:02:32.491: ppp20 MS-CHAP-V2: I RESPONSE id 1 len 60 from "atheer"
*Nov 30 14:02:32.491: ppp20 PPP: Phase is FORWARDING, Attempting Forward
*Nov 30 14:02:32.492: ppp20 PPP: Phase is AUTHENTICATING, Unauthenticated User

AtheerISR#*Nov 30 14:02:32.493: ppp20 PPP: Phase is FORWARDING, Attempting Forward
*Nov 30 14:02:32.497: %SYS-5-CONFIG_P: Configured programmatically by process VTEMPLATE Background Mgr from console as console
*Nov 30 14:02:32.500: Vi3 PPP: Phase is AUTHENTICATING, Authenticated User
*Nov 30 14:02:32.500: Vi3: No MS_CHAP_V2 msg data
*Nov 30 14:02:32.500: Vi3 MS-CHAP-V2: O SUCCESS id 1 len 46 msg is "S=7343324D1F47F3BC6C908AE9C2B8683409802507"
*Nov 30 14:02:32.501: Vi3 PPP: No AAA accounting method list
*Nov 30 14:02:32.501: Vi3 PPP: Phase is UP
*Nov 30 14:02:32.501: Vi3 IPCP: Protocol configured, start CP. state[Initial]
*Nov 30 14:02:32.501: Vi3 IPCP: Event[OPEN] State[Initial to Starting]
*Nov 30 14:02:32.501: Vi3 IPCP: O CONFREQ [Starting] id 1 len 10
*Nov 30 14:02:32.501: Vi3 IPCP:    Address 172.10.1.1 (0x0306AC0A0101)
*Nov 30 14:02:32.501: Vi3 IPCP
AtheerISR#: Event[UP] State[Starting to REQsent]
*Nov 30 14:02:32.501: Vi3 CCP: Protocol configured, start CP. state[Initial]
*Nov 30 14:02:32.501: Vi3 CCP: Event[OPEN] State[Initial to Starting]
*Nov 30 14:02:32.501: Vi3 CCP: O CONFREQ [Starting] id 1 len 10
*Nov 30 14:02:32.502: Vi3 CCP:    MS-PPC supported bits 0x01000020 (0x120601000020)
*Nov 30 14:02:32.502: Vi3 CCP: Event[UP] State[Starting to REQsent]
*Nov 30 14:02:32.503: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access3, changed state to up
*Nov 30 14:02:32.505: %LINK-3-UPDOWN: Interface Virtual-Access3, changed state to up
*Nov 30 14:02:32.514: Vi3 IPV6CP: I CONFREQ [UNKNOWN] id 7 len 14
*Nov 30 14:02:32.514: Vi3 IPV6CP:    Interface-Id A83A:F1BD:742E:1A4F (0x010AA83AF1BD742E1A4F)
*Nov 30 14:02:32.514: Vi3 LCP: O PROTREJ [Open] id 2 len 20 protocol IPV6CP (0x0107000E
AtheerISR#010AA83AF1BD742E1A4F)
*Nov 30 14:02:32.514: Vi3 CCP: I CONFREQ [REQsent] id 8 len 10
*Nov 30 14:02:32.514: Vi3 CCP:    MS-PPC supported bits 0x01000000 (0x120601000000)
*Nov 30 14:02:32.514: Vi3 CCP: MPPC Option asks for neither compression nor encryption
*Nov 30 14:02:32.514: Vi3 CCP: O CONFREJ [REQsent] id 8 len 10
*Nov 30 14:02:32.515: Vi3 CCP:    MS-PPC supported bits 0x01000000 (0x120601000000)
*Nov 30 14:02:32.515: Vi3 CCP: Event[Receive ConfReq-] State[REQsent to REQsent]
*Nov 30 14:02:32.515: Vi3 IPCP: I CONFREQ [REQsent] id 9 len 34
*Nov 30 14:02:32.515: Vi3 IPCP:    Address 0.0.0.0 (0x030600000000)
