Page MenuHomeVyOS Platform
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Feb 5 2019

syncer triaged T1212: IPSec Tunnel to Cisco ASA drops reliably after 4.2GB transferred as Normal priority.
Feb 5 2019, 2:23 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
syncer triaged T1215: Should the vyatta-cfg-firewall control file list vyatta-wirelessmodem in Replaces? as Normal priority.
Feb 5 2019, 2:22 PM · VyOS 1.3 Equuleus (1.3.7)
syncer assigned T1216: EAP-TTLS-PAP support for RADIUS to UnicronNL.
Feb 5 2019, 2:22 PM · VyOS 1.5 Circinus
syncer triaged T1222: OSPF routing problem - route looping as Normal priority.
Feb 5 2019, 2:21 PM · VyOS 1.3 Equuleus (1.3.0-epa1), vyos-frr
syncer assigned T1222: OSPF routing problem - route looping to dmbaturin.
Feb 5 2019, 2:21 PM · VyOS 1.3 Equuleus (1.3.0-epa1), vyos-frr
syncer assigned T1227: rip PW can't be set at interface config to zsdc.
Feb 5 2019, 2:19 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
syncer triaged T1228: pppoe default-route force option not working (Rel 1.2.0-rc11) as Normal priority.
Feb 5 2019, 2:19 PM · VyOS 1.2 Crux (VyOS 1.2.5)
syncer assigned T1228: pppoe default-route force option not working (Rel 1.2.0-rc11) to hagbard.
Feb 5 2019, 2:19 PM · VyOS 1.2 Crux (VyOS 1.2.5)
syncer edited projects for T1208: 'install images' fails on removable storage, added: VyOS 1.3 Equuleus; removed VyOS 1.2 Crux.
Feb 5 2019, 2:15 PM · VyOS 1.3 Equuleus (1.3.0)
syncer edited projects for T1232: template.ovf has an incorrect parent id preventing it from loading in vCenter, added: VyOS 1.3 Equuleus; removed VyOS 1.2 Crux.
Feb 5 2019, 2:15 PM · Rejected
c-po closed T1231: Remove “service dns dynamic“ cache file on node change/delete as Resolved.
Feb 5 2019, 6:47 AM · VyOS 1.2 Crux (VyOS 1.2.1)
c-po updated the task description for T1231: Remove “service dns dynamic“ cache file on node change/delete.
Feb 5 2019, 6:34 AM · VyOS 1.2 Crux (VyOS 1.2.1)
c-po renamed T1231: Remove “service dns dynamic“ cache file on node change/delete from Remove ddclient cache file on delete to Remove “service dns dynamic“ cache file on node change/delete.
Feb 5 2019, 6:04 AM · VyOS 1.2 Crux (VyOS 1.2.1)
c-po created T1231: Remove “service dns dynamic“ cache file on node change/delete.
Feb 5 2019, 6:03 AM · VyOS 1.2 Crux (VyOS 1.2.1)

Feb 3 2019

njh updated the task description for T1229: Add support for unencrypted L2TPv2 client connections.
Feb 3 2019, 5:36 PM · VyOS 1.5 Circinus
njh updated the task description for T1229: Add support for unencrypted L2TPv2 client connections.
Feb 3 2019, 5:18 PM · VyOS 1.5 Circinus
njh created T1229: Add support for unencrypted L2TPv2 client connections.
Feb 3 2019, 5:17 PM · VyOS 1.5 Circinus

Feb 2 2019

SteveP added a comment to T1066: Missing NICs.

I have done a bit more work on this problem and, correct me if I'm wrong, I no longer think it is driver related.

Feb 2 2019, 11:30 AM · VyOS 1.2 Crux (VyOS 1.2.1)

Jan 31 2019

c-po added a comment to T1214: Add `ipaddrcheck` to the packages directory.

Package needs to be build from source. There are already some packages which we build that way like libyang or librtr so not a big deal.

Jan 31 2019, 6:27 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
njh added a comment to T1214: Add `ipaddrcheck` to the packages directory.

Change was reverted because "libcidr-dev is not available until Debian Buster thus the container can't be built"

Jan 31 2019, 9:20 AM · VyOS 1.3 Equuleus (1.3.0-epa1)
njh reopened T1214: Add `ipaddrcheck` to the packages directory as "Open".
Jan 31 2019, 9:18 AM · VyOS 1.3 Equuleus (1.3.0-epa1)

Jan 30 2019

c-po edited projects for T1214: Add `ipaddrcheck` to the packages directory, added: VyOS 1.3 Equuleus; removed VyOS 1.2 Crux.
Jan 30 2019, 11:15 AM · VyOS 1.3 Equuleus (1.3.0-epa1)

Jan 29 2019

hagbard added a comment to T166: NPTv6 is broken in the rolling release 999.201609170235 .

Done. https://github.com/vyos/vyatta-nat/commit/98ce64bc3c73118c8e909173da460501ca6cabf1

Jan 29 2019, 11:27 PM · VyOS 1.2 Crux (VyOS 1.2.1)
Merijn added a comment to T166: NPTv6 is broken in the rolling release 999.201609170235 .

@hagbard Did you merge the second PR also? For vyos/vyatta-nat?

Jan 29 2019, 11:12 PM · VyOS 1.2 Crux (VyOS 1.2.1)
njh added a comment to T1202: Add `hvinfo` to the packages directory.

Pull request created: https://github.com/vyos/vyos-build/pull/43

Jan 29 2019, 10:20 PM · VyOS 1.3 Equuleus (1.3.0-epa1), vyos-build
hagbard closed T166: NPTv6 is broken in the rolling release 999.201609170235 as Resolved.

Perfect. Merged: https://github.com/vyos/vyatta-cfg-firewall/commit/23447bef89a46f44d7544f15c2755d33f38ffd4c

Jan 29 2019, 9:43 PM · VyOS 1.2 Crux (VyOS 1.2.1)
lbv2rus added a comment to T586: Cannot add ethernet vif-s vif-c interface to bridge-group.

Hi.
Sorry for bad english.

Jan 29 2019, 9:20 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
Merijn added a comment to T166: NPTv6 is broken in the rolling release 999.201609170235 .

@hagbard created an iso image and loaded it in a VM. I can add the configuration and at commit the right ip6tables rules are created.

Jan 29 2019, 8:53 PM · VyOS 1.2 Crux (VyOS 1.2.1)
Merijn added a comment to T166: NPTv6 is broken in the rolling release 999.201609170235 .

@hagbard the changes are created with the patch files mentioned earlier.
I am in the process of creating packages and an iso with it.

Jan 29 2019, 7:56 PM · VyOS 1.2 Crux (VyOS 1.2.1)
hagbard added a comment to T166: NPTv6 is broken in the rolling release 999.201609170235 .

@Merijn Have you tested your changes already? I was only bale to find https://github.com/vyos/vyatta-cfg-firewall/pull/12 which only contains the ip6tables targets, did you send PRs for systctl too?

Jan 29 2019, 6:30 PM · VyOS 1.2 Crux (VyOS 1.2.1)
Merijn added a comment to T166: NPTv6 is broken in the rolling release 999.201609170235 .

@hagbard PRs created, first time so hope its done right.

