L2TP w/ IPSEC failing

umbrachimera · 16 January 2022 01:27

Hello.

Post your terminal/konsole in- and output as text (no pictures) from:

System:
Kernel: 5.16.0-zen1-1-zen x86_64 bits: 64 compiler: gcc v: 11.1.0
parameters: BOOT_IMAGE=/@/boot/vmlinuz-linux-zen
root=UUID=ba2fb729-b4b9-49f0-8223-47f0378d19c9 rw rootflags=subvol=@
quiet splash rd.udev.log_priority=3 vt.global_cursor_default=0
systemd.unified_cgroup_hierarchy=1 loglevel=3
Desktop: KDE Plasma 5.23.5 tk: Qt 5.15.2 info: latte-dock wm: kwin_x11
vt: 1 dm: SDDM Distro: Garuda Linux base: Arch Linux
Machine:
Type: Laptop System: ASUSTeK product: ROG Strix G513QM_G513QM v: 1.0
serial: <superuser required>
Mobo: ASUSTeK model: G513QM v: 1.0 serial: <superuser required>
UEFI: American Megatrends LLC. v: G513QM.314 date: 09/03/2021
Battery:
ID-1: BAT0 charge: 15.4 Wh (19.0%) condition: 81.2/90.0 Wh (90.2%)
volts: 14.2 min: 15.9 model: AS3GWAF3KC GA50358 type: Li-ion
serial: <filter> status: Discharging
CPU:
Info: model: AMD Ryzen 9 5900HX with Radeon Graphics bits: 64 type: MT MCP
arch: Zen 3 family: 0x19 (25) model-id: 0x50 (80) stepping: 0
microcode: 0xA50000B
Topology: cpus: 1x cores: 8 tpc: 2 threads: 16 smt: enabled cache:
L1: 512 KiB desc: d-8x32 KiB; i-8x32 KiB L2: 4 MiB desc: 8x512 KiB
L3: 16 MiB desc: 1x16 MiB
Speed (MHz): avg: 2706 high: 4540 min/max: 1200/4889 boost: enabled
scaling: driver: acpi-cpufreq governor: performance cores: 1: 2633 2: 4540
3: 1548 4: 2290 5: 2546 6: 2581 7: 2340 8: 3443 9: 1979 10: 2246 11: 2124
12: 2124 13: 3615 14: 3630 15: 2055 16: 3617 bogomips: 105400
Flags: avx avx2 ht lm nx pae sse sse2 sse3 sse4_1 sse4_2 sse4a ssse3 svm
Vulnerabilities:
Type: itlb_multihit status: Not affected
Type: l1tf status: Not affected
Type: mds status: Not affected
Type: meltdown status: Not affected
Type: spec_store_bypass
mitigation: Speculative Store Bypass disabled via prctl
Type: spectre_v1
mitigation: usercopy/swapgs barriers and __user pointer sanitization
Type: spectre_v2 mitigation: Full AMD retpoline, IBPB: conditional,
IBRS_FW, STIBP: always-on, RSB filling
Type: srbds status: Not affected
Type: tsx_async_abort status: Not affected
Graphics:
Device-1: NVIDIA GA106M [GeForce RTX 3060 Mobile / Max-Q] vendor: ASUSTeK
driver: nvidia v: 495.46 alternate: nouveau,nvidia_drm bus-ID: 01:00.0
chip-ID: 10de:2520 class-ID: 0300
Device-2: AMD Cezanne vendor: ASUSTeK driver: amdgpu v: kernel
bus-ID: 06:00.0 chip-ID: 1002:1638 class-ID: 0300
Display: x11 server: X.Org 1.21.1.3 compositor: kwin_x11 driver:
loaded: modesetting,nvidia display-ID: :0 screens: 1
Screen-1: 0 s-res: 1920x1080 s-dpi: 96 s-size: 508x285mm (20.0x11.2")
s-diag: 582mm (22.9")
Monitor-1: eDP-1 res: 1920x1080 hz: 144 dpi: 142
size: 344x193mm (13.5x7.6") diag: 394mm (15.5")
OpenGL: renderer: AMD RENOIR (DRM 3.44.0 5.16.0-zen1-1-zen LLVM 13.0.0)
v: 4.6 Mesa 21.3.4 direct render: Yes
Audio:
Device-1: NVIDIA vendor: ASUSTeK driver: snd_hda_intel v: kernel
bus-ID: 01:00.1 chip-ID: 10de:228e class-ID: 0403
Device-2: AMD Renoir Radeon High Definition Audio vendor: ASUSTeK
driver: snd_hda_intel v: kernel bus-ID: 06:00.1 chip-ID: 1002:1637
class-ID: 0403
Device-3: AMD Raven/Raven2/FireFlight/Renoir Audio Processor
vendor: ASUSTeK driver: N/A
alternate: snd_pci_acp3x, snd_rn_pci_acp3x, snd_pci_acp5x, snd_pci_acp6x
bus-ID: 06:00.5 chip-ID: 1022:15e2 class-ID: 0480
Device-4: AMD Family 17h HD Audio vendor: ASUSTeK driver: snd_hda_intel
v: kernel bus-ID: 06:00.6 chip-ID: 1022:15e3 class-ID: 0403
Sound Server-1: ALSA v: k5.16.0-zen1-1-zen running: yes
Sound Server-2: JACK v: 1.9.20 running: no
Sound Server-3: PulseAudio v: 15.0 running: no
Sound Server-4: PipeWire v: 0.3.43 running: yes
Network:
Device-1: Realtek RTL8111/8168/8411 PCI Express Gigabit Ethernet
vendor: ASUSTeK driver: r8169 v: kernel port: e000 bus-ID: 02:00.0
chip-ID: 10ec:8168 class-ID: 0200
IF: enp2s0 state: down mac: <filter>
Device-2: MEDIATEK vendor: AzureWave driver: mt7921e v: kernel port: N/A
bus-ID: 03:00.0 chip-ID: 14c3:7961 class-ID: 0280
IF: wlp3s0 state: up mac: <filter>
IF-ID-1: vboxnet0 state: down mac: <filter>
Bluetooth:
Device-1: IMC Networks Wireless_Device type: USB driver: btusb v: 0.8
bus-ID: 3-4:2 chip-ID: 13d3:3563 class-ID: e001 serial: <filter>
Report: bt-adapter ID: hci0 rfk-id: 0 state: up address: <filter>
Drives:
Local Storage: total: 1.4 TiB used: 185.7 GiB (13.0%)
SMART Message: Unable to run smartctl. Root privileges required.
ID-1: /dev/nvme0n1 maj-min: 259:2 vendor: SK Hynix model: HFM001TD3JX013N
size: 953.87 GiB block-size: physical: 512 B logical: 512 B
speed: 31.6 Gb/s lanes: 4 type: SSD serial: <filter> rev: 41000C20
temp: 38.9 C scheme: GPT
ID-2: /dev/nvme1n1 maj-min: 259:0 vendor: Intel model: SSDPEKKW512G8
size: 476.94 GiB block-size: physical: 512 B logical: 512 B
speed: 31.6 Gb/s lanes: 4 type: SSD serial: <filter> rev: 004C
temp: 46.9 C scheme: GPT
Partition:
ID-1: / raw-size: 476.94 GiB size: 476.94 GiB (100.00%)
used: 185.67 GiB (38.9%) fs: btrfs dev: /dev/nvme1n1p1 maj-min: 259:1
ID-2: /boot/efi raw-size: 100 MiB size: 96 MiB (96.00%)
used: 25.5 MiB (26.6%) fs: vfat dev: /dev/nvme0n1p1 maj-min: 259:3
ID-3: /home raw-size: 476.94 GiB size: 476.94 GiB (100.00%)
used: 185.67 GiB (38.9%) fs: btrfs dev: /dev/nvme1n1p1 maj-min: 259:1
ID-4: /var/log raw-size: 476.94 GiB size: 476.94 GiB (100.00%)
used: 185.67 GiB (38.9%) fs: btrfs dev: /dev/nvme1n1p1 maj-min: 259:1
ID-5: /var/tmp raw-size: 476.94 GiB size: 476.94 GiB (100.00%)
used: 185.67 GiB (38.9%) fs: btrfs dev: /dev/nvme1n1p1 maj-min: 259:1
Swap:
Kernel: swappiness: 133 (default 60) cache-pressure: 100 (default)
ID-1: swap-1 type: zram size: 15.12 GiB used: 33.5 MiB (0.2%)
priority: 100 dev: /dev/zram0
Sensors:
System Temperatures: cpu: 66.0 C mobo: N/A gpu: amdgpu temp: 62.0 C
Fan Speeds (RPM): cpu: 0
Info:
Processes: 413 Uptime: 37m wakeups: 5 Memory: 15.12 GiB
used: 9.38 GiB (62.0%) Init: systemd v: 250 tool: systemctl Compilers:
gcc: 11.1.0 clang: 13.0.0 Packages: pacman: 1862 lib: 551 Shell: fish
v: 3.3.1 default: Bash v: 5.1.16 running-in: konsole inxi: 3.3.11

