- Cisco Community
- Technology and Support
- Security
- VPN
- Re: VPN IPSEC IKEv2 ISR4331 to C1121-4P
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
VPN IPSEC IKEv2 ISR4331 to C1121-4P
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-17-2021 06:25 AM
Hi, i'm using a Cisco ISR4331 to make a VPN IPSEC IKEv2 to C1121-4P. The tunnel is up when i remove the IPSEC and IKEv2 profile and the tunnel is down when i put it again. Can someone help me?
Above is the configuration:
SITE1:
crypto ikev2 proposal VPN_SITE1_TO_SITE2_IKEV2_PROPOSAL
encryption aes-cbc-256 aes-cbc-192 aes-cbc-128
integrity sha256
group 16
crypto ikev2 policy VPN_SITE1_TO_SITE2_IKEV2_POLICY
proposal VPN_SITE1_TO_SITE2_IKEV2_PROPOSAL
crypto ikev2 keyring VPN_SITE1_TO_SITE2_KEY
peer SITE1_TO_SITE2
address 1.1.1.1
pre-shared-key abc@123
!
!
crypto ikev2 profile VPN_SITE1_TO_SITE2_IKEV2_PROFILE
match address local interface BDI22
match address local interface BDI25
match identity remote any
authentication remote pre-share
authentication local pre-share
keyring local VPN_SITE1_TO_SITE2_KEY
lifetime 36000
dpd 60 5 periodic
!
crypto ipsec security-association replay window-size 512
crypto ipsec transform-set VPN_SITE1_TO_SITE2_TS esp-aes 256 esp-sha-hmac
mode tunnel
!
crypto ipsec profile VPN_SITE1_TO_SITE2
set transform-set VPN_SITE1_TO_SITE2_TS
set pfs group16
set ikev2-profile VPN_SITE1_TO_SITE2_IKEV2_PROFILE
!
interface Tunnel1
description TUNEL_SITE1_TO_SITE2
ip address 10.10.10.21 255.255.255.252
ip mtu 1400
ip nat inside
ip tcp adjust-mss 1360
tunnel source BDI25
tunnel destination 1.1.1.1
tunnel protection ipsec profile VPN_SITE1_TO_SITE2 ikev2-profile VPN_SITE1_TO_SITE2_IKEV2_PROFILE
!
SITE2:
crypto ikev2 proposal VPN_SITE1_TO_SITE2_IKEV2_PROPOSAL
encryption aes-cbc-256 aes-cbc-192 aes-cbc-128
integrity sha256
group 16
crypto ikev2 policy VPN_SITE1_TO_SITE2_IKEV2_POLICY
proposal VPN_SITE1_TO_SITE2_IKEV2_PROPOSAL
crypto ikev2 keyring VPN_SITE1_TO_SITE2_KEY
peer SITE1_TO_SITE2
address 2.2.2.2
pre-shared-key abc@123
!
!
crypto ikev2 profile VPN_SITE1_TO_SITE2_IKEV2_PROFILE
match address local interface BDI22
match address local interface BDI2491
match identity remote any
authentication remote pre-share
authentication local pre-share
keyring local VPN_SITE1_TO_SITE2_KEY
lifetime 36000
dpd 60 5 periodic
!
crypto ipsec security-association replay window-size 512
crypto ipsec transform-set VPN_SITE1_TO_SITE2_TS esp-aes 256 esp-sha-hmac
mode tunnel
!
crypto ipsec profile VPN_SITE1_TO_SITE2
set transform-set VPN_SITE1_TO_SITE2_TS
set pfs group16
set ikev2-profile VPN_SITE1_TO_SITE2_IKEV2_PROFILE
!
interface Tunnel3
description TUNEL_MUNDIVOX_TO_LUMEN
ip address 10.10.10.22 255.255.255.252
ip mtu 1400
ip nat inside
ip tcp adjust-mss 1360
tunnel source BDI2491
tunnel destination 2.2.2.2
tunnel protection ipsec profile VPN_SITE1_TO_SITE2 ikev2-profile VPN_SITE1_TO_SITE2_IKEV2_PROFILE
!
SITE1 License:
Technology Package License Information:
-----------------------------------------------------------------
Technology Technology-package Technology-package
Current Type Next reboot
------------------------------------------------------------------
appxk9 appxk9 EvalRightToUse appxk9
uck9 None None None
securityk9 securityk9 Permanent securityk9
ipbase ipbasek9 Permanent ipbasek9
SITE2 License:
Technology Package License Information:
-----------------------------------------------------------------
Technology Technology-package Technology-package
Current Type Next reboot
------------------------------------------------------------------
appxk9 appxk9 Smart License appxk9
uck9 None Smart License None
securityk9 securityk9 Smart License securityk9
ipbase ipbasek9 Smart License ipbasek9
- Labels:
-
IPSEC
-
Other VPN Topics
-
VPN
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-17-2021 07:20 AM
Normally you don't specify the "match address local" command, rather use "identity local....." to identity the local routers identity, perhap change as follows:
crypto ikev2 profile VPN_SITE1_TO_SITE2_IKEV2_PROFILE
no match address local interface BDI22
no match address local interface BDI25
identity local address <tunnel source ip address>
I assume the following is a copy and paste error?