Jan 29 2019, 1:55 PM · VyOS 1.2 Crux (VyOS 1.2.1)
c-po added a comment to T1160: snmp settings allowing access via IPv6 when it should not.

@danhusan is this your expected behavior?

Jan 29 2019, 7:50 AM · VyOS 1.2 Crux (VyOS 1.2.1)
c-po added a comment to T1211: Blank hostnames from dhcpd are able to bring down DNS.

can you share your DHCP configuration with us for reproducibility?

Jan 29 2019, 7:05 AM · VyOS 1.2 Crux (VyOS 1.2.1)

Jan 28 2019

thinkl33t added a comment to T1211: Blank hostnames from dhcpd are able to bring down DNS.

Note that this has taken down DNS on our firewall (and hence our network) a couple of times now, both annoyingly early in the morning when nobody was in to fix it.

Jan 28 2019, 5:01 PM · VyOS 1.2 Crux (VyOS 1.2.1)
syncer assigned T1211: Blank hostnames from dhcpd are able to bring down DNS to c-po.
Jan 28 2019, 4:49 PM · VyOS 1.2 Crux (VyOS 1.2.1)
danhusan added a comment to T1160: snmp settings allowing access via IPv6 when it should not.
In T1160#31671, @c-po wrote:

But what should be the desired behavior?

  • When no network or client is speciefied we allow allo but as soon as one network/client is specified we limit it down?
Jan 28 2019, 8:45 AM · VyOS 1.2 Crux (VyOS 1.2.1)
c-po changed Why the issue appeared? from none to implementation-mistake on T1160: snmp settings allowing access via IPv6 when it should not.
Jan 28 2019, 5:38 AM · VyOS 1.2 Crux (VyOS 1.2.1)
c-po changed Difficulty level from unknown to normal on T1160: snmp settings allowing access via IPv6 when it should not.
Jan 28 2019, 5:38 AM · VyOS 1.2 Crux (VyOS 1.2.1)
c-po changed the status of T1160: snmp settings allowing access via IPv6 when it should not from Open to Confirmed.
Jan 28 2019, 5:38 AM · VyOS 1.2 Crux (VyOS 1.2.1)
c-po added a comment to T1160: snmp settings allowing access via IPv6 when it should not.

IMHO this is a general CLI design issue.

Jan 28 2019, 5:38 AM · VyOS 1.2 Crux (VyOS 1.2.1)

Jan 27 2019

syncer reassigned T1160: snmp settings allowing access via IPv6 when it should not from syncer to c-po.
Jan 27 2019, 9:06 PM · VyOS 1.2 Crux (VyOS 1.2.1)
syncer changed the status of T1044: Dead loop on virtual device from Open to Needs testing.
Jan 27 2019, 5:43 AM · VyOS 1.3 Equuleus (1.3.7), test
syncer edited projects for T1113: Unwanted/broken "disable" option in firewall state, added: VyOS 1.3 Equuleus; removed VyOS 1.2 Crux (VyOS 1.2.0-EPA3).
Jan 27 2019, 5:40 AM · VyOS 1.3 Equuleus (1.3.6), test
syncer edited projects for T1117: 'show ipv6 bgp route-map' missing, added: VyOS 1.3 Equuleus; removed VyOS 1.2 Crux (VyOS 1.2.0-EPA3).
Jan 27 2019, 5:40 AM · VyOS 1.3 Equuleus (1.3.0-epa1)
syncer edited projects for T1121: Can't search for prefixes by community: Community malformed: AA:NN, added: VyOS 1.3 Equuleus; removed VyOS 1.2 Crux (VyOS 1.2.0-EPA3).
Jan 27 2019, 5:39 AM · VyOS 1.3 Equuleus (1.3.0-epa1)
syncer lowered the priority of T1118: Obsolete "utc" option in time selector in firewall from Normal to Low.
Jan 27 2019, 5:38 AM · VyOS 1.3 Equuleus (1.3.5)
syncer edited projects for T1158: Route-Map configuration dropped updating rc11 to epa2, added: VyOS 1.3 Equuleus; removed VyOS 1.2 Crux (VyOS 1.2.0-EPA3).
Jan 27 2019, 4:19 AM · VyOS 1.3 Equuleus (1.3.0-epa1)
syncer triaged T1187: Command show log vpn display wrong information as Low priority.
Jan 27 2019, 4:17 AM · VyOS-1.2.0-GA
syncer changed the status of T1187: Command show log vpn display wrong information from Open to Needs testing.
Jan 27 2019, 4:17 AM · VyOS-1.2.0-GA
syncer edited projects for T1192: Wlan regression between 1.2.0-rc11 and rolling, added: VyOS 1.3 Equuleus; removed VyOS 1.2 Crux.
Jan 27 2019, 4:12 AM · VyOS 1.3 Equuleus (1.3.0-epa1)
dmbaturin renamed T1198: Extra hyphen in suggested image name on upgrade from extra "-" in version name to Extra hyphen in suggested image name on upgrade.
Jan 27 2019, 1:00 AM · VyOS 1.3 Equuleus (1.3.7)
dmbaturin edited projects for T1198: Extra hyphen in suggested image name on upgrade, added: VyOS 1.3 Equuleus; removed VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA).
Jan 27 2019, 12:59 AM · VyOS 1.3 Equuleus (1.3.7)
syncer triaged T1205: module pcspkr missing as Low priority.
Jan 27 2019, 12:42 AM · VyOS 1.2 Crux (VyOS 1.2.6)
syncer edited projects for T1205: module pcspkr missing, added: VyOS 1.3 Equuleus; removed VyOS 1.2 Crux.
Jan 27 2019, 12:41 AM · VyOS 1.2 Crux (VyOS 1.2.6)
syncer removed a hashtag from VyOS 1.3 Equuleus: #vyos_1.3.x.
Jan 27 2019, 12:39 AM
syncer renamed VyOS 1.3 Equuleus from VyOS 1.3.x to VyOS 1.3 Equuleus.
Jan 27 2019, 12:39 AM
syncer edited projects for T1194: cronjob is being setup even if not saved, added: VyOS 1.3 Equuleus; removed VyOS 1.2 Crux.
Jan 27 2019, 12:34 AM · VyOS 1.2 Crux (VyOS 1.2.6)
syncer assigned T1207: DMVPN behind NAT to UnicronNL.
Jan 27 2019, 12:28 AM · VyOS 1.3 Equuleus (1.3.0-epa1)
syncer created T1207: DMVPN behind NAT.
Jan 27 2019, 12:27 AM · VyOS 1.3 Equuleus (1.3.0-epa1)

Jan 26 2019

syncer edited projects for T109: VyOS Can Lose Parts Of Its Config On Reboot - In Certain Situations, added: VyOS 1.3 Equuleus; removed VyOS-1.2.0-GA.
Jan 26 2019, 8:35 PM · VyOS 1.3 Equuleus (1.3.3)

Jan 25 2019

njh added a project to T1202: Add `hvinfo` to the packages directory: vyos-build.
Jan 25 2019, 10:47 PM · VyOS 1.3 Equuleus (1.3.0-epa1), vyos-build
njh created T1202: Add `hvinfo` to the packages directory.
Jan 25 2019, 10:43 PM · VyOS 1.3 Equuleus (1.3.0-epa1), vyos-build

Jan 23 2019

bjtangseng added a comment to T1186: Setup DMVPN cannot work.