Report everything you have already attempted to solve your problem.

I've installed networkmanager-lt2tp, and I keep getting and error when attempting to connect. this is journalctl -r output

journalctl -r
Jan 15 20:23:44 umbra-rogstrixg513qm kwin_x11[7807]: qt.qpa.xcb: QXcbConnection: XCB error: 9 (BadDrawable), sequence: 48925, resource id: 46137551, major code: 14 (GetGeometry), min>
Jan 15 20:23:44 umbra-rogstrixg513qm kwin_x11[7807]: qt.qpa.xcb: QXcbConnection: XCB error: 9 (BadDrawable), sequence: 48924, resource id: 46137549, major code: 14 (GetGeometry), min>
Jan 15 20:23:44 umbra-rogstrixg513qm kwin_x11[7807]: qt.qpa.xcb: QXcbConnection: XCB error: 9 (BadDrawable), sequence: 48923, resource id: 46137547, major code: 14 (GetGeometry), min>
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[688]: <warn>  [1642296224.6590] vpn-connection[0x560eb61e2140,b2fe13cc-73c8-444a-b9d6-0d09c9b902a5,"Work",0]: VPN connection: fail>
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[688]: <info>  [1642296224.6589] vpn-connection[0x560eb61e2140,b2fe13cc-73c8-444a-b9d6-0d09c9b902a5,"Work",0]: VPN service disappea>
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[688]: <info>  [1642296224.6577] vpn-connection[0x560eb61e2140,b2fe13cc-73c8-444a-b9d6-0d09c9b902a5,"Work",0]: VPN plugin: state ch>
Jan 15 20:23:44 umbra-rogstrixg513qm nm-l2tp-service[27099]: g_dbus_method_invocation_take_error: assertion 'error != NULL' failed
Jan 15 20:23:44 umbra-rogstrixg513qm ananicy-cpp[683]: [2022-01-15 20:23:44.656] [info] rm(27244)
Jan 15 20:23:44 umbra-rogstrixg513qm ipsec_starter[27164]: ipsec starter stopped
Jan 15 20:23:44 umbra-rogstrixg513qm ipsec_starter[27164]: charon stopped after 200 ms
Jan 15 20:23:44 umbra-rogstrixg513qm ipsec_starter[27164]: 
Jan 15 20:23:44 umbra-rogstrixg513qm ipsec_starter[27164]: child 27166 (charon) has quit (exit code 0)
Jan 15 20:23:44 umbra-rogstrixg513qm charon[27166]: 00[IKE] uninstalling bypass policy for fe80::/64
Jan 15 20:23:44 umbra-rogstrixg513qm charon[27166]: 00[IKE] uninstalling bypass policy for ::1/128
Jan 15 20:23:44 umbra-rogstrixg513qm charon[27166]: 00[IKE] uninstalling bypass policy for 192.168.1.0/24
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: establishing connection 'b2fe13cc-73c8-444a-b9d6-0d09c9b902a5' failed
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: destroying IKE_SA in state CONNECTING without notification
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: sending packet: from 192.168.1.121[4500] to 19WORKIP[4500] (76 bytes)
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: sending retransmit 1 of request message ID 0, seq 3
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: sending packet: from 192.168.1.121[4500] to WORKIP[4500] (76 bytes)
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: generating ID_PROT request 0 [ ID HASH ]
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: local host is behind NAT, sending keep alives
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: parsed ID_PROT response 0 [ KE No NAT-D NAT-D ]
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: received packet: from WORKIP[500] to 192.168.1.121[500] (364 bytes)
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: sending packet: from 192.168.1.121[500] to WORKIP[500] (372 bytes)
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: selected proposal: IKE:AES_CBC_256/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_2048
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: received FRAGMENTATION vendor ID
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: received DPD vendor ID
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: received XAuth vendor ID
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: received NAT-T (RFC 3947) vendor ID
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: parsed ID_PROT response 0 [ SA V V V V ]
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: received packet: from WORKIP[[500] to 192.168.1.121[500] (160 bytes)
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: sending packet: from 192.168.1.121[500] to WORKIP[500] (532 bytes)
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: generating ID_PROT request 0 [ SA V V V V V ]
Jan 15 20:23:44 umbra-rogstrixg513qm NetworkManager[27194]: initiating Main Mode IKE_SA b2fe13cc-73c8-444a-b9d6-0d09c9b902a5[1] to WORKIP