interface Tunnel1
tunnel protection ipsec profile VPN_SITE1_TO_SITE2 ikev2-profile VPN_SITE1_TO_SITE2_IKEV2_PROFILE
should be just this:-
interface Tunnel1
tunnel protection ipsec profile VPN_SITE1_TO_SITE2
Please can you enable debugs and provide the output debug crypto ikev2 packet and debug crypto ikev2 internal.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-18-2021 05:26 AM
SITE1:
SITE1# debug crypto ikev2 packet
000409: Aug 18 08:25:31.403 BRBSB: IKEv2-PAK:(SESSION ID = 319,SA ID = 1):Next payload: SA, version: 2.0 Exchange type: IKE_SA_INIT, flags: INITIATOR Message id: 0, length: 798
Payload contents:
SA Next payload: KE, reserved: 0x0, length: 72
last proposal: 0x0, reserved: 0x0, length: 68
Proposal: 1, Protocol id: IKE, SPI size: 0, #trans: 6 last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 8
type: 2, reserved: 0x0, id: SHA256
last transform: 0x3, reserved: 0x0: length: 8
type: 3, reserved: 0x0, id: SHA256
last transform: 0x0, reserved: 0x0: length: 8
type: 4, reserved: 0x0, id: DH_GROUP_4096_MODP/Group 16
KE Next payload: N, reserved: 0x0, length: 520
DH group: 16, Reserved: 0x0
N Next payload: VID, reserved: 0x0, length: 36
VID Next payload: VID, reserved: 0x0, length: 23
VID Next payload: VID, reserved: 0x0, length: 19
VID Next payload: VID, reserved: 0x0, length: 23
VID Next payload: NOTIFY, reserved: 0x0, length: 21
NOTIFY(NAT_DETECTION_SOURCE_IP)
Next payload: NOTIFY, reserved: 0x0, length: 28
Security protocol id: Unknown - 0, spi size: 0, type: NAT_DETECTION_SOURCE_IP
NOTIFY(NAT_DETECTION_DESTINATION_IP) Next payload: NONE, reserved: 0x0, length: 28
Security protocol id: Unknown - 0, spi size: 0, type: NAT_DETECTION_DESTINATION_IP
000410: Aug 18 08:25:31.795 BRBSB: IKEv2-PAK:(SESSION ID = 319,SA ID = 1):Next payload: SA, version: 2.0 Exchange type: IKE_SA_INIT, flags: RESPONDER MSG-RESPONSE Message id: 0, length: 807
Payload contents:
SA Next payload: KE, reserved: 0x0, length: 48
last proposal: 0x0, reserved: 0x0, length: 44
Proposal: 1, Protocol id: IKE, SPI size: 0, #trans: 4 last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 8
type: 2, reserved: 0x0, id: SHA256
last transform: 0x3, reserved: 0x0: length: 8
type: 3, reserved: 0x0, id: SHA256
last transform: 0x0, reserved: 0x0: length: 8
type: 4, reserved: 0x0, id: DH_GROUP_4096_MODP/Group 16
KE Next payload: N, reserved: 0x0, length: 520
DH group: 16, Reserved: 0x0
N Next payload: VID, reserved: 0x0, length: 36
VID Next payload: VID, reserved: 0x0, length: 23
VID Next payload: VID, reserved: 0x0, length: 19
VID Next payload: VID, reserved: 0x0, length: 23
VID Next payload: NOTIFY, reserved: 0x0, length: 21
NOTIFY(NAT_DETECTION_SOURCE_IP) Next payload: NOTIFY, reserved: 0x0, length: 28
Security protocol id: Unknown - 0, spi size: 0, type: NAT_DETECTION_SOURCE_IP
NOTIFY(NAT_DETECTION_DESTINATION_IP) Next payload: CERTREQ, reserved: 0x0, length: 28
Security protocol id: Unknown - 0, spi size: 0, type: NAT_DETECTION_DESTINATION_IP
CERTREQ Next payload: NOTIFY, reserved: 0x0, length: 25
Cert encoding Hash and URL of PKIX
NOTIFY(HTTP_CERT_LOOKUP_SUPPORTED) Next payload: NONE, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: HTTP_CERT_LOOKUP_SUPPORTED
Payload contents:
VID Next payload: IDi, reserved: 0x0, length: 20
IDi Next payload: AUTH, reserved: 0x0, length: 12
Id type: IPv4 address, Reserved: 0x0 0x0
AUTH Next payload: CFG, reserved: 0x0, length: 40
Auth method PSK, reserved: 0x0, reserved 0x0
CFG Next payload: SA, reserved: 0x0, length: 313
cfg type: CFG_REQUEST, reserved: 0x0, reserved: 0x0
000411: Aug 18 08:25:31.946 BRBSB: attrib type: internal IP4 DNS, length: 0
000412: Aug 18 08:25:31.946 BRBSB: attrib type: internal IP4 DNS, length: 0
000413: Aug 18 08:25:31.946 BRBSB: attrib type: internal IP4 NBNS, length: 0
000414: Aug 18 08:25:31.946 BRBSB: attrib type: internal IP4 NBNS, length: 0
000415: Aug 18 08:25:31.947 BRBSB: attrib type: internal IP4 subnet, length: 0
000416: Aug 18 08:25:31.947 BRBSB: attrib type: internal IP6 DNS, length: 0
000417: Aug 18 08:25:31.947 BRBSB: attrib type: internal IP6 subnet, length: 0
000418: Aug 18 08:25:31.947 BRBSB: attrib type: application version, length: 253
attrib type: Unknown - 28675, length: 0
000419: Aug 18 08:25:31.947 BRBSB: attrib type: Unknown - 28672, length: 0
000420: Aug 18 08:25:31.947 BRBSB: attrib type: Unknown - 28692, length: 0
000421: Aug 18 08:25:31.947 BRBSB: attrib type: Unknown - 28681, length: 0
000422: Aug 18 08:25:31.947 BRBSB: attrib type: Unknown - 28674, length: 0
000423: Aug 18 08:25:31.948 BRBSB: SA Next payload: TSi, reserved: 0x0, length: 44
last proposal: 0x0, reserved: 0x0, length: 40
Proposal: 1, Protocol id: ESP, SPI size: 4, #trans: 3 last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 8
type: 3, reserved: 0x0, id: SHA96
last transform: 0x0, reserved: 0x0: length: 8
type: 5, reserved: 0x0, id: Don't use ESN
TSi Next payload: TSr, reserved: 0x0, length: 24
Num of TSs: 1, reserved 0x0, reserved 0x0
TS type: TS_IPV4_ADDR_RANGE, proto id: 47, length: 16
start port: 0, end port: 65535
start addr: 2.2.2.2, end addr: 2.2.2.2
TSr Next payload: NOTIFY, reserved: 0x0, length: 24
Num of TSs: 1, reserved 0x0, reserved 0x0
TS type: TS_IPV4_ADDR_RANGE, proto id: 47, length: 16
start port: 0, end port: 65535
start addr: 1.1.1.1, end addr: 1.1.1.1
NOTIFY(INITIAL_CONTACT) Next payload: NOTIFY, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: INITIAL_CONTACT
NOTIFY(SET_WINDOW_SIZE) Next payload: NOTIFY, reserved: 0x0, length: 12
Security protocol id: Unknown - 0, spi size: 0, type: SET_WINDOW_SIZE
NOTIFY(ESP_TFC_NO_SUPPORT) Next payload: NOTIFY, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: ESP_TFC_NO_SUPPORT