Yes, when I change Hub site remote_ts from dynamic to 0.0.0.0/0, That VPN was worked.

Jan 23 2019, 5:01 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
UnicronNL added a comment to T1186: Setup DMVPN cannot work.

@bjtangseng so changing that remote_ts = 0.0.0.0/0[gre] fixed it right?

Jan 23 2019, 4:36 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

And more bug, when I change Hub swanctl.conf file. And run show IPSec sa and run show IPSec sa v. I can see deferent information.

Jan 23 2019, 3:15 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

Congratulations, VPN is connected

Jan 23 2019, 3:11 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
UnicronNL added a comment to T1186: Setup DMVPN cannot work.

@bjtangseng
On the HUB, can you change in /etc/swanctl/swanctl.conf
remote_ts = dynamic[gre] to remote_ts = 0.0.0.0/0[gre]

Jan 23 2019, 2:59 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

In spoke site

Jan 23 2019, 2:58 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
UnicronNL added a comment to T1186: Setup DMVPN cannot work.

can you do:
sudo swanctl --list-sas

Jan 23 2019, 2:52 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

You can see that the Remote ID used between the two sites does not match. In the last three line.

Jan 23 2019, 2:52 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

In spoke site

Jan 23 2019, 2:48 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
UnicronNL added a comment to T1186: Setup DMVPN cannot work.

@bjtangseng, Ah that is the problem. I do not know if there is an option allow any network, have to do some research.

Jan 23 2019, 2:46 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

Yes, When I redial pppoe the IP meybe change.

Jan 23 2019, 2:39 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
UnicronNL added a comment to T1186: Setup DMVPN cannot work.

@bjtangseng,
Does your nat address change everytime?

Jan 23 2019, 2:35 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

This is my Hub site log

Jan 23 2019, 2:18 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
UnicronNL added a comment to T1186: Setup DMVPN cannot work.

can you put log from hub?
ipsec log

Jan 23 2019, 2:02 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

that IP(115.60.59.223) is public IP after NAT.

Jan 23 2019, 2:00 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
UnicronNL added a comment to T1186: Setup DMVPN cannot work.

@bjtangseng
I think you replaced the wrong ip in the swanctl.conf

Jan 23 2019, 1:47 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

I try to change local_ts in swanctl.conf, but nothing to change.