umbrachimera · 16 January 2022 01:27

i've confirmed all credentials are correct, they are same I've used on my Windows VM for work.

filo · 16 January 2022 06:37

Could it be the same bug as here upstream?

github.com/nm-l2tp/NetworkManager-l2tp

L2pt Ipsec VPN not working on fedora 34

opened 05:30AM - 03 Jan 22 UTC

kapila1982

Dear All, I;m try to connect remote server via VPN from my laptop (running o…n fedora 34 64 bits) however I can able to connect from windows 10 using **E81.40 End Point Client.msi** software [root@fedora ike]# uname -a Linux fedora 5.15.11-100.fc34.x86_64 #1 SMP Wed Dec 22 15:44:37 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux Network Manager logs Jan 03 09:31:39 fedora pluto[31833]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0": initiating connection 'f97be7c8-8b9a-4ce5-8b37-512288c78df0' with serial $1 which received a Delete/Notify but must remain up per local policy Jan 03 09:31:40 fedora pluto[31833]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #5: STATE_MAIN_I1: retransmission; will wait 16 seconds for response Jan 03 09:31:46 fedora NetworkManager[751]: <info> [1641182506.6677] audit: op="connection-activate" uuid="f97be7c8-8b9a-4ce5-8b37-512288c78df0" name="VPN0" pid=28934 uid=1000 result="success" Jan 03 09:31:46 fedora NetworkManager[751]: <info> [1641182506.6756] vpn-connection[0x5648eace22b0,f97be7c8-8b9a-4ce5-8b37-512288c78df0,"VPN0",0]: Started the VPN service, PID 32098 Jan 03 09:31:46 fedora NetworkManager[751]: <info> [1641182506.6910] vpn-connection[0x5648eace22b0,f97be7c8-8b9a-4ce5-8b37-512288c78df0,"VPN0",0]: Saw the service appear; activating connection Jan 03 09:31:46 fedora NetworkManager[751]: <info> [1641182506.8331] vpn-connection[0x5648eace22b0,f97be7c8-8b9a-4ce5-8b37-512288c78df0,"VPN0",0]: VPN connection: (ConnectInteractive) reply received Jan 03 09:31:46 fedora nm-l2tp-service[32098]: Check port 1701 Jan 03 09:31:46 fedora NetworkManager[32111]: Redirecting to: systemctl restart ipsec.service Jan 03 09:31:46 fedora systemd[1]: Stopping Internet Key Exchange (IKE) Protocol Daemon for IPsec... Jan 03 09:31:46 fedora pluto[31833]: shutting down Jan 03 09:31:46 fedora whack[32114]: 002 shutting down Jan 03 09:31:46 fedora audit[31833]: **CRYPTO_IKE_SA pid=31833 uid=0 auid=4294967295 ses=4294967295 subj=kernel msg='op=start direction=initiator conn-name="f97be7c8-8b9a-4ce5-8b37-512288c78df0" connstate=5 ike-version=1 auth=PRESHARED_KEY cipher=none ksize=0 integ=none prf=none pfs=none raddr=222.165.143.54 exe="/usr/libexec/ipsec/pluto" hostname=? addr=192.168.8.112 terminal=? res=failed'** Jan 03 09:31:46 fedora pluto[31833]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #5: deleting state (STATE_MAIN_I1) aged 22.890163s and NOT sending notification Jan 03 09:31:46 fedora pluto[31833]: forgetting secrets Jan 03 09:31:46 fedora pluto[31833]: shutting down interface wlp2s0 [2402:4000:2380:abbe:95e3:c8a5:75ec:941]:500 Jan 03 09:31:46 fedora pluto[31833]: shutting down interface lo [::1]:500 Jan 03 09:31:46 fedora pluto[31833]: shutting down interface lo 127.0.0.1:4500 Jan 03 09:31:46 fedora pluto[31833]: shutting down interface lo 127.0.0.1:500 Jan 03 09:31:46 fedora pluto[31833]: shutting down interface wlp2s0 192.168.8.112:4500 Jan 03 09:31:46 fedora pluto[31833]: shutting down interface wlp2s0 192.168.8.112:500 Jan 03 09:31:46 fedora pluto[31833]: shutting down interface virbr0 192.168.122.1:4500 Jan 03 09:31:46 fedora pluto[31833]: shutting down interface virbr0 192.168.122.1:500 Jan 03 09:31:46 fedora pluto[31833]: leak detective found no leaks Jan 03 09:31:46 fedora audit: MAC_IPSEC_EVENT op=SPD-delete auid=4294967295 ses=4294967295 subj=kernel res=1 src=0000:0000:0000:0000:0000:0000:0000:0000 src_prefixlen=0 dst=0000:0000:0000:0000:0000:0000:0000:0000 dst_prefixlen=0 Jan 03 09:31:46 fedora audit: MAC_IPSEC_EVENT op=SPD-delete auid=4294967295 ses=4294967295 subj=kernel res=1 src=0000:0000:0000:0000:0000:0000:0000:0000 src_prefixlen=0 dst=0000:0000:0000:0000:0000:0000:0000:0000 dst_prefixlen=0 Jan 03 09:31:46 fedora audit: MAC_IPSEC_EVENT op=SPD-delete auid=4294967295 ses=4294967295 subj=kernel res=1 src=0000:0000:0000:0000:0000:0000:0000:0000 src_prefixlen=0 dst=0000:0000:0000:0000:0000:0000:0000:0000 dst_prefixlen=0 Jan 03 09:31:46 fedora audit: MAC_IPSEC_EVENT op=SPD-delete auid=4294967295 ses=4294967295 subj=kernel res=1 src=0000:0000:0000:0000:0000:0000:0000:0000 src_prefixlen=0 dst=0000:0000:0000:0000:0000:0000:0000:0000 dst_prefixlen=0 Jan 03 09:31:46 fedora audit: MAC_IPSEC_EVENT op=SPD-delete auid=4294967295 ses=4294967295 