NOTIFY(NON_FIRST_FRAGS) Next payload: NONE, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: NON_FIRST_FRAGS
000424: Aug 18 08:25:31.950 BRBSB: IKEv2-PAK:(SESSION ID = 319,SA ID = 1):Next payload: ENCR, version: 2.0 Exchange type: IKE_AUTH, flags: INITIATOR Message id: 1, length: 592
Payload contents:
ENCR Next payload: VID, reserved: 0x0, length: 564
000425: Aug 18 08:25:31.994 BRBSB: IKEv2-PAK:(SESSION ID = 319,SA ID = 1):Next payload: ENCR, version: 2.0
SITE1#Exchange type: IKE_AUTH, flags: RESPONDER MSG-RESPONSE Message id: 1, length: 80
Payload contents:
NOTIFY(AUTHENTICATION_FAILED) Next payload: NONE, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: AUTHENTICATION_FAILED
SITE1#debug crypto ikev2 internal
000627: Aug 18 08:37:06.101 BRBSB: IKEv2-INTERNAL:% Getting preshared key by address 1.1.1.1
000628: Aug 18 08:37:06.101 BRBSB: IKEv2-INTERNAL:Adding Proposal VPN_SITE1_TO_SITE2_IKEV2_PROPOSAL to toolkit policy
000629: Aug 18 08:37:06.102 BRBSB: IKEv2-INTERNAL:(1): Choosing IKE profile VPN_SITE1_TO_SITE2_IKEV2_PROFILE
000630: Aug 18 08:37:06.102 BRBSB: IKEv2-INTERNAL:New ikev2 sa request admitted
000631: Aug 18 08:37:06.102 BRBSB: IKEv2-INTERNAL:Incrementing outgoing negotiating sa count by one
000632: Aug 18 08:37:06.102 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=0000000000000000 (I) MsgID = 0 CurState: IDLE Event: EV_INIT_SA
000633: Aug 18 08:37:06.102 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_GET_IKE_POLICY
000634: Aug 18 08:37:06.102 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_SET_POLICY
000635: Aug 18 08:37:06.102 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):Setting configured policies
000636: Aug 18 08:37:06.103 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_CHK_AUTH4PKI
000637: Aug 18 08:37:06.103 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_GEN_DH_KEY
000638: Aug 18 08:37:06.223 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_NO_EVENT
000639: Aug 18 08:37:06.224 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_OK_RECD_DH_PUBKEY_RESP
000640: Aug 18 08:37:06.224 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):Action: Action_Null
000641: Aug 18 08:37:06.224 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_GET_CONFIG_MODE
000642: Aug 18 08:37:06.224 BRBSB: IKEv2-INTERNAL:No config data to send to toolkit:
000643: Aug 18 08:37:06.224 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_BLD_MSG
000644: Aug 18 08:37:06.224 BRBSB: IKEv2-INTERNAL:Construct Vendor Specific Payload: DELETE-REASON
000645: Aug 18 08:37:06.225 BRBSB: IKEv2-INTERNAL:Construct Vendor Specific Payload: CISCOVPN-REV-02
000646: Aug 18 08:37:06.225 BRBSB: IKEv2-INTERNAL:Sending DRU Handshake
000647: Aug 18 08:37:06.225 BRBSB: IKEv2-INTERNAL:(1): Sending custom vendor id : CISCO-DYNAMIC-ROUTE
000648: Aug 18 08:37:06.225 BRBSB: IKEv2-INTERNAL:Construct Vendor Specific Payload: (CUSTOM)
000649: Aug 18 08:37:06.225 BRBSB: IKEv2-INTERNAL:Construct Vendor Specific Payload: (CUSTOM)
000650: Aug 18 08:37:06.225 BRBSB: IKEv2-INTERNAL:Construct Notify Payload: NAT_DETECTION_SOURCE_IP
000651: Aug 18 08:37:06.225 BRBSB: IKEv2-INTERNAL:Construct Notify Payload: NAT_DETECTION_DESTINATION_IP
000652: Aug 18 08:37:06.226 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_INSERT_SA
000653: Aug 18 08:37:06.226 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_WAIT_INIT Event: EV_NO_EVENT
000654: Aug 18 08:37:06.636 BRBSB: IKEv2-INTERNAL:Got a packet from dispatcher
000655: Aug 18 08:37:06.637 BRBSB: IKEv2-INTERNAL:Processing an item off the pak queue
000656: Aug 18 08:37:06.637 BRBSB: IKEv2-INTERNAL:Parse Vendor Specific Payload: CISCO-DELETE-REASON
000657: Aug 18 08:37:06.637 BRBSB: IKEv2-INTERNAL:Parse Vendor Specific Payload: CISCOVPN-REV
000658: Aug 18 08:37:06.637 BRBSB: IKEv2-INTERNAL:Parse Vendor Specific Payload: (CUSTOM)
000659: Aug 18 08:37:06.637 BRBSB: IKEv2-INTERNAL:Parse Vendor Specific Payload: (CUSTOM)
000660: Aug 18 08:37:06.638 BRBSB: IKEv2-INTERNAL:Parse Notify Payload: NAT_DETECTION_SOURCE_IP
000661: Aug 18 08:37:06.638 BRBSB: IKEv2-INTERNAL:Parse Notify Payload: NAT_DETECTION_DESTINATION_IP
000662: Aug 18 08:37:06.638 BRBSB: IKEv2-INTERNAL:Parse Notify Payload: HTTP_CERT_LOOKUP_SUPPORTED
000663: Aug 18 08:37:06.638 BRBSB: IKEv2-INTERNAL:Received DRU vendor id
000664: Aug 18 08:37:06.638 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_WAIT_INIT Event: EV_RECV_INIT
000665: Aug 18 08:37:06.638 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):Processing IKE_SA_INIT message
000666: Aug 18 08:37:06.638 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_PROC_INIT Event: EV_CHK4_NOTIFY
000667: Aug 18 08:37:06.639 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_PROC_INIT Event: EV_VERIFY_MSG
000668: Aug 18 08:37:06.639 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_PROC_INIT Event: EV_PROC_MSG
000669: Aug 18 08:37:06.639 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_PROC_INIT Event: EV_DETECT_NAT
000670: Aug 18 08:37:06.639 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):Process NAT discovery notify
000671: Aug 18 08:37:06.639 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):Processing nat detect src notify
000672: Aug 18 08:37:06.639 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):Remote address matched
000673: Aug 18 08:37:06.639 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):Processing nat detect dst notify
000674: Aug 18 08:37:06.640 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):Local address matched
000675: Aug 18 08:37:06.640 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):No NAT found
000676: Aug 18 08:37:06.640 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_PROC_INIT Event: EV_CHK_NAT_T