Jan 23 2019, 1:10 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

vyos@vyos# sudo swanctl -i -c dmvpn -S 0.0.0.0 -R 116.90.86.181 -l 2
[JOB] watcher got notification, rebuilding
[JOB] watcher going to poll() 9 fds
[MGR] checkout IKE_SA by config 'dmvpn-DEVELVPN-tun0', me %any, other 116.90.86.181
[JOB] watcher got notification, rebuilding
[JOB] watcher going to poll() 9 fds
[JOB] watched FD 25 ready to write
[MGR] created IKE_SA (unnamed)[100]
[KNL] using 100.64.206.174 as address to reach 116.90.86.181/32
[IKE] queueing ISAKMP_VENDOR task
[IKE] queueing ISAKMP_CERT_PRE task
[IKE] queueing MAIN_MODE task
[IKE] queueing ISAKMP_CERT_POST task
[IKE] queueing ISAKMP_NATD task
[IKE] queueing QUICK_MODE task
[IKE] activating new tasks
[IKE] activating ISAKMP_VENDOR task
[IKE] activating ISAKMP_CERT_PRE task
[IKE] activating MAIN_MODE task
[IKE] activating ISAKMP_CERT_POST task
[IKE] activating ISAKMP_NATD task
[IKE] sending XAuth vendor ID
[ENC] added payload of type VENDOR_ID_V1 to message
[IKE] sending DPD vendor ID
[ENC] added payload of type VENDOR_ID_V1 to message
[IKE] sending FRAGMENTATION vendor ID
[ENC] added payload of type VENDOR_ID_V1 to message
[IKE] sending NAT-T (RFC 3947) vendor ID
[ENC] added payload of type VENDOR_ID_V1 to message
[IKE] sending draft-ietf-ipsec-nat-t-ike-02\n vendor ID
[ENC] added payload of type VENDOR_ID_V1 to message
[IKE] initiating Main Mode IKE_SA dmvpn-DEVELVPN-tun0[100] to 116.90.86.181
[IKE] IKE_SA dmvpn-DEVELVPN-tun0[100] state change: CREATED => CONNECTING
[CFG] configured proposals: IKE:AES_CBC_256/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024, IKE:AES_CBC_128/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024
[ENC] added payload of type SECURITY_ASSOCIATION_V1 to message
[ENC] order payloads in message
[ENC] added payload of type SECURITY_ASSOCIATION_V1 to message
[ENC] added payload of type VENDOR_ID_V1 to message
[ENC] added payload of type VENDOR_ID_V1 to message
[ENC] added payload of type VENDOR_ID_V1 to message
[ENC] added payload of type VENDOR_ID_V1 to message
[ENC] added payload of type VENDOR_ID_V1 to message
[ENC] generating ID_PROT request 0 [ SA V V V V V ]
[ENC] not encrypting payloads
[ENC] generating payload of type HEADER
[ENC] generating rule 0 IKE_SPI
[ENC] generating rule 1 IKE_SPI
[ENC] generating rule 2 U_INT_8
[ENC] generating rule 3 U_INT_4
[ENC] generating rule 4 U_INT_4
[ENC] generating rule 5 U_INT_8
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 FLAG
[ENC] generating rule 9 FLAG
[ENC] generating rule 10 FLAG
[ENC] generating rule 11 FLAG
[ENC] generating rule 12 FLAG
[ENC] generating rule 13 FLAG
[ENC] generating rule 14 U_INT_32
[ENC] generating rule 15 HEADER_LENGTH
[ENC] generating HEADER payload finished
[ENC] generating payload of type SECURITY_ASSOCIATION_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BIT
[ENC] generating rule 2 RESERVED_BIT
[ENC] generating rule 3 RESERVED_BIT
[ENC] generating rule 4 RESERVED_BIT
[ENC] generating rule 5 RESERVED_BIT
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 RESERVED_BIT
[ENC] generating rule 9 PAYLOAD_LENGTH
[ENC] generating rule 10 U_INT_32
[ENC] generating rule 11 U_INT_32
[ENC] generating rule 12 (1259)
[ENC] generating payload of type PROPOSAL_SUBSTRUCTURE_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 U_INT_8
[ENC] generating rule 4 U_INT_8
[ENC] generating rule 5 SPI_SIZE
[ENC] generating rule 6 U_INT_8
[ENC] generating rule 7 SPI
[ENC] generating rule 8 (1261)
[ENC] generating payload of type TRANSFORM_SUBSTRUCTURE_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 U_INT_8
[ENC] generating rule 4 U_INT_8
[ENC] generating rule 5 RESERVED_BYTE
[ENC] generating rule 6 RESERVED_BYTE
[ENC] generating rule 7 (1263)
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating TRANSFORM_SUBSTRUCTURE_V1 payload finished
[ENC] generating payload of type TRANSFORM_SUBSTRUCTURE_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 U_INT_8
[ENC] generating rule 4 U_INT_8
[ENC] generating rule 5 RESERVED_BYTE
[ENC] generating rule 6 RESERVED_BYTE
[ENC] generating rule 7 (1263)
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating TRANSFORM_SUBSTRUCTURE_V1 payload finished
[ENC] generating PROPOSAL_SUBSTRUCTURE_V1 payload finished
[ENC] generating SECURITY_ASSOCIATION_V1 payload finished
[ENC] generating payload of type VENDOR_ID_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 FLAG
[ENC] generating rule 2 RESERVED_BIT
[ENC] generating rule 3 RESERVED_BIT
[ENC] generating rule 4 RESERVED_BIT
[ENC] generating rule 5 RESERVED_BIT
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 RESERVED_BIT
[ENC] generating rule 9 PAYLOAD_LENGTH
[ENC] generating rule 10 CHUNK_DATA
[ENC] generating VENDOR_ID_V1 payload finished
[ENC] generating payload of type VENDOR_ID_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 FLAG
[ENC] generating rule 2 RESERVED_BIT
[ENC] generating rule 3 RESERVED_BIT
[ENC] generating rule 4 RESERVED_BIT
[ENC] generating rule 5 RESERVED_BIT
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 RESERVED_BIT
[ENC] generating rule 9 PAYLOAD_LENGTH
[ENC] generating rule 10 CHUNK_DATA
[ENC] generating VENDOR_ID_V1 payload finished
[ENC] generating payload of type VENDOR_ID_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 FLAG
[ENC] generating rule 2 RESERVED_BIT
[ENC] generating rule 3 RESERVED_BIT
[ENC] generating rule 4 RESERVED_BIT
[ENC] generating rule 5 RESERVED_BIT
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 RESERVED_BIT
[ENC] generating rule 9 PAYLOAD_LENGTH
[ENC] generating rule 10 CHUNK_DATA
[ENC] generating VENDOR_ID_V1 payload finished
[ENC] generating payload of type VENDOR_ID_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 FLAG
[ENC] generating rule 2 RESERVED_BIT
[ENC] generating rule 3 RESERVED_BIT
[ENC] generating rule 4 RESERVED_BIT
[ENC] generating rule 5 RESERVED_BIT
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 RESERVED_BIT
[ENC] generating rule 9 PAYLOAD_LENGTH
[ENC] generating rule 10 CHUNK_DATA
[ENC] generating VENDOR_ID_V1 payload finished
[ENC] generating payload of type VENDOR_ID_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 FLAG
[ENC] generating rule 2 RESERVED_BIT
[ENC] generating rule 3 RESERVED_BIT
[ENC] generating rule 4 RESERVED_BIT
[ENC] generating rule 5 RESERVED_BIT
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 RESERVED_BIT
[ENC] generating rule 9 PAYLOAD_LENGTH
[ENC] generating rule 10 CHUNK_DATA
[ENC] generating VENDOR_ID_V1 payload finished
[NET] sending packet: from 100.64.206.174[500] to 116.90.86.181[500] (216 bytes)
[MGR] checkin IKE_SA dmvpn-DEVELVPN-tun0[100]
[MGR] checkin of IKE_SA successful
[NET] received packet: from 116.90.86.181[500] to 100.64.206.174[500] (160 bytes)
[ENC] parsing body of message, first payload is SECURITY_ASSOCIATION_V1
[ENC] starting parsing a SECURITY_ASSOCIATION_V1 payload
[ENC] parsing SECURITY_ASSOCIATION_V1 payload, 132 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 RESERVED_BIT
[ENC] parsing rule 2 RESERVED_BIT
[ENC] parsing rule 3 RESERVED_BIT
[ENC] parsing rule 4 RESERVED_BIT
[ENC] parsing rule 5 RESERVED_BIT
[ENC] parsing rule 6 RESERVED_BIT
[ENC] parsing rule 7 RESERVED_BIT
[ENC] parsing rule 8 RESERVED_BIT
[ENC] parsing rule 9 PAYLOAD_LENGTH
[ENC] parsing rule 10 U_INT_32
[ENC] parsing rule 11 U_INT_32
[ENC] parsing rule 12 (1259)