subj=kernel res=1 src=0000:0000:0000:0000:0000:0000:0000:0000 src_prefixlen=0 dst=0000:0000:0000:0000:0000:0000:0000:0000 dst_prefixlen=0 Jan 03 09:31:46 fedora audit: MAC_IPSEC_EVENT op=SPD-delete auid=4294967295 ses=4294967295 subj=kernel res=1 src=0000:0000:0000:0000:0000:0000:0000:0000 src_prefixlen=0 dst=0000:0000:0000:0000:0000:0000:0000:0000 dst_prefixlen=0 Jan 03 09:31:47 fedora systemd[1]: ipsec.service: Deactivated successfully. Jan 03 09:31:47 fedora systemd[1]: Stopped Internet Key Exchange (IKE) Protocol Daemon for IPsec. Jan 03 09:31:47 fedora audit[1]: SERVICE_STOP pid=1 uid=0 auid=4294967295 ses=4294967295 subj=kernel msg='unit=ipsec comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' Jan 03 09:31:47 fedora systemd[1]: Starting Internet Key Exchange (IKE) Protocol Daemon for IPsec... Jan 03 09:31:47 fedora kernel: AVX or AES-NI instructions are not detected. Jan 03 09:31:47 fedora kernel: AVX or AES-NI instructions are not detected. Jan 03 09:31:48 fedora ipsec[32367]: nflog ipsec capture disabled Jan 03 09:31:48 fedora pluto[32379]: /usr/libexec/ipsec/pluto: Symbol `ldns_error_str' has different size in shared object, consider re-linking Jan 03 09:31:48 fedora pluto[32379]: Initializing NSS using read-write database "sql:/var/lib/ipsec/nss" Jan 03 09:31:48 fedora pluto[32379]: FIPS Mode: NO Jan 03 09:31:48 fedora pluto[32379]: NSS crypto library initialized Jan 03 09:31:48 fedora pluto[32379]: FIPS mode disabled for pluto daemon Jan 03 09:31:48 fedora pluto[32379]: FIPS HMAC integrity support [disabled] Jan 03 09:31:48 fedora pluto[32379]: libcap-ng support [enabled] Jan 03 09:31:48 fedora pluto[32379]: Linux audit support [enabled] Jan 03 09:31:48 fedora pluto[32379]: Linux audit activated Jan 03 09:31:48 fedora pluto[32379]: Starting Pluto (Libreswan Version 4.5 IKEv2 IKEv1 XFRM XFRMI esp-hw-offload FORK PTHREAD_SETSCHEDPRIO GCC_EXCEPTIONS NSS (IPsec profile) (NSS-PRF) DNSSEC SYSTEMD_WATCHDOG LABELED_IPSEC (SELINUX) SECCOMP LIBCAP_NG LINUX_AUDIT AUTH_PAM NETWORKMANAGER CURL(non-NSS) LDAP(non-NSS)) pid:32379 Jan 03 09:31:48 fedora pluto[32379]: core dump dir: /run/pluto Jan 03 09:31:48 fedora pluto[32379]: secrets file: /etc/ipsec.secrets Jan 03 09:31:48 fedora pluto[32379]: leak-detective enabled Jan 03 09:31:48 fedora pluto[32379]: NSS crypto [enabled] Jan 03 09:31:48 fedora pluto[32379]: XAUTH PAM support [enabled] Jan 03 09:31:48 fedora pluto[32379]: initializing libevent in pthreads mode: headers: 2.1.12-stable (2010c00); library: 2.1.12-stable (2010c00) Jan 03 09:31:48 fedora pluto[32379]: NAT-Traversal support [enabled] Jan 03 09:31:48 fedora pluto[32379]: Encryption algorithms: Jan 03 09:31:48 fedora pluto[32379]: AES_CCM_16 {256,192,*128} IKEv1: ESP IKEv2: ESP FIPS aes_ccm, aes_ccm_c Jan 03 09:31:48 fedora pluto[32379]: AES_CCM_12 {256,192,*128} IKEv1: ESP IKEv2: ESP FIPS aes_ccm_b Jan 03 09:31:48 fedora pluto[32379]: AES_CCM_8 {256,192,*128} IKEv1: ESP IKEv2: ESP FIPS aes_ccm_a Jan 03 09:31:48 fedora pluto[32379]: 3DES_CBC [*192] IKEv1: IKE ESP IKEv2: IKE ESP FIPS NSS(CBC) 3des Jan 03 09:31:48 fedora pluto[32379]: CAMELLIA_CTR {256,192,*128} IKEv1: ESP IKEv2: ESP Jan 03 09:31:48 fedora pluto[32379]: CAMELLIA_CBC {256,192,*128} IKEv1: IKE ESP IKEv2: IKE ESP NSS(CBC) camellia Jan 03 09:31:48 fedora pluto[32379]: AES_GCM_16 {256,192,*128} IKEv1: ESP IKEv2: IKE ESP FIPS NSS(GCM) aes_gcm, aes_gcm_c Jan 03 09:31:48 fedora pluto[32379]: AES_GCM_12 {256,192,*128} IKEv1: ESP IKEv2: IKE ESP FIPS NSS(GCM) aes_gcm_b Jan 03 09:31:48 fedora pluto[32379]: AES_GCM_8 {256,192,*128} IKEv1: ESP IKEv2: IKE ESP FIPS NSS(GCM) aes_gcm_a Jan 03 09:31:48 fedora pluto[32379]: AES_CTR {256,192,*128} IKEv1: IKE ESP IKEv2: IKE ESP FIPS NSS(CTR) aesctr Jan 03 09:31:48 fedora pluto[32379]: AES_CBC {256,192,*128} IKEv1: IKE ESP IKEv2: IKE ESP FIPS NSS(CBC) aes Jan 03 09:31:48 fedora pluto[32379]: NULL_AUTH_AES_GMAC {256,192,*128} IKEv1: ESP IKEv2: ESP FIPS aes_gmac Jan 03 09:31:48 fedora pluto[32379]: NULL [] IKEv1: ESP IKEv2: ESP Jan 03 09:31:48 fedora pluto[32379]: CHACHA20_POLY1305 [*256] IKEv1: IKEv2: IKE ESP NSS(AEAD) chacha20poly1305 Jan 03 09:31:48 fedora pluto[32379]: Hash algorithms: Jan 03 09:31:48 fedora pluto[32379]: MD5 IKEv1: IKE IKEv2: NSS Jan 03 09:31:48 fedora pluto[32379]: SHA1 IKEv1: IKE IKEv2: IKE FIPS NSS sha Jan 03 09:31:48 fedora pluto[32379]: SHA2_256 IKEv1: IKE IKEv2: IKE FIPS NSS sha2, sha256 Jan 03 09:31:48 fedora pluto[32379]: SHA2_384 IKEv1: IKE IKEv2: IKE FIPS NSS sha384 Jan 03 09:31:48 fedora pluto[32379]: SHA2_512 IKEv1: IKE IKEv2: IKE FIPS NSS sha512 Jan 03 09:31:48 fedora