000677: Aug 18 08:37:06.640 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_PROC_INIT Event: EV_CHK_CONFIG_MODE
000678: Aug 18 08:37:06.640 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: INIT_DONE Event: EV_GEN_DH_SECRET
000679: Aug 18 08:37:06.784 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: INIT_DONE Event: EV_NO_EVENT
000680: Aug 18 08:37:06.784 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: INIT_DONE Event: EV_OK_RECD_DH_SECRET_RESP
000681: Aug 18 08:37:06.784 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):Action: Action_Null
000682: Aug 18 08:37:06.784 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: INIT_DONE Event: EV_GEN_SKEYID
000683: Aug 18 08:37:06.784 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):Generate skeyid
000684: Aug 18 08:37:06.785 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: INIT_DONE Event: EV_DONE
000685: Aug 18 08:37:06.785 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):Cisco DeleteReason Notify is enabled
000686: Aug 18 08:37:06.785 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: INIT_DONE Event: EV_CHK4_ROLE
000687: Aug 18 08:37:06.785 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_BLD_AUTH Event: EV_GET_CONFIG_MODE
000688: Aug 18 08:37:06.785 BRBSB: IKEv2-INTERNAL:Sending config data to toolkit
000689: Aug 18 08:37:06.786 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_BLD_AUTH Event: EV_CHK_EAP
000690: Aug 18 08:37:06.786 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_BLD_AUTH Event: EV_GEN_AUTH
000691: Aug 18 08:37:06.786 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_BLD_AUTH Event: EV_CHK_AUTH_TYPE
000692: Aug 18 08:37:06.786 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_BLD_AUTH Event: EV_OK_AUTH_GEN
000693: Aug 18 08:37:06.787 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 0 CurState: I_BLD_AUTH Event: EV_SEND_AUTH
000694: Aug 18 08:37:06.787 BRBSB: IKEv2-INTERNAL:Construct Vendor Specific Payload: CISCO-GRANITE
000695: Aug 18 08:37:06.787 BRBSB: IKEv2-INTERNAL:Construct Notify Payload: INITIAL_CONTACT
000696: Aug 18 08:37:06.787 BRBSB: IKEv2-INTERNAL:Construct Notify Payload: SET_WINDOW_SIZE
000697: Aug 18 08:37:06.787 BRBSB: IKEv2-INTERNAL:Construct Notify Payload: ESP_TFC_NO_SUPPORT
000698: Aug 18 08:37:06.787 BRBSB: IKEv2-INTERNAL:Construct Notify Payload: NON_FIRST_FRAGS
000699: Aug 18 08:37:06.788 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 1 CurState: I_WAIT_AUTH Event: EV_NO_EVENT
000700: Aug 18 08:37:06.831 BRBSB: IKEv2-INTERNAL:Got a packet from dispatcher
000701: Aug 18 08:37:06.832 BRBSB: IKEv2-INTERNAL:Processing an item off the pak queue
000702: Aug 18 08:37:06.832 BRBSB: IKEv2-INTERNAL:Parse Notify Payload: AUTHENTICATION_FAILED
000703: Aug 18 08:37:06.832 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 1 CurState: I_WAIT_AUTH Event: EV_RECV_AUTH
000704: Aug 18 08:37:06.832 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):Action: Action_Null
000705: Aug 18 08:37:06.832 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 1 CurState: I_PROC_AUTH Event: EV_CHK4_NOTIFY
000706: Aug 18 08:37:06.833 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 1 CurState: AUTH_DONE Event: EV_FAIL
000707: Aug 18 08:37:06.833 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 1 CurState: EXIT Event: EV_ABORT
000708: Aug 18 08:37:06.833 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 1 CurState: EXIT Event: EV_CHK_PENDING_ABORT
000709: Aug 18 08:37:06.833 BRBSB: IKEv2-INTERNAL:Negotiating SA request deleted
000710: Aug 18 08:37:06.834 BRBSB: IKEv2-INTERNAL:Decrement count for outgoing negotiating
RJO9-00A-A11.08-RT04-VPN-LUMEM#
000711: Aug 18 08:37:06.834 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 1 CurState: EXIT Event: EV_CHK_GKM
000712: Aug 18 08:37:06.834 BRBSB: IKEv2-INTERNAL:(SESSION ID = 319,SA ID = 1):SM Trace-> SA: I_SPI=93FEFAA2A56B7C6A R_SPI=9745D9BADDFE38EF (I) MsgID = 1 CurState: EXIT Event: EV_UPDATE_CAC_STATS
SITE2:
SITE2# debug crypto ikev2 packet
074319: Aug 18 09:07:18.890 BRBSB: IKEv2-PAK:Next payload: SA, version: 2.0 Exchange type: IKE_SA_INIT, flags: INITIATOR Message id: 0, length: 798
Payload contents:
SA Next payload: KE, reserved: 0x0, length: 72
last proposal: 0x0, reserved: 0x0, length: 68
Proposal: 1, Protocol id: IKE, SPI size: 0, #trans: 6 last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 8
type: 2, reserved: 0x0, id: SHA256
last transform: 0x3, reserved: 0x0: length: 8
type: 3, reserved: 0x0, id: SHA256
last transform: 0x0, reserved: 0x0: length: 8
type: 4, reserved: 0x0, id: DH_GROUP_4096_MODP/Group 16
KE Next payload: N, reserved: 0x0, length: 520
DH group: 16, Reserved: 0x0
N Next payload: VID, reserved: 0x0, length: 36
VID Next payload: VID, reserved: 0x0, length: 23
VID Next payload: VID, reserved: 0x0, length: 19
VID Next payload: VID, reserved: 0x0, length: 23
VID Next payload: NOTIFY, reserved: 0x0, length: 21
NOTIFY(NAT_DETECTION_SOURCE_IP) Next payload: NOTIFY, reserved: 0x0, length: 28
Security protocol id: Unknown - 0, spi size: 0, type: NAT_DETECTION_SOURCE_IP
NOTIFY(NAT_DETECTION_DESTINATION_IP) Next payload: NONE, reserved: 0x0, length: 28
Security protocol id: Unknown - 0, spi size: 0, type: NAT_DETECTION_DESTINATION_IP
074320: Aug 18 09:07:19.238 BRBSB: IKEv2-PAK:(SESSION ID = 8943,SA ID = 1):Next payload: SA, version: 2.0 Exchange type: IKE_SA_INIT, flags: RESPONDER MSG-RESPONSE Message id: 0, length: 807
Payload contents:
SA Next payload: KE, reserved: 0x0, length: 48
last proposal: 0x0, reserved: 0x0, length: 44
Proposal: 1, Protocol id: IKE, SPI size: 0, #trans: 4 last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 8