[ENC] 44 bytes left, parsing recursively PROPOSAL_SUBSTRUCTURE_V1
[ENC] parsing PROPOSAL_SUBSTRUCTURE_V1 payload, 120 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 RESERVED_BYTE
[ENC] parsing rule 2 PAYLOAD_LENGTH
[ENC] parsing rule 3 U_INT_8
[ENC] parsing rule 4 U_INT_8
[ENC] parsing rule 5 SPI_SIZE
[ENC] parsing rule 6 U_INT_8
[ENC] parsing rule 7 SPI
[ENC] parsing rule 8 (1261)
[ENC] 36 bytes left, parsing recursively TRANSFORM_SUBSTRUCTURE_V1
[ENC] parsing TRANSFORM_SUBSTRUCTURE_V1 payload, 112 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 RESERVED_BYTE
[ENC] parsing rule 2 PAYLOAD_LENGTH
[ENC] parsing rule 3 U_INT_8
[ENC] parsing rule 4 U_INT_8
[ENC] parsing rule 5 RESERVED_BYTE
[ENC] parsing rule 6 RESERVED_BYTE
[ENC] parsing rule 7 (1263)
[ENC] 28 bytes left, parsing recursively TRANSFORM_ATTRIBUTE_V1
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload, 104 bytes left
[ENC] parsing rule 0 ATTRIBUTE_FORMAT
[ENC] parsing rule 1 ATTRIBUTE_TYPE
[ENC] parsing rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] parsing rule 3 ATTRIBUTE_VALUE
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] 24 bytes left, parsing recursively TRANSFORM_ATTRIBUTE_V1
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload, 100 bytes left
[ENC] parsing rule 0 ATTRIBUTE_FORMAT
[ENC] parsing rule 1 ATTRIBUTE_TYPE
[ENC] parsing rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] parsing rule 3 ATTRIBUTE_VALUE
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] 20 bytes left, parsing recursively TRANSFORM_ATTRIBUTE_V1
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload, 96 bytes left
[ENC] parsing rule 0 ATTRIBUTE_FORMAT
[ENC] parsing rule 1 ATTRIBUTE_TYPE
[ENC] parsing rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] parsing rule 3 ATTRIBUTE_VALUE
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] 16 bytes left, parsing recursively TRANSFORM_ATTRIBUTE_V1
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload, 92 bytes left
[ENC] parsing rule 0 ATTRIBUTE_FORMAT
[ENC] parsing rule 1 ATTRIBUTE_TYPE
[ENC] parsing rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] parsing rule 3 ATTRIBUTE_VALUE
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] 12 bytes left, parsing recursively TRANSFORM_ATTRIBUTE_V1
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload, 88 bytes left
[ENC] parsing rule 0 ATTRIBUTE_FORMAT
[ENC] parsing rule 1 ATTRIBUTE_TYPE
[ENC] parsing rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] parsing rule 3 ATTRIBUTE_VALUE
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] 8 bytes left, parsing recursively TRANSFORM_ATTRIBUTE_V1
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload, 84 bytes left
[ENC] parsing rule 0 ATTRIBUTE_FORMAT
[ENC] parsing rule 1 ATTRIBUTE_TYPE
[ENC] parsing rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] parsing rule 3 ATTRIBUTE_VALUE
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] 4 bytes left, parsing recursively TRANSFORM_ATTRIBUTE_V1
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload, 80 bytes left
[ENC] parsing rule 0 ATTRIBUTE_FORMAT
[ENC] parsing rule 1 ATTRIBUTE_TYPE
[ENC] parsing rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] parsing rule 3 ATTRIBUTE_VALUE
[ENC] parsing TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] parsing TRANSFORM_SUBSTRUCTURE_V1 payload finished
[ENC] parsing PROPOSAL_SUBSTRUCTURE_V1 payload finished
[ENC] parsing SECURITY_ASSOCIATION_V1 payload finished
[ENC] verifying payload of type SECURITY_ASSOCIATION_V1
[ENC] SECURITY_ASSOCIATION_V1 payload verified, adding to payload list
[ENC] starting parsing a VENDOR_ID_V1 payload
[ENC] parsing VENDOR_ID_V1 payload, 76 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 FLAG
[ENC] parsing rule 2 RESERVED_BIT
[ENC] parsing rule 3 RESERVED_BIT
[ENC] parsing rule 4 RESERVED_BIT
[ENC] parsing rule 5 RESERVED_BIT
[ENC] parsing rule 6 RESERVED_BIT
[ENC] parsing rule 7 RESERVED_BIT
[ENC] parsing rule 8 RESERVED_BIT
[ENC] parsing rule 9 PAYLOAD_LENGTH
[ENC] parsing rule 10 CHUNK_DATA
[ENC] parsing VENDOR_ID_V1 payload finished
[ENC] verifying payload of type VENDOR_ID_V1
[ENC] VENDOR_ID_V1 payload verified, adding to payload list
[ENC] starting parsing a VENDOR_ID_V1 payload
[ENC] parsing VENDOR_ID_V1 payload, 64 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 FLAG
[ENC] parsing rule 2 RESERVED_BIT
[ENC] parsing rule 3 RESERVED_BIT
[ENC] parsing rule 4 RESERVED_BIT
[ENC] parsing rule 5 RESERVED_BIT
[ENC] parsing rule 6 RESERVED_BIT
[ENC] parsing rule 7 RESERVED_BIT
[ENC] parsing rule 8 RESERVED_BIT
[ENC] parsing rule 9 PAYLOAD_LENGTH
[ENC] parsing rule 10 CHUNK_DATA
[ENC] parsing VENDOR_ID_V1 payload finished
[ENC] verifying payload of type VENDOR_ID_V1
[ENC] VENDOR_ID_V1 payload verified, adding to payload list
[ENC] starting parsing a VENDOR_ID_V1 payload
[ENC] parsing VENDOR_ID_V1 payload, 44 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 FLAG
[ENC] parsing rule 2 RESERVED_BIT
[ENC] parsing rule 3 RESERVED_BIT
[ENC] parsing rule 4 RESERVED_BIT
[ENC] parsing rule 5 RESERVED_BIT
[ENC] parsing rule 6 RESERVED_BIT
[ENC] parsing rule 7 RESERVED_BIT
[ENC] parsing rule 8 RESERVED_BIT
[ENC] parsing rule 9 PAYLOAD_LENGTH
[ENC] parsing rule 10 CHUNK_DATA
[ENC] parsing VENDOR_ID_V1 payload finished
[ENC] verifying payload of type VENDOR_ID_V1
[ENC] VENDOR_ID_V1 payload verified, adding to payload list
[ENC] starting parsing a VENDOR_ID_V1 payload
[ENC] parsing VENDOR_ID_V1 payload, 20 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 FLAG
[ENC] parsing rule 2 RESERVED_BIT
[ENC] parsing rule 3 RESERVED_BIT
[ENC] parsing rule 4 RESERVED_BIT
[ENC] parsing rule 5 RESERVED_BIT
[ENC] parsing rule 6 RESERVED_BIT
[ENC] parsing rule 7 RESERVED_BIT
[ENC] parsing rule 8 RESERVED_BIT
[ENC] parsing rule 9 PAYLOAD_LENGTH
[ENC] parsing rule 10 CHUNK_DATA
[ENC] parsing VENDOR_ID_V1 payload finished
[ENC] verifying payload of type VENDOR_ID_V1
[ENC] VENDOR_ID_V1 payload verified, adding to payload list
[ENC] process payload of type SECURITY_ASSOCIATION_V1
[ENC] process payload of type VENDOR_ID_V1
[ENC] process payload of type VENDOR_ID_V1
[ENC] process payload of type VENDOR_ID_V1
[ENC] process payload of type VENDOR_ID_V1
[ENC] verifying message structure
[ENC] found payload of type SECURITY_ASSOCIATION_V1
[ENC] found payload of type VENDOR_ID_V1
[ENC] found payload of type VENDOR_ID_V1
[ENC] found payload of type VENDOR_ID_V1
[ENC] found payload of type VENDOR_ID_V1
[ENC] parsed ID_PROT response 0 [ SA V V V V ]
[IKE] received XAuth vendor ID
[IKE] received DPD vendor ID
[IKE] received FRAGMENTATION vendor ID
[IKE] received NAT-T (RFC 3947) vendor ID
[CFG] selecting proposal:
[CFG] proposal matches
[CFG] received proposals: IKE:AES_CBC_256/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024
[CFG] configured proposals: IKE:AES_CBC_256/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024, IKE:AES_CBC_128/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024
[CFG] selected proposal: IKE:AES_CBC_256/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024
[IKE] reinitiating already active tasks
[IKE] ISAKMP_VENDOR task
[IKE] MAIN_MODE task
[LIB] size of DH secret exponent: 1023 bits
[ENC] added payload of type KEY_EXCHANGE_V1 to message
[ENC] added payload of type NONCE_V1 to message
[ENC] added payload of type NAT_D_V1 to message
[ENC] added payload of type NAT_D_V1 to message
