Mar 3 09:16:50.212011: NSS DB directory: sql:/etc/ipsec/ipsec.d Mar 3 09:16:50.212150: Initializing NSS Mar 3 09:16:50.212163: Opening NSS database "sql:/etc/ipsec/ipsec.d" read-only Mar 3 09:16:50.215980: NSS initialized Mar 3 09:16:50.216004: NSS crypto library initialized Mar 3 09:16:50.216009: FIPS HMAC integrity support [disabled] Mar 3 09:16:50.216012: libcap-ng support [disabled] Mar 3 09:16:50.216015: Linux audit support [disabled] Mar 3 09:16:50.216020: Starting Pluto (Libreswan Version 3.23 XFRM(netkey) KLIPS FORK PTHREAD_SETSCHEDPRIO NSS XAUTH_PAM NETWORKMANAGER) pid:3833 Mar 3 09:16:50.216024: core dump dir: /var/run/pluto/ Mar 3 09:16:50.216027: secrets file: /etc/ipsec/ipsec.secrets Mar 3 09:16:50.216030: leak-detective disabled Mar 3 09:16:50.216033: NSS crypto [enabled] Mar 3 09:16:50.216036: XAUTH PAM support [enabled] Mar 3 09:16:50.216113: NAT-Traversal support [enabled] Mar 3 09:16:50.216152: Initializing libevent in pthreads mode: headers: 2.0.22-stable (2001600); library: 2.0.22-stable (2001600) Mar 3 09:16:50.216383: Encryption algorithms: Mar 3 09:16:50.216395: AES_CCM_16 IKEv1: ESP IKEv2: ESP FIPS {256,192,*128} (aes_ccm aes_ccm_c) Mar 3 09:16:50.216401: AES_CCM_12 IKEv1: ESP IKEv2: ESP FIPS {256,192,*128} (aes_ccm_b) Mar 3 09:16:50.216407: AES_CCM_8 IKEv1: ESP IKEv2: ESP FIPS {256,192,*128} (aes_ccm_a) Mar 3 09:16:50.216412: 3DES_CBC IKEv1: IKE ESP IKEv2: IKE ESP FIPS [*192] (3des) Mar 3 09:16:50.216417: CAMELLIA_CTR IKEv1: ESP IKEv2: ESP {256,192,*128} Mar 3 09:16:50.216422: CAMELLIA_CBC IKEv1: IKE ESP IKEv2: IKE ESP {256,192,*128} (camellia) Mar 3 09:16:50.216427: AES_GCM_16 IKEv1: ESP IKEv2: IKE ESP FIPS {256,192,*128} (aes_gcm aes_gcm_c) Mar 3 09:16:50.216432: AES_GCM_12 IKEv1: ESP IKEv2: IKE ESP FIPS {256,192,*128} (aes_gcm_b) Mar 3 09:16:50.216438: AES_GCM_8 IKEv1: ESP IKEv2: IKE ESP FIPS {256,192,*128} (aes_gcm_a) Mar 3 09:16:50.216443: AES_CTR IKEv1: IKE ESP IKEv2: IKE ESP FIPS {256,192,*128} (aesctr) Mar 3 09:16:50.216448: AES_CBC IKEv1: IKE ESP IKEv2: IKE ESP FIPS {256,192,*128} (aes) Mar 3 09:16:50.216453: SERPENT_CBC IKEv1: IKE ESP IKEv2: IKE ESP {256,192,*128} (serpent) Mar 3 09:16:50.216458: TWOFISH_CBC IKEv1: IKE ESP IKEv2: IKE ESP {256,192,*128} (twofish) Mar 3 09:16:50.216463: TWOFISH_SSH IKEv1: IKE IKEv2: IKE ESP {256,192,*128} (twofish_cbc_ssh) Mar 3 09:16:50.216468: CAST_CBC IKEv1: ESP IKEv2: ESP {*128} (cast) Mar 3 09:16:50.216473: NULL_AUTH_AES_GMAC IKEv1: ESP IKEv2: ESP {256,192,*128} (aes_gmac) Mar 3 09:16:50.216478: NULL IKEv1: ESP IKEv2: ESP [] Mar 3 09:16:50.216487: Hash algorithms: Mar 3 09:16:50.216492: MD5 IKEv1: IKE IKEv2: Mar 3 09:16:50.216496: SHA1 IKEv1: IKE IKEv2: FIPS (sha) Mar 3 09:16:50.216501: SHA2_256 IKEv1: IKE IKEv2: FIPS (sha2 sha256) Mar 3 09:16:50.216505: SHA2_384 IKEv1: IKE IKEv2: FIPS (sha384) Mar 3 09:16:50.216510: SHA2_512 IKEv1: IKE IKEv2: FIPS (sha512) Mar 3 09:16:50.216519: PRF algorithms: Mar 3 09:16:50.216524: HMAC_MD5 IKEv1: IKE IKEv2: IKE (md5) Mar 3 09:16:50.216529: HMAC_SHA1 IKEv1: IKE IKEv2: IKE FIPS (sha sha1) Mar 3 09:16:50.216533: HMAC_SHA2_256 IKEv1: IKE IKEv2: IKE FIPS (sha2 sha256 sha2_256) Mar 3 09:16:50.216565: HMAC_SHA2_384 IKEv1: IKE IKEv2: IKE FIPS (sha384 sha2_384) Mar 3 09:16:50.216571: HMAC_SHA2_512 IKEv1: IKE IKEv2: IKE FIPS (sha512 sha2_512) Mar 3 09:16:50.216585: Integrity algorithms: Mar 3 09:16:50.216591: HMAC_MD5_96 IKEv1: IKE ESP AH IKEv2: IKE ESP AH (md5 hmac_md5) Mar 3 09:16:50.216596: HMAC_SHA1_96 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS (sha sha1 sha1_96 hmac_sha1) Mar 3 09:16:50.216601: HMAC_SHA2_512_256 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS (sha512 sha2_512 hmac_sha2_512) Mar 3 09:16:50.216605: HMAC_SHA2_384_192 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS (sha384 sha2_384 hmac_sha2_384) Mar 3 09:16:50.216610: HMAC_SHA2_256_128 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS (sha2 sha256 sha2_256 hmac_sha2_256) Mar 3 09:16:50.216628: AES_XCBC_96 IKEv1: ESP AH IKEv2: ESP AH FIPS (aes_xcbc) Mar 3 09:16:50.216633: AES_CMAC_96 IKEv1: ESP AH IKEv2: ESP AH FIPS (aes_cmac) Mar 3 09:16:50.216638: NONE IKEv1: ESP IKEv2: ESP FIPS (null) Mar 3 09:16:50.216651: DH algorithms: Mar 3 09:16:50.216657: MODP1024 IKEv1: IKE ESP AH IKEv2: IKE ESP AH (dh2) Mar 3 09:16:50.216661: MODP1536 IKEv1: IKE ESP AH IKEv2: IKE ESP AH (dh5) Mar 3 09:16:50.216665: MODP2048 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS (dh14) Mar 3 09:16:50.216670: MODP3072 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS (dh15) Mar 3 09:16:50.216674: MODP4096 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS (dh16) Mar 3 09:16:50.216678: MODP6144 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS (dh17) Mar 3 09:16:50.216683: MODP8192 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS (dh18) Mar 3 09:16:50.216687: DH19 IKEv1: IKE IKEv2: IKE ESP AH FIPS (ecp_256) Mar 3 09:16:50.216691: DH20 IKEv1: IKE IKEv2: IKE ESP AH FIPS (ecp_384) Mar 3 09:16:50.216696: DH21 IKEv1: IKE IKEv2: IKE ESP AH FIPS (ecp_521) Mar 3 09:16:50.216700: DH23 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS Mar 3 09:16:50.216704: DH24 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS Mar 3 09:16:50.217910: starting up 3 crypto helpers Mar 3 09:16:50.217976: started thread for crypto helper 0 Mar 3 09:16:50.217997: seccomp security for crypto helper not supported Mar 3 09:16:50.218014: started thread for crypto helper 1 Mar 3 09:16:50.218047: seccomp security for crypto helper not supported Mar 3 09:16:50.218131: started thread for crypto helper 2 Mar 3 09:16:50.218149: seccomp security for crypto helper not supported Mar 3 09:16:50.218176: Using Linux XFRM/NETKEY IPsec interface code on 4.19.78-yocto-standard Mar 3 09:16:50.247351: seccomp security not supported Mar 3 09:16:51.250244: added connection description "test" Mar 3 09:16:51.250327: listening for IKE messages Mar 3 09:16:51.250468: adding interface eth0/eth0 192.168.2.172:500 Mar 3 09:16:51.250494: adding interface eth0/eth0 192.168.2.172:4500 Mar 3 09:16:51.250519: adding interface lo/lo 127.0.0.1:500 Mar 3 09:16:51.250541: adding interface lo/lo 127.0.0.1:4500 Mar 3 09:16:51.250668: adding interface lo/lo ::1:500 Mar 3 09:16:51.250697: adding interface eth0/eth0 2601:641:100:c400:290:fbff:fe62:8599:500 Mar 3 09:16:51.250720: | setup callback for interface eth0:500 fd 21 Mar 3 09:16:51.250730: | setup callback for interface lo:500 fd 20 Mar 3 09:16:51.250739: | setup callback for interface lo:4500 fd 19 Mar 3 09:16:51.250747: | setup callback for interface lo:500 fd 18 Mar 3 09:16:51.250756: | setup callback for interface eth0:4500 fd 17 Mar 3 09:16:51.250765: | setup callback for interface eth0:500 fd 16 Mar 3 09:16:51.250793: loading secrets from "/etc/ipsec/ipsec.secrets" Mar 3 09:16:51.250850: loading secrets from "/etc/ipsec/ipsec.d/test.secrets" Mar 3 09:16:51.250983: "test": We cannot identify ourselves with either end of this connection. 192.168.2.197 or 0.0.0.0 are not usable Mar 3 09:16:56.104072: "test": deleting non-instance connection Mar 3 09:16:56.104129: added connection description "test" Mar 3 09:16:56.112873: "test": We cannot identify ourselves with either end of this connection. 192.168.2.197 or 0.0.0.0 are not usable