type: 2, reserved: 0x0, id: SHA256
last transform: 0x3, reserved: 0x0: length: 8
type: 3, reserved: 0x0, id: SHA256
last transform: 0x0, reserved: 0x0: length: 8
type: 4, reserved: 0x0, id: DH_GROUP_4096_MODP/Group 16
KE Next payload: N, reserved: 0x0, length: 520
DH group: 16, Reserved: 0x0
N Next payload: VID, reserved: 0x0, length: 36
VID Next payload: VID, reserved: 0x0, length: 23
VID Next payload: VID, reserved: 0x0, length: 19
VID Next payload: VID, reserved: 0x0, length: 23
VID Next payload: NOTIFY, reserved: 0x0, length: 21
NOTIFY(NAT_DETECTION_SOURCE_IP) Next payload: NOTIFY, reserved: 0x0, length: 28
Security protocol id: Unknown - 0, spi size: 0, type: NAT_DETECTION_SOURCE_IP
NOTIFY(NAT_DETECTION_DESTINATION_IP) Next payload: CERTREQ, reserved: 0x0, length: 28
Security protocol id: Unknown - 0, spi size: 0, type: NAT_DETECTION_DESTINATION_IP
CERTREQ Next payload: NOTIFY, reserved: 0x0, length: 25
Cert encoding Hash and URL of PKIX
NOTIFY(HTTP_CERT_LOOKUP_SUPPORTED) Next payload: NONE, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: HTTP_CERT_LOOKUP_SUPPORTED
074321: Aug 18 09:07:19.427 BRBSB: IKEv2-PAK:(SESSION ID = 8943,SA ID = 1):Next payload: ENCR, version: 2.0 Exchange type: IKE_AUTH, flags: INITIATOR Message id: 1, length: 592
Payload contents:
VID Next payload: IDi, reserved: 0x0, length: 20
IDi Next payload: AUTH, reserved: 0x0, length: 12
Id type: IPv4 address, Reserved: 0x0 0x0
AUTH Next payload: CFG, reserved: 0x0, length: 40
Auth method PSK, reserved: 0x0, reserved 0x0
CFG Next payload: SA, reserved: 0x0, length: 313
cfg type: CFG_REQUEST, reserved: 0x0, reserved: 0x0
074322: Aug 18 09:07:19.428 BRBSB: attrib type: internal IP4 DNS, length: 0
074323: Aug 18 09:07:19.428 BRBSB: attrib type: internal IP4 DNS, length: 0
074324: Aug 18 09:07:19.428 BRBSB: attrib type: internal IP4 NBNS, length: 0
074325: Aug 18 09:07:19.429 BRBSB: attrib type: internal IP4 NBNS, length: 0
074326: Aug 18 09:07:19.429 BRBSB: attrib type: internal IP4 subnet, length: 0
074327: Aug 18 09:07:19.429 BRBSB: attrib type: internal IP6 DNS, length: 0
074328: Aug 18 09:07:19.429 BRBSB: attrib type: internal IP6 subnet, length: 0
074329: Aug 18 09:07:19.429 BRBSB: attrib type: application version, length: 253
attrib type: Unknown - 28675, length: 0
074330: Aug 18 09:07:19.429 BRBSB: attrib type: Unknown - 28672, length: 0
074331: Aug 18 09:07:19.429 BRBSB: attrib type: Unknown - 28692, length: 0
074332: Aug 18 09:07:19.429 BRBSB: attrib type: Unknown - 28681, length: 0
074333: Aug 18 09:07:19.430 BRBSB: attrib type: Unknown - 28674, length: 0
074334: Aug 18 09:07:19.430 BRBSB: SA Next payload: TSi, reserved: 0x0, length: 44
last proposal: 0x0, reserved: 0x0, length: 40
Proposal: 1, Protocol id: ESP, SPI size: 4, #trans: 3 last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 8
type: 3, reserved: 0x0, id: SHA96
last transform: 0x0, reserved: 0x0: length: 8
type: 5, reserved: 0x0, id: Don't use ESN
TSi Next payload: TSr, reserved: 0x0, length: 24
Num of TSs: 1, reserved 0x0, reserved 0x0
TS type: TS_IPV4_ADDR_RANGE, proto id: 47, length: 16
start port: 0, end port: 65535
start addr: 2.2.2.2, end addr: 2.2.2.2
TSr Next payload: NOTIFY, reserved: 0x0, length: 24
Num of TSs: 1, reserved 0x0, reserved 0x0
TS type: TS_IPV4_ADDR_RANGE, proto id: 47, length: 16
start port: 0, end port: 65535
start addr: 1.1.1.1, end addr: 1.1.1.1
NOTIFY(INITIAL_CONTACT) Next payload: NOTIFY, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: INITIAL_CONTACT
NOTIFY(SET_WINDOW_SIZE) Next payload: NOTIFY, reserved: 0x0, length: 12
Security protocol id: Unknown - 0, spi size: 0, type: SET_WINDOW_SIZE
NOTIFY(ESP_TFC_NO_SUPPORT) Next payload: NOTIFY, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: ESP_TFC_NO_SUPPORT
NOTIFY(NON_FIRST_FRAGS) Next payload: NONE, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: NON_FIRST_FRAGS
Payload contents:
NOTIFY(AUTHENTICATION_FAILED) Next payload: NONE, reserved: 0x0, length: 8
SITE2# Security protocol id: Unknown - 0, spi size: 0, type: AUTHENTICATION_FAILED
074335: Aug 18 09:07:19.433 BRBSB: IKEv2-PAK:(SESSION ID = 8943,SA ID = 1):Next payload: ENCR, version: 2.0 Exchange type: IKE_AUTH, flags: RESPONDER MSG-RESPONSE Message id: 1, length: 80
Payload contents:
ENCR Next payload: NOTIFY, reserved: 0x0, length: 52
SITE2#
074336: Aug 18 09:07:24.648 BRBSB: IKEv2-PAK:(SESSION ID = 479,SA ID = 1):Next payload: SA, version: 2.0 Exchange type: IKE_SA_INIT, flags: INITIATOR Message id: 0, length: 798
Payload contents:
SA Next payload: KE, reserved: 0x0, length: 72
last proposal: 0x0, reserved: 0x0, length: 68
Proposal: 1, Protocol id: IKE, SPI size: 0, #trans: 6 last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 8
type: 2, reserved: 0x0, id: SHA256
last transform: 0x3, reserved: 0x0: length: 8
type: 3, reserved: 0x0, id: SHA256
last transform: 0x0, reserved: 0x0: length: 8
type: 4, reserved: 0x0, id: DH_GROUP_4096_MODP/Group 16
KE Next payload: N, reserved: 0x0, length: 520
DH group: 16, Reserved: 0x0
N Next payload: VID, reserved: 0x0, length: 36
VID Next payload: VID, reserved: 0x0, length: 23
VID Next payload: VID, reserved: 0x0, length: 19
VID Next payload: VID, reserved: 0x0, length: 23
VID Next payload: NOTIFY, reserved: 0x0, length: 21
NOTIFY(NAT_DETECTION_SOURCE_IP)
SITE2# Next payload: NOTIFY, reserved: 0x0, length: 28
Security protocol id: Unknown - 0, spi size: 0, type: NAT_DETECTION_SOURCE_IP
NOTIFY(NAT_DETECTION_DESTINATION_IP) Next payload: NONE, reserved: 0x0, length: 28
Security protocol id: Unknown - 0, spi size: 0, type: NAT_DETECTION_DESTINATION_IP
074337: Aug 18 09:07:24.961 BRBSB: IKEv2-PAK:(SESSION ID = 479,SA ID = 1):Next payload: SA, version: 2.0 Exchange type: IKE_SA_INIT, flags: RESPONDER MSG-RESPONSE Message id: 0, length: 807