pluto[32379]: PRF algorithms: Jan 03 09:31:48 fedora pluto[32379]: HMAC_MD5 IKEv1: IKE IKEv2: IKE native(HMAC) md5 Jan 03 09:31:48 fedora pluto[32379]: HMAC_SHA1 IKEv1: IKE IKEv2: IKE FIPS NSS sha, sha1 Jan 03 09:31:48 fedora pluto[32379]: HMAC_SHA2_256 IKEv1: IKE IKEv2: IKE FIPS NSS sha2, sha256, sha2_256 Jan 03 09:31:48 fedora pluto[32379]: HMAC_SHA2_384 IKEv1: IKE IKEv2: IKE FIPS NSS sha384, sha2_384 Jan 03 09:31:48 fedora pluto[32379]: HMAC_SHA2_512 IKEv1: IKE IKEv2: IKE FIPS NSS sha512, sha2_512 Jan 03 09:31:48 fedora pluto[32379]: AES_XCBC IKEv1: IKEv2: IKE native(XCBC) aes128_xcbc Jan 03 09:31:48 fedora pluto[32379]: Integrity algorithms: Jan 03 09:31:48 fedora pluto[32379]: HMAC_MD5_96 IKEv1: IKE ESP AH IKEv2: IKE ESP AH native(HMAC) md5, hmac_md5 Jan 03 09:31:48 fedora pluto[32379]: HMAC_SHA1_96 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS NSS sha, sha1, sha1_96, hmac_sha1 Jan 03 09:31:48 fedora pluto[32379]: HMAC_SHA2_512_256 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS NSS sha512, sha2_512, sha2_512_256, hmac_sha2_512 Jan 03 09:31:48 fedora pluto[32379]: HMAC_SHA2_384_192 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS NSS sha384, sha2_384, sha2_384_192, hmac_sha2_384 Jan 03 09:31:48 fedora pluto[32379]: HMAC_SHA2_256_128 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS NSS sha2, sha256, sha2_256, sha2_256_128, hmac_sha2_256 Jan 03 09:31:48 fedora pluto[32379]: HMAC_SHA2_256_TRUNCBUG IKEv1: ESP AH IKEv2: AH Jan 03 09:31:48 fedora pluto[32379]: AES_XCBC_96 IKEv1: ESP AH IKEv2: IKE ESP AH native(XCBC) aes_xcbc, aes128_xcbc, aes128_xcbc_96 Jan 03 09:31:48 fedora pluto[32379]: AES_CMAC_96 IKEv1: ESP AH IKEv2: ESP AH FIPS aes_cmac Jan 03 09:31:48 fedora pluto[32379]: NONE IKEv1: ESP IKEv2: IKE ESP FIPS null Jan 03 09:31:48 fedora pluto[32379]: DH algorithms: Jan 03 09:31:48 fedora pluto[32379]: NONE IKEv1: IKEv2: IKE ESP AH FIPS NSS(MODP) null, dh0 Jan 03 09:31:48 fedora pluto[32379]: MODP1536 IKEv1: IKE ESP AH IKEv2: IKE ESP AH NSS(MODP) dh5 Jan 03 09:31:48 fedora pluto[32379]: MODP2048 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS NSS(MODP) dh14 Jan 03 09:31:48 fedora pluto[32379]: MODP3072 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS NSS(MODP) dh15 Jan 03 09:31:48 fedora pluto[32379]: MODP4096 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS NSS(MODP) dh16 Jan 03 09:31:48 fedora pluto[32379]: MODP6144 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS NSS(MODP) dh17 Jan 03 09:31:48 fedora pluto[32379]: MODP8192 IKEv1: IKE ESP AH IKEv2: IKE ESP AH FIPS NSS(MODP) dh18 Jan 03 09:31:48 fedora pluto[32379]: DH19 IKEv1: IKE IKEv2: IKE ESP AH FIPS NSS(ECP) ecp_256, ecp256 Jan 03 09:31:48 fedora pluto[32379]: DH20 IKEv1: IKE IKEv2: IKE ESP AH FIPS NSS(ECP) ecp_384, ecp384 Jan 03 09:31:48 fedora pluto[32379]: DH21 IKEv1: IKE IKEv2: IKE ESP AH FIPS NSS(ECP) ecp_521, ecp521 Jan 03 09:31:48 fedora pluto[32379]: DH31 IKEv1: IKE IKEv2: IKE ESP AH NSS(ECP) curve25519 Jan 03 09:31:48 fedora pluto[32379]: testing CAMELLIA_CBC: Jan 03 09:31:48 fedora pluto[32379]: Camellia: 16 bytes with 128-bit key Jan 03 09:31:48 fedora pluto[32379]: Camellia: 16 bytes with 128-bit key Jan 03 09:31:48 fedora pluto[32379]: Camellia: 16 bytes with 256-bit key Jan 03 09:31:48 fedora pluto[32379]: Camellia: 16 bytes with 256-bit key Jan 03 09:31:48 fedora pluto[32379]: testing AES_GCM_16: Jan 03 09:31:48 fedora pluto[32379]: empty string Jan 03 09:31:48 fedora pluto[32379]: one block Jan 03 09:31:48 fedora pluto[32379]: two blocks Jan 03 09:31:48 fedora pluto[32379]: two blocks with associated data Jan 03 09:31:48 fedora pluto[32379]: testing AES_CTR: Jan 03 09:31:48 fedora pluto[32379]: Encrypting 16 octets using AES-CTR with 128-bit key Jan 03 09:31:48 fedora pluto[32379]: Encrypting 32 octets using AES-CTR with 128-bit key Jan 03 09:31:48 fedora pluto[32379]: Encrypting 36 octets using AES-CTR with 128-bit key Jan 03 09:31:48 fedora pluto[32379]: Encrypting 16 octets using AES-CTR with 192-bit key Jan 03 09:31:48 fedora pluto[32379]: Encrypting 32 octets using AES-CTR with 192-bit key Jan 03 09:31:48 fedora pluto[32379]: Encrypting 36 octets using AES-CTR with 192-bit key Jan 03 09:31:48 fedora pluto[32379]: Encrypting 16 octets using AES-CTR with 256-bit key Jan 03 09:31:48 fedora pluto[32379]: Encrypting 32 octets using AES-CTR with 256-bit key Jan 03 09:31:48 fedora pluto[32379]: Encrypting 36 octets using AES-CTR with 256-bit key Jan 03 09:31:48 fedora audit: MAC_IPSEC_EVENT op=SPD-add auid=4294967295 ses=4294967295 subj=kernel res=1 src=0000:0000:0000:0000:0000:0000:0000:0000 src_prefixlen=0 dst=0000:0000:0000:0000:0000:0000:0000:0000 dst_prefixlen=0 Jan 03 09:31:48 fedora audit: MAC_IPSEC_EVENT op=SPD-add auid=4294967295 ses=4294967295 subj=kernel res=1 src=0000:0000:0000:0000:0000:0000:0000:0000 src_prefixlen=0 dst=0000:0000:0000:0000:0000:0000:0000:0000 dst_prefixlen=0 Jan 03 09:31:48 fedora audit: MAC_IPSEC_EVENT op=SPD-add auid=4294967295 ses=4294967295 subj=kernel res=1 src=0000:0000:0000:0000:0000:0000:0000:0000 src_prefixlen=0 dst=0000:0000:0000:0000:0000:0000:0000:0000 dst_prefixlen=0 Jan 03 09:31:48 fedora audit: MAC_IPSEC_EVENT op=SPD-add auid=4294967295 ses=4294967295 subj=kernel res=1 src=0000:0000:0000:0000:0000:0000:0000:0000 src_prefixlen=0 dst=0000:0000:0000:0000:0000:0000:0000:0000 dst_prefixlen=0 Jan 03 09:31:48 fedora audit: MAC_IPSEC_EVENT op=SPD-add auid=4294967295 ses=4294967295 subj=kernel res=1 src=0000:0000:0000:0000:0000:0000:0000:0000 src_prefixlen=0 dst=0000:0000:0000:0000:0000:0000:0000:0000 dst_prefixlen=0 Jan 03 09:31:48 fedora audit: MAC_IPSEC_EVENT op=SPD-add auid=4294967295 ses=4294967295 subj=kernel res=1 src=0000:0000:0000:0000:0000:0000:0000:0000 src_prefixlen=0 dst=0000:0000:0000:0000:0000:0000:0000:0000 dst_prefixlen=0 Jan 03 09:31:48 fedora pluto[32379]: testing AES_CBC: Jan 03 09:31:48 fedora pluto[32379]: Encrypting 16 bytes (1 block) using AES-CBC with 128-bit key Jan 03 09:31:48 fedora pluto[32379]: Encrypting 32 bytes (2 blocks) using AES-CBC with 128-bit key Jan 03 09:31:48 fedora pluto[32379]: Encrypting 48 bytes (3 blocks) using AES-CBC with 128-bit key Jan 03 09:31:48 fedora pluto[32379]: Encrypting 64 bytes (4 blocks) using AES-CBC with 128-bit key Jan 03 09:31:48 fedora pluto[32379]: testing AES_XCBC: Jan 03 09:31:48 fedora pluto[32379]: RFC 3566 Test Case 1: AES-XCBC-MAC-96 with 0-byte input Jan 03 09:31:48 fedora systemd[1]: Started Internet Key Exchange (IKE) Protocol Daemon for IPsec. Jan 03 09:31:48 fedora pluto[32379]: RFC 3566 Test Case 2: AES-XCBC-MAC-96 with 3-byte input Jan 03 09:31:48 fedora pluto[32379]: RFC 3566 Test Case 3: AES-XCBC-MAC-96 with 16-byte input Jan 03 09:31:48 fedora pluto[32379]: RFC 3566 Test Case 4: AES-XCBC-MAC-96 with 20-byte input Jan 03 09:31:48 fedora pluto[32379]: RFC 3566 Test Case 5: AES-XCBC-MAC-96 with 32-byte input Jan 03 09:31:48 fedora pluto[32379]: RFC 3566 Test Case 6: AES-XCBC-MAC-96 with 34-byte input Jan 03 09:31:48 fedora pluto[32379]: RFC 3566 Test Case 7: AES-XCBC-MAC-96 with 1000-byte input Jan 03 09:31:48 fedora pluto[32379]: RFC 4434 Test Case AES-XCBC-PRF-128 with 20-byte input (key length 16) Jan 03 09:31:48 fedora pluto[32379]: RFC 4434 Test Case AES-XCBC-PRF-128 with 20-byte input (key length 10) Jan 03 09:31:48 fedora pluto[32379]: RFC 4434 Test Case AES-XCBC-PRF-128 with 20-byte input (key length 18) Jan 03 09:31:48 fedora pluto[32379]: testing HMAC_MD5: Jan 03 09:31:48 fedora pluto[32379]: RFC 2104: MD5_HMAC test 1 Jan 03 09:31:48 fedora pluto[32379]: RFC 2104: MD5_HMAC test 2 Jan 03 09:31:48 fedora audit[1]: SERVICE_START pid=1 uid=0 auid=4294967295 ses=4294967295 subj=kernel msg='unit=ipsec comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success' Jan 03 09:31:48 fedora pluto[32379]: RFC 2104: MD5_HMAC test 3 Jan 03 09:31:48 fedora pluto[32379]: 4 CPU cores online Jan 03 09:31:48 fedora pluto[32379]: starting up 3 helper threads Jan 03 09:31:48 fedora pluto[32379]: started thread for helper 0 Jan 03 09:31:48 fedora pluto[32379]: started thread for helper 1 Jan 03 09:31:48 fedora pluto[32379]: started thread for helper 2 Jan 03 09:31:48 fedora pluto[32379]: using Linux xfrm kernel support code on #1 SMP Wed Dec 22 15:44:37 UTC 2021 Jan 03 09:31:48 fedora pluto[32379]: selinux support is NOT enabled. Jan 03 09:31:48 fedora pluto[32379]: systemd watchdog for ipsec service configured with timeout of 200000000 usecs Jan 03 09:31:48 fedora pluto[32379]: watchdog: sending probes every 100 secs Jan 03 09:31:48 fedora pluto[32379]: seccomp security disabled Jan 03 09:31:48 fedora pluto[32379]: seccomp security disabled for crypto helper 3 Jan 03 09:31:48 fedora pluto[32379]: seccomp security disabled for crypto helper 2 Jan 03 09:31:48 fedora pluto[32379]: seccomp security disabled for crypto helper 1 Jan 03 09:31:48 fedora pluto[32379]: listening for IKE messages Jan 03 09:31:48 fedora pluto[32379]: Kernel supports NIC esp-hw-offload Jan 03 09:31:48 fedora pluto[32379]: adding UDP interface virbr0 192.168.122.1:500 Jan 03 09:31:48 fedora pluto[32379]: adding UDP interface virbr0 192.168.122.1:4500 Jan 03 09:31:48 fedora pluto[32379]: adding UDP interface wlp2s0 