[ENC] order payloads in message
[ENC] added payload of type KEY_EXCHANGE_V1 to message
[ENC] added payload of type NONCE_V1 to message
[ENC] added payload of type NAT_D_V1 to message
[ENC] added payload of type NAT_D_V1 to message
[ENC] generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
[ENC] not encrypting payloads
[ENC] generating payload of type HEADER
[ENC] generating rule 0 IKE_SPI
[ENC] generating rule 1 IKE_SPI
[ENC] generating rule 2 U_INT_8
[ENC] generating rule 3 U_INT_4
[ENC] generating rule 4 U_INT_4
[ENC] generating rule 5 U_INT_8
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 FLAG
[ENC] generating rule 9 FLAG
[ENC] generating rule 10 FLAG
[ENC] generating rule 11 FLAG
[ENC] generating rule 12 FLAG
[ENC] generating rule 13 FLAG
[ENC] generating rule 14 U_INT_32
[ENC] generating rule 15 HEADER_LENGTH
[ENC] generating HEADER payload finished
[ENC] generating payload of type KEY_EXCHANGE_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 CHUNK_DATA
[ENC] generating KEY_EXCHANGE_V1 payload finished
[ENC] generating payload of type NONCE_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 FLAG
[ENC] generating rule 2 RESERVED_BIT
[ENC] generating rule 3 RESERVED_BIT
[ENC] generating rule 4 RESERVED_BIT
[ENC] generating rule 5 RESERVED_BIT
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 RESERVED_BIT
[ENC] generating rule 9 PAYLOAD_LENGTH
[ENC] generating rule 10 CHUNK_DATA
[ENC] generating NONCE_V1 payload finished
[ENC] generating payload of type NAT_D_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 CHUNK_DATA
[ENC] generating NAT_D_V1 payload finished
[ENC] generating payload of type NAT_D_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 CHUNK_DATA
[ENC] generating NAT_D_V1 payload finished
[NET] sending packet: from 100.64.206.174[500] to 116.90.86.181[500] (244 bytes)
[MGR] checkin IKE_SA dmvpn-DEVELVPN-tun0[100]
[MGR] checkin of IKE_SA successful
[NET] received packet: from 116.90.86.181[500] to 100.64.206.174[500] (244 bytes)
[ENC] parsing body of message, first payload is KEY_EXCHANGE_V1
[ENC] starting parsing a KEY_EXCHANGE_V1 payload
[ENC] parsing KEY_EXCHANGE_V1 payload, 216 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 RESERVED_BYTE
[ENC] parsing rule 2 PAYLOAD_LENGTH
[ENC] parsing rule 3 CHUNK_DATA
[ENC] parsing KEY_EXCHANGE_V1 payload finished
[ENC] verifying payload of type KEY_EXCHANGE_V1
[ENC] KEY_EXCHANGE_V1 payload verified, adding to payload list
[ENC] starting parsing a NONCE_V1 payload
[ENC] parsing NONCE_V1 payload, 84 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 FLAG
[ENC] parsing rule 2 RESERVED_BIT
[ENC] parsing rule 3 RESERVED_BIT
[ENC] parsing rule 4 RESERVED_BIT
[ENC] parsing rule 5 RESERVED_BIT
[ENC] parsing rule 6 RESERVED_BIT
[ENC] parsing rule 7 RESERVED_BIT
[ENC] parsing rule 8 RESERVED_BIT
[ENC] parsing rule 9 PAYLOAD_LENGTH
[ENC] parsing rule 10 CHUNK_DATA
[ENC] parsing NONCE_V1 payload finished
[ENC] verifying payload of type NONCE_V1
[ENC] NONCE_V1 payload verified, adding to payload list
[ENC] starting parsing a NAT_D_V1 payload
[ENC] parsing NAT_D_V1 payload, 48 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 RESERVED_BYTE
[ENC] parsing rule 2 PAYLOAD_LENGTH
[ENC] parsing rule 3 CHUNK_DATA
[ENC] parsing NAT_D_V1 payload finished
[ENC] verifying payload of type NAT_D_V1
[ENC] NAT_D_V1 payload verified, adding to payload list
[ENC] starting parsing a NAT_D_V1 payload
[ENC] parsing NAT_D_V1 payload, 24 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 RESERVED_BYTE
[ENC] parsing rule 2 PAYLOAD_LENGTH
[ENC] parsing rule 3 CHUNK_DATA
[ENC] parsing NAT_D_V1 payload finished
[ENC] verifying payload of type NAT_D_V1
[ENC] NAT_D_V1 payload verified, adding to payload list
[ENC] process payload of type KEY_EXCHANGE_V1
[ENC] process payload of type NONCE_V1
[ENC] process payload of type NAT_D_V1
[ENC] process payload of type NAT_D_V1
[ENC] verifying message structure
[ENC] found payload of type KEY_EXCHANGE_V1
[ENC] found payload of type NONCE_V1
[ENC] found payload of type NAT_D_V1
[ENC] found payload of type NAT_D_V1
[ENC] parsed ID_PROT response 0 [ KE No NAT-D NAT-D ]
[IKE] local host is behind NAT, sending keep alives
[IKE] reinitiating already active tasks
[IKE] ISAKMP_VENDOR task
[IKE] MAIN_MODE task
[ENC] added payload of type ID_V1 to message
[ENC] added payload of type HASH_V1 to message
[ENC] order payloads in message
[ENC] added payload of type ID_V1 to message
[ENC] added payload of type HASH_V1 to message
[ENC] generating ID_PROT request 0 [ ID HASH ]
[ENC] insert payload ID_V1 into encrypted payload
[ENC] insert payload HASH_V1 into encrypted payload
[ENC] generating payload of type HEADER
[ENC] generating rule 0 IKE_SPI
[ENC] generating rule 1 IKE_SPI
[ENC] generating rule 2 U_INT_8
[ENC] generating rule 3 U_INT_4
[ENC] generating rule 4 U_INT_4
[ENC] generating rule 5 U_INT_8
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 FLAG
[ENC] generating rule 9 FLAG
[ENC] generating rule 10 FLAG
[ENC] generating rule 11 FLAG
[ENC] generating rule 12 FLAG
[ENC] generating rule 13 FLAG
[ENC] generating rule 14 U_INT_32
[ENC] generating rule 15 HEADER_LENGTH
[ENC] generating HEADER payload finished
[ENC] generating payload of type ID_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 U_INT_8
[ENC] generating rule 4 U_INT_8
[ENC] generating rule 5 U_INT_16
[ENC] generating rule 6 CHUNK_DATA
[ENC] generating ID_V1 payload finished
[ENC] generating payload of type HASH_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 CHUNK_DATA
[ENC] generating HASH_V1 payload finished
[ENC] generated content in encrypted payload
[ENC] generating payload of type ENCRYPTED_V1
[ENC] generating rule 0 ENCRYPTED_DATA
[ENC] generating ENCRYPTED_V1 payload finished
[NET] sending packet: from 100.64.206.174[4500] to 116.90.86.181[4500] (76 bytes)
[MGR] checkin IKE_SA dmvpn-DEVELVPN-tun0[100]
[MGR] checkin of IKE_SA successful
[NET] received packet: from 116.90.86.181[4500] to 100.64.206.174[4500] (76 bytes)
[ENC] parsing body of message, first payload is ID_V1
[ENC] parsing ENCRYPTED_V1 payload, 48 bytes left
[ENC] parsing rule 0 ENCRYPTED_DATA
[ENC] parsing ENCRYPTED_V1 payload finished
[ENC] process payload of type ENCRYPTED_V1
[ENC] found an encrypted payload
[ENC] parsing ID_V1 payload, 48 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 RESERVED_BYTE
[ENC] parsing rule 2 PAYLOAD_LENGTH
[ENC] parsing rule 3 U_INT_8
[ENC] parsing rule 4 U_INT_8
[ENC] parsing rule 5 U_INT_16
[ENC] parsing rule 6 CHUNK_DATA
[ENC] parsing ID_V1 payload finished
[ENC] parsing HASH_V1 payload, 36 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 RESERVED_BYTE
[ENC] parsing rule 2 PAYLOAD_LENGTH
[ENC] parsing rule 3 CHUNK_DATA
[ENC] parsing HASH_V1 payload finished
[ENC] parsed content of encrypted payload
[ENC] insert decrypted payload of type ID_V1 at end of list
[ENC] insert decrypted payload of type HASH_V1 at end of list
[ENC] verifying message structure
[ENC] found payload of type ID_V1
[ENC] found payload of type HASH_V1
[ENC] parsed ID_PROT response 0 [ ID HASH ]
[IKE] IKE_SA dmvpn-DEVELVPN-tun0[100] established between 100.64.206.174[100.64.206.174]...116.90.86.181[116.90.86.181]
[IKE] IKE_SA dmvpn-DEVELVPN-tun0[100] state change: CONNECTING => ESTABLISHED
[IKE] scheduling rekeying in 3559s
[IKE] maximum IKE_SA lifetime 3919s
[IKE] activating new tasks