Payload contents:
SA Next payload: KE, reserved: 0x0, length: 48
last proposal: 0x0, reserved: 0x0, length: 44
Proposal: 1, Protocol id: IKE, SPI size: 0, #trans: 4 last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 8
type: 2, reserved: 0x0, id: SHA256
last transform: 0x3, reserved: 0x0: length: 8
type: 3, reserved: 0x0, id: SHA256
last transform: 0x0, reserved: 0x0: length: 8
type: 4, reserved: 0x0, id: DH_GROUP_4096_MODP/Group 16
KE Next payload: N, reserved: 0x0, length: 520
DH group: 16, Reserved: 0x0
N Next payload: VID, reserved: 0x0, length: 36
VID Next payload: VID, reserved: 0x0, length: 23
VID Next payload: VID, reserved: 0x0, length: 19
VID Next payload: VID, reserved: 0x0, length: 23
VID Next payload: NOTIFY, reserved: 0x0, length: 21
NOTIFY(NAT_DETECTION_SOURCE_IP) Next payload: NOTIFY, reserved: 0x0, length: 28
Security protocol id: Unknown - 0, spi size: 0, type: NAT_DETECTION_SOURCE_IP
NOTIFY(NAT_DETECTION_DESTINATION_IP) Next payload: CERTREQ, reserved: 0x0, length: 28
Security protocol id: Unknown - 0, spi size: 0, type: NAT_DETECTION_DESTINATION_IP
CERTREQ Next payload: NOTIFY, reserved: 0x0, length: 25
Cert encoding Hash and URL of PKIX
NOTIFY(HTTP_CERT_LOOKUP_SUPPORTED) Next payload: NONE, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: HTTP_CERT_LOOKUP_SUPPORTED
Payload contents:
VID Next payload: IDi, reserved: 0x0, length: 20
IDi Next payload: AUTH, reserved: 0x0, length: 12
Id type: IPv4 address, Reserved: 0x0 0x0
AUTH Next payload: CFG, reserved: 0x0, length: 40
Auth method PSK, reserved: 0x0, reserved 0x0
CFG Next payload: SA, reserved: 0x0, length: 317
cfg type: CFG_REQUEST, reserved: 0x0, reserved: 0x0
074338: Aug 18 09:07:25.159 BRBSB: attrib type: internal IP4 DNS, length: 0
074339: Aug 18 09:07:25.159 BRBSB: attrib type: internal IP4 DNS, length: 0
074340: Aug 18 09:07:25.159 BRBSB: attrib type: internal IP4 NBNS, length: 0
074341: Aug 18 09:07:25.159 BRBSB: attrib type: internal IP4 NBNS, length: 0
074342: Aug 18 09:07:25.159 BRBSB: attrib type: internal IP4 subnet, length: 0
074343: Aug 18 09:07:25.159 BRBSB: attrib type: internal IP6 DNS, length: 0
074344: Aug 18 09:07:25.159 BRBSB: attrib type: internal IP6 subnet, length: 0
074345: Aug 18 09:07:25.159 BRBSB: attrib type: application version, length: 257
attrib type: Unknown - 28675, length: 0
074346: Aug 18 09:07:25.159 BRBSB: attrib type: Unknown - 28672, length: 0
074347: Aug 18 09:07:25.159 BRBSB: attrib type: Unknown - 28692, length: 0
074348: Aug 18 09:07:25.159 BRBSB: attrib type: Unknown - 28681, length: 0
074349: Aug 18 09:07:25.159 BRBSB: attrib type: Unknown - 28674, length: 0
074350: Aug 18 09:07:25.159 BRBSB: SA Next payload: TSi, reserved: 0x0, length: 44
last proposal: 0x0, reserved: 0x0, length: 40
Proposal: 1, Protocol id: ESP, SPI size: 4, #trans: 3 last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 8
type: 3, reserved: 0x0, id: SHA96
last transform: 0x0, reserved: 0x0: length: 8
type: 5, reserved: 0x0, id: Don't use ESN
TSi Next payload: TSr, reserved: 0x0, length: 24
Num of TSs: 1, reserved 0x0, reserved 0x0
TS type: TS_IPV4_ADDR_RANGE, proto id: 47, length: 16
start port: 0, end port: 65535
start addr: 1.1.1.1, end addr: 1.1.1.1
TSr Next payload: NOTIFY, reserved: 0x0, length: 24
Num of TSs: 1, reserved 0x0, reserved 0x0
TS type: TS_IPV4_ADDR_RANGE, proto id: 47, length: 16
start port: 0, end port: 65535
start addr: 2.2.2.2, end addr: 2.2.2.2
NOTIFY(INITIAL_CONTACT) Next payload: NOTIFY, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: INITIAL_CONTACT
NOTIFY(SET_WINDOW_SIZE) Next payload: NOTIFY, reserved: 0x0, length: 12
Security protocol id: Unknown - 0, spi size: 0, type: SET_WINDOW_SIZE
NOTIFY(ESP_TFC_NO_SUPPORT) Next payload: NOTIFY, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: ESP_TFC_NO_SUPPORT
NOTIFY(NON_FIRST_FRAGS) Next payload: NONE, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: NON_FIRST_FRAGS
074351: Aug 18 09:07:25.161 BRBSB: IKEv2-PAK:(SESSION ID = 479,SA ID = 1):Next payload: ENCR, version: 2.0 Exchange type: IKE_AUTH, flags: INITIATOR Message id: 1, length: 592
Payload contents:
ENCR Next payload: VID, reserved: 0x0, length: 564
074352: Aug 18 09:07:25.207 BRBSB: IKEv2-PAK:(SESSION ID = 479,SA ID = 1):Next payload: ENCR, version: 2.0
SITE2#Exchange type: IKE_AUTH, flags: RESPONDER MSG-RESPONSE Message id: 1, length: 80
Payload contents:
NOTIFY(AUTHENTICATION_FAILED) Next payload: NONE, reserved: 0x0, length: 8
Security protocol id: Unknown - 0, spi size: 0, type: AUTHENTICATION_FAILED
SITE2#debug crypto ikev2 internal
074356: Aug 18 09:13:57.025 BRBSB: IKEv2-INTERNAL:% Getting preshared key by address 2.2.2.2
074357: Aug 18 09:13:57.025 BRBSB: IKEv2-INTERNAL:Adding Proposal VPN_RCE_TO_RJO_IKEV2_PROPOSAL to toolkit policy
074358: Aug 18 09:13:57.026 BRBSB: IKEv2-INTERNAL:(1): Choosing IKE profile VPN_LUMEN_MUNDIVOX_RCE_IKEV2_PROFILE
074359: Aug 18 09:13:57.026 BRBSB: IKEv2-INTERNAL:New ikev2 sa request admitted
074360: Aug 18 09:13:57.026 BRBSB: IKEv2-INTERNAL:Incrementing outgoing negotiating sa count by one
074361: Aug 18 09:13:57.026 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=0000000000000000 (I) MsgID = 0 CurState: IDLE Event: EV_INIT_SA
074362: Aug 18 09:13:57.026 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_GET_IKE_POLICY
074363: Aug 18 09:13:57.026 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_SET_POLICY
074364: Aug 18 09:13:57.027 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Setting configured policies
074365: Aug 18 09:13:57.027 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_CHK_AUTH4PKI