*Nov 30 14:02:32.515: Vi3 IPCP:    PrimaryDNS 0.0.0.0 (0x810600000000)
*Nov 30 14:02:32.515: Vi3 IPCP:    PrimaryWINS 0.0.0.0 (0x820600000000)
*Nov 30 14:02:32.515: Vi3 IPCP:    SecondaryDNS 0.0.0.0 (0x830600000000)
*Nov 30 14:02:32.515: Vi
AtheerISR#3 IPCP:    SecondaryWINS 0.0.0.0 (0x840600000000)
*Nov 30 14:02:32.515: Vi3 IPCP AUTHOR: Done. Her address 0.0.0.0, we want 0.0.0.0
*Nov 30 14:02:32.516: Vi3 IPCP: Pool returned 172.31.1.2
*Nov 30 14:02:32.516: Vi3 IPCP: O CONFREJ [REQsent] id 9 len 16
*Nov 30 14:02:32.516: Vi3 IPCP:    PrimaryWINS 0.0.0.0 (0x820600000000)
*Nov 30 14:02:32.516: Vi3 IPCP:    SecondaryWINS 0.0.0.0 (0x840600000000)
*Nov 30 14:02:32.516: Vi3 IPCP: Event[Receive ConfReq-] State[REQsent to REQsent]
*Nov 30 14:02:32.516: Vi3 IPCP: I CONFACK [REQsent] id 1 len 10
*Nov 30 14:02:32.516: Vi3 IPCP:    Address 172.10.1.1 (0x0306AC0A0101)
*Nov 30 14:02:32.516: Vi3 IPCP: Event[Receive ConfAck] State[REQsent to ACKrcvd]
*Nov 30 14:02:32.516: Vi3 CCP: I CONFREJ [REQsent] id 1 len 10
*Nov 30 14:02:32.516: Vi3 CCP:    MS-PPC supported bits 0x01000020 (0x12060100002
AtheerISR#0)
*Nov 30 14:02:32.517: Vi3 CCP: O CONFREQ [REQsent] id 2 len 4
*Nov 30 14:02:32.517: Vi3 CCP: Event[Receive ConfNak/Rej] State[REQsent to REQsent]
*Nov 30 14:02:32.526: Vi3 CCP: I TERMREQ [REQsent] id 10 len 16
*Nov 30 14:02:32.526: Vi3 CCP: (0x782C64FE003CCD74000002DC)
*Nov 30 14:02:32.526: Vi3 CCP: O TERMACK [REQsent] id 10 len 4
*Nov 30 14:02:32.526: Vi3 CCP: Event[Receive TermReq] State[REQsent to REQsent]
*Nov 30 14:02:32.526: Vi3 PPP CCP: Enter passive mode, state[Stopped]
*Nov 30 14:02:32.526: Vi3 IPCP: I CONFREQ [ACKrcvd] id 11 len 22
*Nov 30 14:02:32.526: Vi3 IPCP:    Address 0.0.0.0 (0x030600000000)
*Nov 30 14:02:32.526: Vi3 IPCP:    PrimaryDNS 0.0.0.0 (0x810600000000)
*Nov 30 14:02:32.527: Vi3 IPCP:    SecondaryDNS 0.0.0.0 (0x830600000000)
*Nov 30 14:02:32.527: Vi3 IPCP: O CONFNAK [ACKrcvd] id 11 len 22
*Nov 30 14:02:32.527: Vi3 I
AtheerISR#PCP:    Address 172.31.1.2 (0x0306AC1F0102)
*Nov 30 14:02:32.527: Vi3 IPCP:    PrimaryDNS 84.235.6.55 (0x810654EB0637)
*Nov 30 14:02:32.527: Vi3 IPCP:    SecondaryDNS 84.235.57.230 (0x830654EB39E6)
*Nov 30 14:02:32.527: Vi3 IPCP: Event[Receive ConfReq-] State[ACKrcvd to ACKrcvd]
*Nov 30 14:02:32.535: Vi3 IPCP: I CONFREQ [ACKrcvd] id 12 len 22
*Nov 30 14:02:32.535: Vi3 IPCP:    Address 172.31.1.2 (0x0306AC1F0102)
*Nov 30 14:02:32.535: Vi3 IPCP:    PrimaryDNS 84.235.6.55 (0x810654EB0637)
*Nov 30 14:02:32.535: Vi3 IPCP:    SecondaryDNS 84.235.57.230 (0x830654EB39E6)
*Nov 30 14:02:32.536: Vi3 IPCP: O CONFACK [ACKrcvd] id 12 len 22
*Nov 30 14:02:32.536: Vi3 IPCP:    Address 172.31.1.2 (0x0306AC1F0102)
*Nov 30 14:02:32.536: Vi3 IPCP:    PrimaryDNS 84.235.6.55 (0x810654EB0637)
*Nov 30 14:02:32.536: Vi3 IPCP:    SecondaryDNS 84.235.57.230 (0x830654EB39E
AtheerISR#6)
*Nov 30 14:02:32.536: Vi3 IPCP: Event[Receive ConfReq+] State[ACKrcvd to Open]
*Nov 30 14:02:32.546: Vi3 IPCP: State is Open
*Nov 30 14:02:32.547: ppp_session_ntfy, topswidb Vi3, va Vi3, platform notify 0
*Nov 30 14:02:32.548: %FMANRP_ESS-4-FULLVAI: Session creation failed due to Full Virtual-Access Interfaces not being supported. Check that all applied Virtual-Template and RADIUS features support Virtual-Access sub-interfaces. swidb= 0x80007FA30C5FFFD8, ifnum= 15
*Nov 30 14:02:32.548: Vi3 Added to neighbor route AVL tree: topoid 796304859762330381, address 172.31.1.2
*Nov 30 14:02:32.548: Vi3 IPCP: Install route to 172.31.1.2
*Nov 30 14:02:32.549: Vi3 PPP: Block vaccess from being freed [0x11]
*Nov 30 14:02:32.550: Vi3 PPP DISC: Lower Layer disconnected
*Nov 30 14:02:32.550: Vi3 PPP: Sending Acct Event[Down] id[475B]
*Nov 30 1
AtheerISR#4:02:32.550: PPP: NET STOP send to AAA.
*Nov 30 14:02:32.550: ppp_session_ntfy delete, topswidb Vi3, va Vi3, platform notify 0
*Nov 30 14:02:32.550: Vi3 PPP: Unlocked by [0x1] Still Locked by [0x10]
*Nov 30 14:02:32.551: Vi3 IPCP: Event[DOWN] State[Open to Starting]
*Nov 30 14:02:32.551: Vi3 IPCP: Event[CLOSE] State[Starting to Initial]
*Nov 30 14:02:32.551: Vi3 CCP: Event[DOWN] State[Stopped to Starting]
*Nov 30 14:02:32.551: Vi3 CCP: Event[CLOSE] State[Starting to Initial]
*Nov 30 14:02:32.551: Vi3 LCP: O TERMREQ [Open] id 3 len 4
*Nov 30 14:02:32.552: Vi3 LCP: Event[CLOSE] State[Open to Closing]
*Nov 30 14:02:32.552: Vi3 PPP: Phase is TERMINATING
*Nov 30 14:02:32.553: Vi3 Deleted neighbor route from AVL tree: topoid 796304859762330381, address 172.31.1.2
*Nov 30 14:02:32.553: Vi3 IPCP: Remove route to 172.31.1.2
*Nov 30 14:02:32.553: Vi3 LCP
AtheerISR#: Event[DOWN] State[Closing to Initial]
*Nov 30 14:02:32.554: ppp_session_ntfy delete, topswidb Vi3, va Vi3, platform notify 0
*Nov 30 14:02:32.554: Vi3 PPP: Unlocked by [0x10] Still Locked by [0x0]
*Nov 30 14:02:32.554: Vi3 PPP: Free previously blocked vaccess
*Nov 30 14:02:32.554: Vi3 PPP: Phase is DOWN
*Nov 30 14:02:32.554: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access3, changed state to down
*Nov 30 14:02:32.555: %LINK-3-UPDOWN: Interface Virtual-Access3, changed state to down
*Nov 30 14:02:32.562: %SYS-5-CONFIG_P: Configured programmatically by process VTEMPLATE Background Mgr from console as console
AtheerISR#