192.168.8.112:500 Jan 03 09:31:48 fedora pluto[32379]: adding UDP interface wlp2s0 192.168.8.112:4500 Jan 03 09:31:48 fedora pluto[32379]: adding UDP interface lo 127.0.0.1:500 Jan 03 09:31:48 fedora pluto[32379]: adding UDP interface lo 127.0.0.1:4500 Jan 03 09:31:48 fedora pluto[32379]: adding UDP interface lo [::1]:500 Jan 03 09:31:48 fedora pluto[32379]: adding UDP interface wlp2s0 [2402:4000:2380:abbe:95e3:c8a5:75ec:941]:500 Jan 03 09:31:48 fedora pluto[32379]: loading secrets from "/etc/ipsec.secrets" Jan 03 09:31:48 fedora pluto[32379]: loading secrets from "/etc/ipsec.d/ipsec.nm-l2tp.secrets" Jan 03 09:31:48 fedora pluto[32379]: loading secrets from "/etc/ipsec.d/ipsec.secrets" Jan 03 09:31:48 fedora pluto[32379]: listening for IKE messages Jan 03 09:31:48 fedora pluto[32379]: forgetting secrets Jan 03 09:31:48 fedora pluto[32379]: loading secrets from "/etc/ipsec.secrets" Jan 03 09:31:48 fedora pluto[32379]: loading secrets from "/etc/ipsec.d/ipsec.nm-l2tp.secrets" Jan 03 09:31:48 fedora pluto[32379]: loading secrets from "/etc/ipsec.d/ipsec.secrets" Jan 03 09:31:48 fedora NetworkManager[32387]: 002 listening for IKE messages Jan 03 09:31:48 fedora NetworkManager[32387]: 002 forgetting secrets Jan 03 09:31:48 fedora NetworkManager[32387]: 002 loading secrets from "/etc/ipsec.secrets" Jan 03 09:31:48 fedora NetworkManager[32387]: 002 loading secrets from "/etc/ipsec.d/ipsec.nm-l2tp.secrets" Jan 03 09:31:48 fedora NetworkManager[32387]: 002 loading secrets from "/etc/ipsec.d/ipsec.secrets" Jan 03 09:31:48 fedora NetworkManager[32391]: debugging mode enabled Jan 03 09:31:48 fedora NetworkManager[32391]: end of file /var/run/nm-l2tp-f97be7c8-8b9a-4ce5-8b37-512288c78df0/ipsec.conf Jan 03 09:31:48 fedora NetworkManager[32391]: Loading conn f97be7c8-8b9a-4ce5-8b37-512288c78df0 Jan 03 09:31:48 fedora NetworkManager[32391]: starter: left is KH_DEFAULTROUTE Jan 03 09:31:48 fedora NetworkManager[32391]: conn: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" modecfgdns=<unset> Jan 03 09:31:48 fedora NetworkManager[32391]: conn: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" modecfgdomains=<unset> Jan 03 09:31:48 fedora NetworkManager[32391]: conn: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" modecfgbanner=<unset> Jan 03 09:31:48 fedora NetworkManager[32391]: conn: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" mark=<unset> Jan 03 09:31:48 fedora NetworkManager[32391]: conn: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" mark-in=<unset> Jan 03 09:31:48 fedora NetworkManager[32391]: conn: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" mark-out=<unset> Jan 03 09:31:48 fedora NetworkManager[32391]: conn: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" vti_iface=<unset> Jan 03 09:31:48 fedora NetworkManager[32391]: conn: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" redirect-to=<unset> Jan 03 09:31:48 fedora NetworkManager[32391]: conn: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" accept-redirect-to=<unset> Jan 03 09:31:48 fedora NetworkManager[32391]: conn: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" esp=aes256-sha1,aes128-sha1,3des-sha1 Jan 03 09:31:48 fedora NetworkManager[32391]: conn: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" ike=aes256-sha2_256-modp2048,aes256-sha2_256-modp1536,aes256-sha1-modp2048,aes256-sha1-modp1536,aes256-sha1-ecp_384,aes128-sha1-ecp_256,3des-sha1-modp2048 Jan 03 09:31:48 fedora NetworkManager[32391]: opening file: /var/run/nm-l2tp-f97be7c8-8b9a-4ce5-8b37-512288c78df0/ipsec.conf Jan 03 09:31:48 fedora NetworkManager[32391]: loading named conns: f97be7c8-8b9a-4ce5-8b37-512288c78df0 Jan 03 09:31:48 fedora NetworkManager[32391]: seeking_src = 1, seeking_gateway = 1, has_peer = 1 Jan 03 09:31:48 fedora NetworkManager[32391]: seeking_src = 0, seeking_gateway = 1, has_dst = 1 Jan 03 09:31:48 fedora NetworkManager[32391]: dst via 192.168.8.1 dev wlp2s0 src table 254 Jan 03 09:31:48 fedora NetworkManager[32391]: set nexthop: 192.168.8.1 Jan 03 09:31:48 fedora NetworkManager[32391]: dst 192.168.8.0 via dev wlp2s0 src 192.168.8.112 table 254 Jan 03 09:31:48 fedora NetworkManager[32391]: dst 192.168.122.0 via dev virbr0 src 192.168.122.1 table 254 Jan 03 09:31:48 fedora NetworkManager[32391]: dst 127.0.0.0 via dev lo src 127.0.0.1 table 255 (ignored) Jan 03 09:31:48 fedora NetworkManager[32391]: dst 127.0.0.1 via dev lo src 127.0.0.1 table 255 (ignored) Jan 03 09:31:48 fedora NetworkManager[32391]: dst 127.255.255.255 via dev lo src 127.0.0.1 table 255 (ignored) Jan 03 09:31:48 fedora NetworkManager[32391]: dst 192.168.8.112 via dev wlp2s0 src 192.168.8.112 table 255 (ignored) Jan 03 09:31:48 fedora NetworkManager[32391]: dst 192.168.8.255 via dev wlp2s0 src 192.168.8.112 table 255 (ignored) Jan 03 09:31:48 fedora NetworkManager[32391]: dst 192.168.122.1 via dev virbr0 src 192.168.122.1 table 255 (ignored) Jan 03 09:31:48 fedora NetworkManager[32391]: dst 192.168.122.255 via dev virbr0 src 192.168.122.1 table 255 (ignored) Jan 03 09:31:48 fedora NetworkManager[32391]: seeking_src = 1, seeking_gateway = 0, has_peer = 1 Jan 03 09:31:48 fedora NetworkManager[32391]: seeking_src = 1, seeking_gateway = 0, has_dst = 1 Jan 03 09:31:48 fedora NetworkManager[32391]: dst 192.168.8.1 via dev wlp2s0 src 192.168.8.112 table 254 Jan 03 09:31:48 fedora NetworkManager[32391]: set addr: 192.168.8.112 Jan 03 09:31:48 fedora NetworkManager[32391]: seeking_src = 0, seeking_gateway = 0, has_peer = 1 Jan 03 09:31:48 fedora pluto[32379]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0": added IKEv1 connection Jan 03 09:31:48 fedora pluto[32379]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: initiating IKEv1 Main Mode connection Jan 03 09:31:48 fedora pluto[32379]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: sent Main Mode request Jan 03 09:31:48 fedora NetworkManager[32393]: 002 "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: initiating IKEv1 Main Mode connection Jan 03 09:31:48 fedora NetworkManager[32393]: 102 "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: sent Main Mode request Jan 03 09:31:48 fedora pluto[32379]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: ignoring informational payload NO_PROPOSAL_CHOSEN, msgid=00000000, length=12 Jan 03 09:31:48 fedora pluto[32379]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: received and ignored notification payload: NO_PROPOSAL_CHOSEN Jan 03 09:31:48 fedora NetworkManager[32393]: 003 "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: ignoring informational payload NO_PROPOSAL_CHOSEN, msgid=00000000, length=12 Jan 03 09:31:48 fedora NetworkManager[32393]: 003 "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: received and ignored notification payload: NO_PROPOSAL_CHOSEN Jan 03 09:31:49 fedora pluto[32379]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: STATE_MAIN_I1: retransmission; will wait 0.5 seconds for response Jan 03 09:31:49 fedora NetworkManager[32393]: 010 "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: STATE_MAIN_I1: retransmission; will wait 0.5 seconds for response Jan 03 09:31:49 fedora pluto[32379]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: STATE_MAIN_I1: retransmission; will wait 1 seconds for response Jan 03 09:31:49 fedora NetworkManager[32393]: 010 "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: STATE_MAIN_I1: retransmission; will wait 1 seconds for response Jan 03 09:31:50 fedora pluto[32379]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: STATE_MAIN_I1: retransmission; will wait 2 seconds for response Jan 03 09:31:50 fedora NetworkManager[32393]: 010 "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: STATE_MAIN_I1: retransmission; will wait 2 seconds for response Jan 03 09:31:52 fedora pluto[32379]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: STATE_MAIN_I1: retransmission; will wait 4 seconds for response Jan 03 09:31:52 fedora NetworkManager[32393]: 010 "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: STATE_MAIN_I1: retransmission; will wait 4 seconds for response Jan 03 09:31:56 fedora pluto[32379]: "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: STATE_MAIN_I1: retransmission; will wait 8 seconds for response Jan 03 09:31:56 fedora NetworkManager[32393]: 010 "f97be7c8-8b9a-4ce5-8b37-512288c78df0" #1: STATE_MAIN_I1: retransmission; will wait 8 seconds for response Jan 03 09:31:58 fedora nm-l2tp-service[32098]: g_dbus_method_invocation_take_error: assertion 'error != NULL' failed Jan 03 09:31:58 fedora NetworkManager[751]: <info> [1641182518.6249] vpn-connection[0x5648eace22b0,f97be7c8-8b9a-4ce5-8b37-512288c78df0,"VPN0",0]: VPN plugin: state changed: stopped (6) Jan 03 09:31:58 fedora NetworkManager[751]: <info> [1641182518.6358] vpn-connection[0x5648eace22b0,f97be7c8-8b9a-4ce5-8b37-512288c78df0,"VPN0",0]: VPN service disappeared Jan 03 09:31:58 fedora NetworkManager[751]: <warn> [1641182518.6408] vpn-connection[0x5648eace22b0,f97be7c8-8b9a-4ce5-8b37-512288c78df0,"VPN0",0]: VPN connection: failed to connect: 'Remote peer disconnected' Anyone can help me

umbrachimera · 16 January 2022 18:23

Reading through it looks like this is for non PSK l2tp VPN, mine has a PSK.