074366: Aug 18 09:13:57.027 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_GEN_DH_KEY
074367: Aug 18 09:13:57.181 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_NO_EVENT
074368: Aug 18 09:13:57.182 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_OK_RECD_DH_PUBKEY_RESP
074369: Aug 18 09:13:57.182 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Action: Action_Null
074370: Aug 18 09:13:57.182 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_GET_CONFIG_MODE
074371: Aug 18 09:13:57.182 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):No config data to send to toolkit:
074372: Aug 18 09:13:57.182 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_BLD_MSG
074373: Aug 18 09:13:57.183 BRBSB: IKEv2-INTERNAL:Construct Vendor Specific Payload: DELETE-REASON
074374: Aug 18 09:13:57.183 BRBSB: IKEv2-INTERNAL:Construct Vendor Specific Payload: CISCOVPN-REV-02
074375: Aug 18 09:13:57.183 BRBSB: IKEv2-INTERNAL:Sending DRU Handshake
074376: Aug 18 09:13:57.183 BRBSB: IKEv2-INTERNAL:(1): Sending custom vendor id : CISCO-DYNAMIC-ROUTE
074377: Aug 18 09:13:57.183 BRBSB: IKEv2-INTERNAL:Construct Vendor Specific Payload: (CUSTOM)
074378: Aug 18 09:13:57.183 BRBSB: IKEv2-INTERNAL:Construct Vendor Specific Payload: (CUSTOM)
SITE2#
074379: Aug 18 09:13:57.183 BRBSB: IKEv2-INTERNAL:Construct Notify Payload: NAT_DETECTION_SOURCE_IP
074380: Aug 18 09:13:57.184 BRBSB: IKEv2-INTERNAL:Construct Notify Payload: NAT_DETECTION_DESTINATION_IP
074381: Aug 18 09:13:57.184 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_INSERT_SA
074382: Aug 18 09:13:57.184 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_WAIT_INIT Event: EV_NO_EVENT
074383: Aug 18 09:13:57.491 BRBSB: IKEv2-INTERNAL:Got a packet from dispatcher
074384: Aug 18 09:13:57.491 BRBSB: IKEv2-INTERNAL:Processing an item off the pak queue
074385: Aug 18 09:13:57.491 BRBSB: IKEv2-INTERNAL:Parse Vendor Specific Payload: CISCO-DELETE-REASON
074386: Aug 18 09:13:57.491 BRBSB: IKEv2-INTERNAL:Parse Vendor Specific Payload: CISCOVPN-REV
074387: Aug 18 09:13:57.492 BRBSB: IKEv2-INTERNAL:Parse Vendor Specific Payload: (CUSTOM)
074388: Aug 18 09:13:57.492 BRBSB: IKEv2-INTERNAL:Parse Vendor Specific Payload: (CUSTOM)
074389: Aug 18 09:13:57.492 BRBSB: IKEv2-INTERNAL:Parse Notify Payload: NAT_DETECTION_SOURCE_IP
074390: Aug 18 09:13:57.492 BRBSB: IKEv2-INTERNAL:Parse Notify Payload: NAT_DETECTION_DESTINATION_IP
074391: Aug 18 09:13:57.492 BRBSB: IKEv2-INTERNAL:Parse Notify Payload: HTTP_CERT_LOOKUP_SUPPORTED
074392: Aug 18 09:13:57.492 BRBSB: IKEv2-INTERNAL:Received DRU vendor id
074393: Aug 18 09:13:57.493 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_WAIT_INIT Event: EV_RECV_INIT
074394: Aug 18 09:13:57.493 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Processing IKE_SA_INIT message
074395: Aug 18 09:13:57.493 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_PROC_INIT Event: EV_CHK4_NOTIFY
074396: Aug 18 09:13:57.493 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_PROC_INIT Event: EV_VERIFY_MSG
074397: Aug 18 09:13:57.493 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_PROC_INIT Event: EV_PROC_MSG
074398: Aug 18 09:13:57.494 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_PROC_INIT Event: EV_DETECT_NAT
074399: Aug 18 09:13:57.494 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Process NAT discovery notify
074400: Aug 18 09:13:57.494 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Processing nat detect src notify
074401: Aug 18 09:13:57.494 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Remote address matched
074402: Aug 18 09:13:57.494 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Processing nat detect dst notify
074403: Aug 18 09:13:57.495 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Local address matched
074404: Aug 18 09:13:57.495 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):No NAT found
074405: Aug 18 09:13:57.495 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_PROC_INIT Event: EV_CHK_NAT_T
074406: Aug 18 09:13:57.495 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_PROC_INIT Event: EV_CHK_CONFIG_MODE
074407: Aug 18 09:13:57.495 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: INIT_DONE Event: EV_GEN_DH_SECRET
074408: Aug 18 09:13:57.683 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: INIT_DONE Event: EV_NO_EVENT
074409: Aug 18 09:13:57.684 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: INIT_DONE Event: EV_OK_RECD_DH_SECRET_RESP
074410: Aug 18 09:13:57.684 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Action: Action_Null
074411: Aug 18 09:13:57.684 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: INIT_DONE Event: EV_GEN_SKEYID
074412: Aug 18 09:13:57.684 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Generate skeyid
074413: Aug 18 09:13:57.685 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: INIT_DONE Event: EV_DONE
074414: Aug 18 09:13:57.685 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Cisco DeleteReason Notify is enabled
074415: Aug 18 09:13:57.685 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: INIT_DONE Event: EV_CHK4_ROLE
074416: Aug 18 09:13:57.685 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_BLD_AUTH Event: EV_GET_CONFIG_MODE
074417: Aug 18 09:13:57.685 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Sending config data to toolkit
074418: Aug 18 09:13:57.686 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_BLD_AUTH Event: EV_CHK_EAP
074419: Aug 18 09:13:57.686 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_BLD_AUTH Event: EV_GEN_AUTH
074420: Aug 18 09:13:57.686 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_BLD_AUTH Event: EV_CHK_AUTH_TYPE