[IKE] activating QUICK_MODE task
[CFG] configured proposals: ESP:AES_CBC_256/HMAC_SHA1_96/MODP_1024/NO_EXT_SEQ, ESP:3DES_CBC/HMAC_MD5_96/MODP_1024/NO_EXT_SEQ
[KNL] got SPI c7d749ca
[CFG] configured proposals: ESP:AES_CBC_256/HMAC_SHA1_96/MODP_1024/NO_EXT_SEQ, ESP:3DES_CBC/HMAC_MD5_96/MODP_1024/NO_EXT_SEQ
[LIB] size of DH secret exponent: 1023 bits
[ENC] added payload of type SECURITY_ASSOCIATION_V1 to message
[ENC] added payload of type NONCE_V1 to message
[ENC] added payload of type KEY_EXCHANGE_V1 to message
[CFG] proposing traffic selectors for us:
[CFG] 115.60.59.223/32[gre]
[CFG] proposing traffic selectors for other:
[CFG] 116.90.86.181/32[gre]
[ENC] added payload of type ID_V1 to message
[ENC] added payload of type ID_V1 to message
[ENC] order payloads in message
[ENC] added payload of type SECURITY_ASSOCIATION_V1 to message
[ENC] added payload of type NONCE_V1 to message
[ENC] added payload of type KEY_EXCHANGE_V1 to message
[ENC] added payload of type ID_V1 to message
[ENC] added payload of type ID_V1 to message
[ENC] generating QUICK_MODE request 2108957326 [ HASH SA No KE ID ID ]
[ENC] insert payload HASH_V1 into encrypted payload
[ENC] insert payload SECURITY_ASSOCIATION_V1 into encrypted payload
[ENC] insert payload NONCE_V1 into encrypted payload
[ENC] insert payload KEY_EXCHANGE_V1 into encrypted payload
[ENC] insert payload ID_V1 into encrypted payload
[ENC] insert payload ID_V1 into encrypted payload
[ENC] generating payload of type HEADER
[ENC] generating rule 0 IKE_SPI
[ENC] generating rule 1 IKE_SPI
[ENC] generating rule 2 U_INT_8
[ENC] generating rule 3 U_INT_4
[ENC] generating rule 4 U_INT_4
[ENC] generating rule 5 U_INT_8
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 FLAG
[ENC] generating rule 9 FLAG
[ENC] generating rule 10 FLAG
[ENC] generating rule 11 FLAG
[ENC] generating rule 12 FLAG
[ENC] generating rule 13 FLAG
[ENC] generating rule 14 U_INT_32
[ENC] generating rule 15 HEADER_LENGTH
[ENC] generating HEADER payload finished
[ENC] generating payload of type HASH_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 CHUNK_DATA
[ENC] generating HASH_V1 payload finished
[ENC] generating payload of type SECURITY_ASSOCIATION_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BIT
[ENC] generating rule 2 RESERVED_BIT
[ENC] generating rule 3 RESERVED_BIT
[ENC] generating rule 4 RESERVED_BIT
[ENC] generating rule 5 RESERVED_BIT
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 RESERVED_BIT
[ENC] generating rule 9 PAYLOAD_LENGTH
[ENC] generating rule 10 U_INT_32
[ENC] generating rule 11 U_INT_32
[ENC] generating rule 12 (1259)
[ENC] generating payload of type PROPOSAL_SUBSTRUCTURE_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 U_INT_8
[ENC] generating rule 4 U_INT_8
[ENC] generating rule 5 SPI_SIZE
[ENC] generating rule 6 U_INT_8
[ENC] generating rule 7 SPI
[ENC] generating rule 8 (1261)
[ENC] generating payload of type TRANSFORM_SUBSTRUCTURE_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 U_INT_8
[ENC] generating rule 4 U_INT_8
[ENC] generating rule 5 RESERVED_BYTE
[ENC] generating rule 6 RESERVED_BYTE
[ENC] generating rule 7 (1263)
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating TRANSFORM_SUBSTRUCTURE_V1 payload finished
[ENC] generating payload of type TRANSFORM_SUBSTRUCTURE_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 U_INT_8
[ENC] generating rule 4 U_INT_8
[ENC] generating rule 5 RESERVED_BYTE
[ENC] generating rule 6 RESERVED_BYTE
[ENC] generating rule 7 (1263)
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating payload of type TRANSFORM_ATTRIBUTE_V1
[ENC] generating rule 0 ATTRIBUTE_FORMAT
[ENC] generating rule 1 ATTRIBUTE_TYPE
[ENC] generating rule 2 ATTRIBUTE_LENGTH_OR_VALUE
[ENC] generating rule 3 ATTRIBUTE_VALUE
[ENC] generating TRANSFORM_ATTRIBUTE_V1 payload finished
[ENC] generating TRANSFORM_SUBSTRUCTURE_V1 payload finished
[ENC] generating PROPOSAL_SUBSTRUCTURE_V1 payload finished
[ENC] generating SECURITY_ASSOCIATION_V1 payload finished
[ENC] generating payload of type NONCE_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 FLAG
[ENC] generating rule 2 RESERVED_BIT
[ENC] generating rule 3 RESERVED_BIT
[ENC] generating rule 4 RESERVED_BIT
[ENC] generating rule 5 RESERVED_BIT
[ENC] generating rule 6 RESERVED_BIT
[ENC] generating rule 7 RESERVED_BIT
[ENC] generating rule 8 RESERVED_BIT
[ENC] generating rule 9 PAYLOAD_LENGTH
[ENC] generating rule 10 CHUNK_DATA
[ENC] generating NONCE_V1 payload finished
[ENC] generating payload of type KEY_EXCHANGE_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 CHUNK_DATA
[ENC] generating KEY_EXCHANGE_V1 payload finished
[ENC] generating payload of type ID_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 U_INT_8
[ENC] generating rule 4 U_INT_8
[ENC] generating rule 5 U_INT_16
[ENC] generating rule 6 CHUNK_DATA
[ENC] generating ID_V1 payload finished
[ENC] generating payload of type ID_V1
[ENC] generating rule 0 U_INT_8
[ENC] generating rule 1 RESERVED_BYTE
[ENC] generating rule 2 PAYLOAD_LENGTH
[ENC] generating rule 3 U_INT_8
[ENC] generating rule 4 U_INT_8
[ENC] generating rule 5 U_INT_16
[ENC] generating rule 6 CHUNK_DATA
[ENC] generating ID_V1 payload finished
[ENC] generated content in encrypted payload
[ENC] generating payload of type ENCRYPTED_V1
[ENC] generating rule 0 ENCRYPTED_DATA
[ENC] generating ENCRYPTED_V1 payload finished
[NET] sending packet: from 100.64.206.174[4500] to 116.90.86.181[4500] (332 bytes)
[MGR] checkin IKE_SA dmvpn-DEVELVPN-tun0[100]
[MGR] checkin of IKE_SA successful
[NET] received packet: from 116.90.86.181[4500] to 100.64.206.174[4500] (76 bytes)
[ENC] parsing body of message, first payload is HASH_V1
[ENC] parsing ENCRYPTED_V1 payload, 48 bytes left
[ENC] parsing rule 0 ENCRYPTED_DATA
[ENC] parsing ENCRYPTED_V1 payload finished
[ENC] process payload of type ENCRYPTED_V1
[ENC] found an encrypted payload
[ENC] parsing HASH_V1 payload, 48 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 RESERVED_BYTE
[ENC] parsing rule 2 PAYLOAD_LENGTH
[ENC] parsing rule 3 CHUNK_DATA
[ENC] parsing HASH_V1 payload finished
[ENC] parsing NOTIFY_V1 payload, 24 bytes left
[ENC] parsing rule 0 U_INT_8
[ENC] parsing rule 1 RESERVED_BIT
[ENC] parsing rule 2 RESERVED_BIT
[ENC] parsing rule 3 RESERVED_BIT
[ENC] parsing rule 4 RESERVED_BIT
[ENC] parsing rule 5 RESERVED_BIT
[ENC] parsing rule 6 RESERVED_BIT
[ENC] parsing rule 7 RESERVED_BIT
[ENC] parsing rule 8 RESERVED_BIT
[ENC] parsing rule 9 PAYLOAD_LENGTH
[ENC] parsing rule 10 U_INT_32
[ENC] parsing rule 11 U_INT_8
[ENC] parsing rule 12 SPI_SIZE
[ENC] parsing rule 13 U_INT_16
[ENC] parsing rule 14 SPI
[ENC] parsing rule 15 CHUNK_DATA
[ENC] parsing NOTIFY_V1 payload finished
[ENC] parsed content of encrypted payload
[ENC] insert decrypted payload of type HASH_V1 at end of list
[ENC] insert decrypted payload of type NOTIFY_V1 at end of list
[ENC] verifying message structure
[ENC] found payload of type NOTIFY_V1
[ENC] found payload of type NOTIFY_V1
[ENC] parsed INFORMATIONAL_V1 request 2815069379 [ HASH N(INVAL_ID) ]
[IKE] received INVALID_ID_INFORMATION error notify
[CHD] CHILD_SA dmvpn{241} state change: CREATED => DESTROYING
[KNL] deleting SAD entry with SPI c7d749ca
[KNL] deleted SAD entry with SPI c7d749ca
[MGR] checkin IKE_SA dmvpn-DEVELVPN-tun0[100]
[MGR] checkin of IKE_SA successful
initiate failed: establishing CHILD_SA 'dmvpn' failed
[edit]

Jan 23 2019, 11:19 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
UnicronNL added a comment to T1186: Setup DMVPN cannot work.

@bjtangseng Can you post the output, than i can maybe look and mod things.

Jan 23 2019, 10:38 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

Now I will help you test DMVPN, If you have time, maybe we can do it together

Jan 23 2019, 10:34 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
UnicronNL added a comment to T1186: Setup DMVPN cannot work.

@bjtangseng thanks!

Jan 23 2019, 7:23 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
tak added a comment to T160: Support NAT64.

jool 4.0.0 has been released.
http://jool.mx/en/index.html

Jan 23 2019, 12:44 AM · VyOS 1.4 Sagitta (1.4.0-epa1)

Jan 22 2019

njh added a comment to T1190: Separate out build-host setup shell commands from Dockerfile to shell script.

I have taken a look at the steps for moving the commands into a separate shell script.

Jan 22 2019, 8:20 PM · VyOS 1.3 Equuleus (1.3.7)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

OK, I will test at tomorrow night (Beijing Time). If have any information, I will send messages

Jan 22 2019, 3:42 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
syncer edited projects for T823: Rewrite DHCP op mode in the new style, added: VyOS 1.3 Equuleus; removed VyOS 1.2 Crux (VyOS 1.2.0-EPA3).
Jan 22 2019, 1:24 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
UnicronNL added a comment to T1186: Setup DMVPN cannot work.

@bjtangseng The spoke, and do not reboot.
make sure hub is up and do changes mentioned in previous post on the spoke (no reboot)
and post the output of:

Jan 22 2019, 1:03 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

which site you want to change, Hub site or Spoke Site. last time I change swanctl.conf file, If I reboot Vyos that file will be change back to dynamic[gre].

Jan 22 2019, 11:53 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
c-po triaged T1190: Separate out build-host setup shell commands from Dockerfile to shell script as Wishlist priority.
Jan 22 2019, 6:53 AM · VyOS 1.3 Equuleus (1.3.7)

Jan 21 2019

UnicronNL added a comment to T1186: Setup DMVPN cannot work.

@bjtangseng
can you please edit your swanctl.conf file and put the local_ts to 115.60.62.155/32[gre] ( local_ts = 115.60.62.155/32[gre] )
after editing swanctl please run:
sudo swanctl -q
then please check if you can connect with:
sudo swanctl -i -c dmvpn -S 100.64.161.96 -R 116.90.86.181 -l 2
or:
sudo swanctl -i -c dmvpn -S 0.0.0.0 -R 116.90.86.181 -l 2

Jan 21 2019, 11:43 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
rherold closed T1164: show configuration files Permission denied as Resolved.

Can't reproduce with EPA3

Jan 21 2019, 9:42 AM · Rejected
bjtangseng added a comment to T1186: Setup DMVPN cannot work.

Today, I try to edit swancl.conf, but doesn't work. I will wait you new build. I can test that again

Jan 21 2019, 5:41 AM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)

Jan 20 2019

btopping added a comment to T1186: Setup DMVPN cannot work.

Hi all, I honestly forgot that I wrote this or I would have closed it. I'll go through and check for any other tickets I have open shortly.

Jan 20 2019, 10:26 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
UnicronNL edited projects for T1186: Setup DMVPN cannot work, added: VyOS 1.3 Equuleus; removed VyOS 1.2 Crux (VyOS 1.2.0-GA).
Jan 20 2019, 10:23 PM · VyOS-1.2.0-GA, VyOS 1.2 Crux (VyOS 1.2.0-GA)
UnicronNL added a comment to T1100: Spoke site dynamic IP over NAT connect to Hub site.

@bjtangseng could you try with IKEv2 on both hub and spoke?
set vpn ipsec ike-group IKE-HUB key-exchange ikev2 for hub
set vpn ipsec ike-group IKE-SPOKE key-exchange ikev2 for spoke.

Jan 20 2019, 9:31 PM · VyOS 1.3 Equuleus (1.3.0-epa1)
syncer lowered the priority of T1066: Missing NICs from High to Normal.
Jan 20 2019, 1:25 PM · VyOS 1.2 Crux (VyOS 1.2.1)
syncer changed the status of T1164: show configuration files Permission denied from Open to On hold.

We need more info and full config

Jan 20 2019, 12:28 PM · Rejected
syncer triaged T1166: Flow-accounting not working with PPPoE interfaces as Low priority.
Jan 20 2019, 12:25 PM · VyOS 1.3 Equuleus (1.3.7), test
syncer triaged T1183: BFD Support via FRR as Normal priority.
Jan 20 2019, 11:55 AM · VyOS 1.2 Crux (VyOS 1.2.4)
First
Prev
Next