074421: Aug 18 09:13:57.686 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_BLD_AUTH Event: EV_OK_AUTH_GEN
074422: Aug 18 09:13:57.687 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 0 CurState: I_BLD_AUTH Event: EV_SEND_AUTH
074423: Aug 18 09:13:57.687 BRBSB: IKEv2-INTERNAL:Construct Vendor Specific Payload: CISCO-GRANITE
074424: Aug 18 09:13:57.687 BRBSB: IKEv2-INTERNAL:Construct Notify Payload: INITIAL_CONTACT
074425: Aug 18 09:13:57.687 BRBSB: IKEv2-INTERNAL:Construct Notify Payload: SET_WINDOW_SIZE
074426: Aug 18 09:13:57.687 BRBSB: IKEv2-INTERNAL:Construct Notify Payload: ESP_TFC_NO_SUPPORT
074427: Aug 18 09:13:57.687 BRBSB: IKEv2-INTERNAL:Construct Notify Payload: NON_FIRST_FRAGS
074428: Aug 18 09:13:57.688 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 1 CurState: I_WAIT_AUTH Event: EV_NO_EVENT
074429: Aug 18 09:13:57.732 BRBSB: IKEv2-INTERNAL:Got a packet from dispatcher
074430: Aug 18 09:13:57.733 BRBSB: IKEv2-INTERNAL:Processing an item off the pak queue
074431: Aug 18 09:13:57.733 BRBSB: IKEv2-INTERNAL:Parse Notify Payload: AUTHENTICATION_FAILED
074432: Aug 18 09:13:57.733 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 1 CurState: I_WAIT_AUTH Event: EV_RECV_AUTH
074433: Aug 18 09:13:57.733 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):Action: Action_Null
074434: Aug 18 09:13:57.733 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 1 CurState: I_PROC_AUTH Event: EV_CHK4_NOTIFY
074435: Aug 18 09:13:57.734 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 1 CurState: AUTH_DONE Event: EV_FAIL
074436: Aug 18 09:13:57.734 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 1 CurState: EXIT Event: EV_ABORT
074437: Aug 18 09:13:57.734 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):
SITE2#SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 1 CurState: EXIT Event: EV_CHK_PENDING_ABORT
074438: Aug 18 09:13:57.734 BRBSB: IKEv2-INTERNAL:Negotiating SA request deleted
074439: Aug 18 09:13:57.734 BRBSB: IKEv2-INTERNAL:Decrement count for outgoing negotiating
074440: Aug 18 09:13:57.734 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 1 CurState: EXIT Event: EV_CHK_GKM
074441: Aug 18 09:13:57.735 BRBSB: IKEv2-INTERNAL:(SESSION ID = 479,SA ID = 1):SM Trace-> SA: I_SPI=B9A721A46A2A864D R_SPI=AC5D3D476FDC1906 (I) MsgID = 1 CurState: EXIT Event: EV_UPDATE_CAC_STATS
074442: Aug 18 09:14:04.188 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):SM Trace-> SA: I_SPI=746B5FF580C051FD R_SPI=40C56B84480AE07E (I) MsgID = 1 CurState: READY Event: EV_SEND_DPD
074443: Aug 18 09:14:04.188 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):Action: Action_Null
074444: Aug 18 09:14:04.188 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):SM Trace-> SA: I_SPI=746B5FF580C051FD R_SPI=40C56B84480AE07E (I) MsgID = 1 CurState: INFO_I_BLD_INFO Event: EV_SEND_DPD
074445: Aug 18 09:14:04.189 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):SM Trace-> SA: I_SPI=746B5FF580C051FD R_SPI=40C56B84480AE07E (I) MsgID = 1A CurState: INFO_I_WAIT Event: EV_NO_EVENT
074446: Aug 18 09:14:04.233 BRBSB: IKEv2-INTERNAL:Got a packet from dispatcher
074447: Aug 18 09:14:04.233 BRBSB: IKEv2-INTERNAL:Processing an item off the pak queue
074448: Aug 18 09:14:04.233 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):SM Trace-> SA: I_SPI=746B5FF580C051FD R_SPI=40C56B84480AE07E (I) MsgID = 1A CurState: INFO_I_WAIT Event: EV_RECV_INFO_ACK
074449: Aug 18 09:14:04.234 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):SM Trace-> SA: I_SPI=746B5FF580C051FD R_SPI=40C56B84480AE07E (I) MsgID = 1A CurState: INFO_I_WAIT Event: EV_CHK_INFO_TYPE
074450: Aug 18 09:14:04.234 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):SM Trace-> SA: I_SPI=746B5FF580C051FD R_SPI=40C56B84480AE07E (I) MsgID = 1A CurState: EXIT Event: EV_CHK_PENDING
074451: Aug 18 09:14:04.234 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):Processed response with message id 26, Requests can be sent from range 27 to 31
074452: Aug 18 09:14:04.234 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):SM Trace-> SA: I_SPI=746B5FF580C051FD R_SPI=40C56B84480AE07E (I) MsgID = 1A CurState: EXIT Event: EV_NO_EVENT
074453: Aug 18 09:14:04.234 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):SM Trace-> SA: I_SPI=746B5FF580C051FD R_SPI=40C56B84480AE07E (I) MsgID = 1A CurState: EXIT Event: EV_FREE_NEG
074454: Aug 18 09:14:04.234 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):Deleting negotiation context for my message ID: 0x1A
074455: Aug 18 09:14:04.432 BRBSB: IKEv2-INTERNAL:Got a packet from dispatcher
074456: Aug 18 09:14:04.433 BRBSB: IKEv2-INTERNAL:Processing an item off the pak queue
074457: Aug 18 09:14:04.433 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):Request has mess_id 26; expected 26 through 30
074458: Aug 18 09:14:04.433 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):SM Trace-> SA: I_SPI=746B5FF580C051FD R_SPI=40C56B84480AE07E (R) MsgID = 1A CurState: READY Event: EV_RECV_INFO_REQ
074459: Aug 18 09:14:04.434 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):Action: Action_Null
074460: Aug 18 09:14:04.434 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):SM Trace-> SA: I_SPI=746B5FF580C051FD R_SPI=40C56B84480AE07E (R) MsgID = 1A CurState: INFO_R Event: EV_RECV_INFO_REQ
074461: Aug 18 09:14:04.435 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):SM Trace-> SA: I_SPI=746B5FF580C051FD R_SPI=40C56B84480AE07E (R) MsgID = 1A CurState: INFO_R Event: EV_CHK_INFO_TYPE
074462: Aug 18 09:14:04.435 BRBSB: IKEv2-INTERNAL:(SESSION ID = 19,SA ID = 5):SM Trace-> SA: I_SPI=746B5FF580C051FD R_SPI=40C56B84480AE07E (R) MsgID = 1A CurState: INFO_R Event: EV_START_DEL_NEG_TMR
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: