2 vpns issue

ssswp · ‎01-08-2019

When i only configure one ipsec vpn it works fine. But when i configure a 2nd the 1st VPN stops passing ping but the 2nd vpn passes pings fine. (srx300 to srx210 ...

st0.0 & st0.2 are tunnle , ge-0/0/0 extrenal interface .. routes are good,

rsuraj · ‎01-08-2019

Please share more details.

Thanks,
Suraj
Please Mark My Solution Accepted if it Helped, Kudos are Appreciated too

adgwytc · ‎01-08-2019

More information required:

Please share the Configuration on both SRX. (Hide sensitive information)

This will confirm routing on the SRX to the correct ST interface and also that the ST interfaces are bound correctly in the IPSec configuration.

ssswp · ‎01-08-2019

First configured IPsec tunnel between SRX300 "A" & SRX210 "B" and monitored for 1day, found no issues. The next day I brought another IPsec VPN between SR300"A" to SSG5 "C" then firts vpn has no ping response, when i configure a 2nd the 1st VPN stops passing ping but the 2nd VPN passes pings fine, ike& IPsec is up. find attached srx a & b config

ssswp · ‎01-08-2019

From SRX B to SRX A if do ping to st0.0 interface

from SRXB : ping 10.11.11.11

responce in srxA :

Interface: st0.0, Enabled, Link is Up
Flags: Point-To-Point SNMP-Traps
Encapsulation: Secure-Tunnel
Local statistics:                                                Current delta
Input bytes:                         0                                   [0]
Output bytes:                    34707                                   [0]
Input packets:                       0                                   [0]
Output packets:                    243                                   [0]
Remote statistics:
Input bytes:                    298200 (664 bps)                      [2436]
Output bytes:                  1333364 (664 bps)                      [2436]
Input packets:                    3550 (0 pps)                          [29]
Output packets:                  15879 (0 pps)                          [29]
Traffic statistics:
Input bytes:                    298200                                [2436]
Output bytes:                  1368071                                [2436]
Input packets:                    3550                                  [29]
Output packets:                  16122                                  [29]
Protocol: inet, MTU: 9192, Flags: None

After 30sec :

Interface: st0.0, Enabled, Link is Up
Flags: Point-To-Point SNMP-Traps
Encapsulation: Secure-Tunnel
Local statistics:                                                Current delta
Input bytes:                         0                                   [0]
Output bytes:                    34707                                   [0]
Input packets:                       0                                   [0]
Output packets:                    243                                   [0]
Remote statistics:
Input bytes:                    298200 (664 bps)                      [2436]
Output bytes:                  1333364 (664 bps)                      [2436]
Input packets:                    3550 (0 pps)                          [29]
Output packets:                  15879 (0 pps)                          [29]
Traffic statistics:
Input bytes:                    298200                                [2436]
Output bytes:                  1368071                                [2436]
Input packets:                    3550                                  [29]
Output packets:                  16122                                  [29]
Protocol: inet, MTU: 9192, Flags: None

Both Input and Output intpu and output bytes are increasing but when stop ping from SRxB no traffic input and output

from srx A ---> SrxB st0.0 is reaching is seems so that traffic input and output increasing

when ip ping from SrxA to SrxB only output packets are increasing but no input packets at srxB

Note : when i ping to st0.0 inter i,e 10.11.11.11 then i can see input / output packets in srxA , if i ping to Srx B internal subnet i don't see any traffic

vikassingh · ‎01-09-2019

Hi,

It looks like you are forming at least one VPN between each device, SRXA, SRXB and SSG, So 2 VPNs on each device. I understan datacenter-vpn on the SRXA(bound to st0.0) is impacted. I see the proxy id is not configured for ike-india-corp-vpn(bound to st0.2) . However, you have proxy id configured for both the VPNs on the SRXB.

Can you please check the below in working and in non-working state?

show route <ip you are pinging>
show security ipsec security-associations
show security ipsec security-associations index <index from previous output>
flow traceoptions

Thanks,

Vikas

vikassingh · ‎01-09-2019

Also, have you checked the ping between subnet 192.168.50.0/24 & 192.168.200.0/24, You can source ge-0/0/1.0 interface on each side initiate the ping, and destination is other side ge-0/0/1.0 interface ip.

Thanks,

Vikas

ssswp · ‎01-09-2019

SRX A

show route 192.168.200.254

inet.0: 37 destinations, 37 routes (37 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

192.168.200.0/24 *[Static/5] 00:13:56
> via st0.0

show security ipsec security-associations

show security ipsec security-associations
Total active tunnels: 2
ID    Algorithm       SPI      Life:sec/kb Mon lsys Port Gateway
<131074 ESP:des/ sha1 11229597 82390/unlim   -   root 500   x.x.x.x (SSG5)
>131074 ESP:des/ sha1 49110a4d 82390/unlim   -   root 500   x.x.x.x (SSG5)
<131073 ESP:des/ sha1 8a7b1809 85537/unlim   -   root 500   y.y.y.y (srx B)
>131073 ESP:des/ sha1 56a236c2 85537/unlim   -   root 500   y.y.y.y (srx B)

show security ipsec security-associations index <index from previous output>

show security ipsec security-associations index 131073

ID: 131073 Virtual-system: root, VPN Name: ike-f-datacenter-vpn
Local Gateway: z.z.z.z, Remote Gateway: y.y.y.y
Local Identity: ipv4_subnet(any:0,[0..7]=192.168.50.0/24)
Remote Identity: ipv4_subnet(any:0,[0..7]=192.168.200.0/24)
Version: IKEv1
DF-bit: clear, Copy-Outer-DSCP Disabled, Bind-interface: st0.0
Port: 500, Nego#: 2, Fail#: 0, Def-Del#: 0 Flag: 0x600a29
Tunnel events:
    Wed Jan 09 2019 15:24:57 +0800: IPSec SA negotiation successfully completed (1 times)
    Wed Jan 09 2019 15:24:57 +0800: User cleared IPSec SA from CLI (1 times)
    Wed Jan 09 2019 08:42:10 +0800: IPSec SA negotiation successfully completed (1 times)
    Wed Jan 09 2019 08:42:10 +0800: Tunnel is ready. Waiting for trigger event or peer to trigger negotiation (1 times)
    Wed Jan 09 2019 08:42:10 +0800: Bind-interface's address received. Information updated (1 times)
    Wed Jan 09 2019 08:42:10 +0800: External interface's address received. Information updated (1 times)
    Wed Jan 09 2019 08:42:10 +0800: External interface's zone received. Information updated (1 times)
    Wed Jan 09 2019 08:42:10 +0800: Tunnel configuration changed. Corresponding IKE/IPSec SAs are deleted (1 times)
    Wed Jan 09 2019 08:42:10 +0800: IKE SA negotiation successfully completed (4 times)
Direction: inbound, SPI: 8a7b1809, AUX-SPI: 0
                              , VPN Monitoring: -
    Hard lifetime: Expires in 85252 seconds
    Lifesize Remaining: Unlimited
    Soft lifetime: Expires in 84618 seconds
    Mode: Tunnel(0 0), Type: dynamic, State: installed
    Protocol: ESP, Authentication: hmac-sha1-96, Encryption: des-cbc
    Anti-replay service: counter-based enabled, Replay window size: 64
Direction: outbound, SPI: 56a236c2, AUX-SPI: 0
                              , VPN Monitoring: -
    Hard lifetime: Expires in 85252 seconds
    Lifesize Remaining: Unlimited
    Soft lifetime: Expires in 84618 seconds
    Mode: Tunnel(0 0), Type: dynamic, State: installed
    Protocol: ESP, Authentication: hmac-sha1-96, Encryption: des-cbc
    Anti-replay service: counter-based enabled, Replay window size: 64

On SRX B

show route 192.168.50.254

inet.0: 24 destinations, 24 routes (24 active, 0 holddown, 0 hidden)
+ = Active Route, - = Last Active, * = Both

192.168.50.0/24 *[Static/5] 00:00:28
> via st0.0

show security ipsec security-associations index 131074
ID: 131074 Virtual-system: root, VPN Name: ike-corp-vpn
Local Gateway: y.y.y.y, Remote Gateway: x.x.x.x
Local Identity: ipv4_subnet(any:0,[0..7]=192.168.200.0/24)
Remote Identity: ipv4_subnet(any:0,[0..7]=192.168.50.0/24)
Version: IKEv1
    DF-bit: clear
    Bind-interface: st0.0

Port: 500, Nego#: 14, Fail#: 0, Def-Del#: 0 Flag: 600a29
Tunnel Down Reason: Delete payload received
    Direction: inbound, SPI: 56a236c2, AUX-SPI: 0
                              , VPN Monitoring: -
    Hard lifetime: Expires in 84488 seconds
    Lifesize Remaining: Unlimited
    Soft lifetime: Expires in 83926 seconds
    Mode: Tunnel(0 0), Type: dynamic, State: installed
    Protocol: ESP, Authentication: hmac-sha1-96, Encryption: des-cbc
    Anti-replay service: counter-based enabled, Replay window size: 64

    Direction: outbound, SPI: 8a7b1809, AUX-SPI: 0
                              , VPN Monitoring: -
    Hard lifetime: Expires in 84488 seconds
    Lifesize Remaining: Unlimited
    Soft lifetime: Expires in 83926 seconds
    Mode: Tunnel(0 0), Type: dynamic, State: installed
    Protocol: ESP, Authentication: hmac-sha1-96, Encryption: des-cbc
    Anti-replay service: counter-based enabled, Replay window size: 64

flow traceoptions ( Give me commands of this, flow & trace options are not updating )

ssswp · ‎01-09-2019

from srx A if i ping srxB subnet 200.x >>>> no input packets traffic in srx B

from srx B if i ping srxA >>>> subnet 50.x .>>>>> i have seen input packets but no output packets in srxA

from srx A if ping srxB st0 interface 10.11.11.11 >>>>>>>>>> no input/output packets in srxB

from Srx B if i ping srxA st0 interface 10.11.11.12 >>>>>>>>> i can see input/ output packets on srxA

vikassingh · ‎01-09-2019

Hi,

Please follow the KB https://kb.juniper.net/InfoCenter/index?page=content&id=KB16233&actp=METADATA&act=login for the flow traceoptions. Use appropriate filters and don't refer the steps for the SRX1400, SRX3000, and SRX5000 platforms.

e.g:

set security flow traceoptions file flow-trace
set security flow traceoptions flag basic-datapath
set security flow traceoptions packet-filter c2s source-prefix 192.168.50.x/32
set security flow traceoptions packet-filter c2s destination-prefix 192.168.200.x/32
set security flow traceoptions packet-filter s2c source-prefix 192.168.200.x/32
set security flow traceoptions packet-filter s2c destination-prefix 192.168.50.x/32

commit

>show log flow-trace <<-- to see the logs

deactivate set security flow traceoptions << to deactivate the flow traceoptions

Also, please check the sa index details for the other tunnel(to the SSG). Need to check the proxy-id in that as well.

Thanks,

Vikas

vikassingh · ‎01-09-2019

When you run the ping test, take the simultaneous traceoptions on both the SRXs to trace the packets.

Thanks,

Vikas

ssswp · ‎01-09-2019

When i ping 192.168.200.23 from SRX A, below log is from SRXB
@SRX B> show log trc-sec-flow
Jan 10 09:43:05 09:43:04.958361:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 09:43:06 09:43:04.958361:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: ge-0/0/0.0->ge-0/0/1.0

Jan 10 09:43:06 09:43:04.958361:CID-0:RT:ASL nat rule lookup: src_ip: x.x.x.x

Jan 10 09:43:06 09:43:04.958361:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 09:43:06 09:43:04.958361:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: .local..0->ge-0/0/1.0

Jan 10 09:45:21 09:45:21.785545:CID-0:RT:ASL nat rule lookup: src_ip: 185.53.91.39

Jan 10 09:45:21 09:45:21.785545:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 09:45:21 09:45:21.785545:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: ge-0/0/0.0->ge-0/0/1.0

Jan 10 09:45:21 09:45:21.785545:CID-0:RT:ASL nat rule lookup: src_ip: 1.1.1.1

Jan 10 09:45:21 09:45:21.785545:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 09:45:21 09:45:21.785545:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: ge-0/0/0.0->ge-0/0/1.0

Jan 10 09:45:21 09:45:21.785545:CID-0:RT:ASL nat rule lookup: src_ip: x.x.x.x

Jan 10 09:45:21 09:45:21.785545:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 09:45:21 09:45:21.785545:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: .local..0->ge-0/0/1.0

Jan 10 10:48:00 10:48:00.542957:CID-0:RT:ASL nat rule lookup: src_ip: 37.49.231.15

Jan 10 10:48:00 10:48:00.542957:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 10:48:00 10:48:00.542957:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: ge-0/0/0.0->ge-0/0/1.0

Jan 10 10:48:00 10:48:00.542957:CID-0:RT:ASL nat rule lookup: src_ip: 1.1.1.1

Jan 10 10:48:00 10:48:00.542957:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 10:48:00 10:48:00.542957:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: ge-0/0/0.0->ge-0/0/1.0

Jan 10 10:48:00 10:48:00.542957:CID-0:RT:ASL nat rule lookup: src_ip: x.x.x.x

Jan 10 10:48:00 10:48:00.542957:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 10:48:00 10:48:00.542957:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: .local..0->ge-0/0/1.0

Jan 10 10:52:13 10:52:13.473180:CID-0:RT:ASL nat rule lookup: src_ip: 185.53.91.39

Jan 10 10:52:13 10:52:13.473180:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 10:52:13 10:52:13.473180:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: ge-0/0/0.0->ge-0/0/1.0

Jan 10 10:52:13 10:52:13.473180:CID-0:RT:ASL nat rule lookup: src_ip: 1.1.1.1

Jan 10 10:52:13 10:52:13.473180:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 10:52:13 10:52:13.473180:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: ge-0/0/0.0->ge-0/0/1.0

Jan 10 10:52:13 10:52:13.473180:CID-0:RT:ASL nat rule lookup: src_ip: x.x.x.x

Jan 10 10:52:13 10:52:13.473180:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 10:52:13 10:52:13.473180:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: .local..0->ge-0/0/1.0

Jan 10 11:55:44 10:55:45.022083:CID-0:RT:traceflag 0x0

Jan 10 11:55:44 11:55:44.132186:CID-0:CTRL:flow0: Rate limit changed to 0
Jan 10 11:55:44 11:55:44.132186:CID-0:CTRL:flow0: Destination ID set to 2
Jan 10 11:55:44 11:55:44.142439:CID-0:RT:filter 0 name f2 is set

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:filter 1 name filter1 is set

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:filter 2 name filter2 is set

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:filter 3 name filter3 is set

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:filter 4 name filter4 is set

Jan 10 11:55:44 11:55:44.132186:CID-0:CTRL:flow1: Rate limit changed to 0
Jan 10 11:55:44 11:55:44.132186:CID-0:CTRL:flow1: Destination ID set to 2
Jan 10 11:55:44 11:55:44.133756:CID-0:RT:<192.168.200.50/55898->107.191.99.95/3333;6> :

Jan 10 11:55:44 11:55:44.133756:CID-0:RTacket [52] ipid = 54408, @0x4361599e

Jan 10 11:55:44 11:55:44.133756:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43615780, rtbl_idx = 0

Jan 10 11:55:44 11:55:44.133756:CID-0:RT: flow process pak fast ifl 72 in_ifp ge-0/0/1.0

Jan 10 11:55:44 11:55:44.133756:CID-0:RT: ge-0/0/1.0:192.168.200.50/55898->107.191.99.95/3333, tcp, flag 10

Jan 10 11:55:44 11:55:44.133756:CID-0:RT: find flow: table 0x5088de78, hash 52367(0xffff), sa 192.168.200.50, da 107.191.99.95, sp 55898, dp 3333, proto 6, tok 6

Jan 10 11:55:44 11:55:44.133756:CID-0:RT: flow got session.

Jan 10 11:55:44 11:55:44.133756:CID-0:RT: flow session id 354212

Jan 10 11:55:44 11:55:44.133756:CID-0:RT: refreshing session

Jan 10 11:55:44 11:55:44.133756:CID-0:RT: vector bits 0x1002 vector 0x48bbca50

Jan 10 11:55:44 11:55:44.133756:CID-0:RT: tcp seq check.

Jan 10 11:55:44 11:55:44.133756:CID-0:RT:flow_xlate_pak

Jan 10 11:55:44 11:55:44.133756:CID-0:RT: post addr xlation: x.x.x.x->107.191.99.95.

Jan 10 11:55:44 11:55:44.133756:CID-0:RT: post addr xlation: x.x.x.x->107.191.99.95.

Jan 10 11:55:44 11:55:44.133756:CID-0:RT:skip pre-frag: is_tunnel_if- 0, is_if_mtu_configured- 0

Jan 10 11:55:44 11:55:44.133756:CID-0:RT:mbuf 0x43615780, exit nh 0xf0010

Jan 10 11:55:44 11:55:44.133756:CID-0:RT: ----- flow_process_pkt rc 0x0 (fp rc 0)

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:<192.168.200.19/10942->8.8.8.8/53;17> :

Jan 10 11:55:44 11:55:44.142439:CID-0:RTacket [57] ipid = 46161, @0x43632d1e

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43632b00, rtbl_idx = 0

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: flow process pak fast ifl 72 in_ifp ge-0/0/1.0

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: find flow: table 0x5088de78, hash 56125(0xffff), sa 192.168.200.19, da 8.8.8.8, sp 10942, dp 53, proto 17, tok 6

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: flow_first_create_session

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: flow_first_in_dst_nat: in <ge-0/0/1.0>, out <N/A> dst_adr 8.8.8.8, sp 10942, dp 53

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: chose interface ge-0/0/1.0 as incoming nat if.

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:flow_first_rule_dst_xlate: DST no-xlate: 0.0.0.0(0) to 8.8.8.8(53)

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:flow_first_routing: vr_id 0, call flow_route_lookup(): src_ip 192.168.200.19, x_dst_ip 8.8.8.8, in ifp ge-0/0/1.0, out ifp N/A sp 10942, dp 53, ip_proto 17, tos 0

Jan 10 11:55:44 11:55:44.142439:CID-0:RToing DESTINATION addr route-lookup

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: routed (x_dst_ip 8.8.8.8) from Internal (ge-0/0/1.0 in 0) to ge-0/0/0.0, Next-hop: x.x.x.x

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:flow_first_policy_search: policy search from zone Internal-> zone Internet (0x0,0x2abe0035,0x35)

Jan 10 11:55:44 11:55:44.142439:CID-0:RTolicy lkup: vsys 0 zone(6:Internal) -> zone(7:Internet) scope:0

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:             192.168.200.19/10942 -> 8.8.8.8/53 proto 17

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: app 16, timeout 60s, curr ageout 60s

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: permitted by policy All_Internal_Internet(4)

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: packet passed, Permitted by policy.

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:flow_first_src_xlate: nat_src_xlated: False, nat_src_xlate_failed: False

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:flow_first_src_xlate: src nat returns status: 1, rule/pool id: 1/2, pst_nat: False.

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: dip id = 2/0, 192.168.200.19/10942->x.x.x.x/31185 protocol 17

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: choose interface ge-0/0/0.0 as outgoing phy if

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:is_loop_pak: No loop: on ifp: ge-0/0/0.0, addr: 8.8.8.8, rtt_idx:0

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf : Alloc sess plugin info for session 304942683219

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:[JSF]Normal interest check. regd plugins 19, enabled impl mask 0x0

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 2, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 3, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 5, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 6, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 7, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 8, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 12, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 15, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:+++++++++++jsf_test_plugin_data_evh: 3

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 16, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: Allocating plugin info block for plugin(22)

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:[JSF] set ext handle 0x49b34280 for plugin 22 on session 304942683219

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 22, svc_req 0x4, impl mask 0x0. rc 3

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 23, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 26, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 27, svc_req 0x0, impl mask 0x0. rc 2

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf int check: plugin id 28, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:[JSF]Plugins(0x4, count 0) enabled for session = 4294967296, impli mask(0x47), post_nat cnt 5203 svc req(0x0)

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:[JSF]c2s order list:

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:               22

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:[JSF]s2c order list:

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:               22

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: service lookup identified service 16.

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: flow_first_final_check: in <ge-0/0/1.0>, out <ge-0/0/0.0>

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:flow_first_final_check: flow_set_xlate_vector.

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:flow_first_complete_session, pak_ptr: 0x5090f090, nsp: 0x54936f40, in_tunnel: 0x0

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:construct v4 vector for nsp2

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: existing vector list 0x9080-0x48bddd10.

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: Session (id:5203) created for first pak 9080

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: flow_first_install_session======> 0x54936f40

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: nsp 0x54936f40, nsp2 0x54936fc0

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: make_nsp_ready_no_resolve()

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: route lookup: dest-ip 192.168.200.19 orig ifp ge-0/0/1.0 output_ifp ge-0/0/1.0 orig-zone 6 out-zone 6 vsd 0

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: route to 192.168.200.19

Jan 10 11:55:44 11:55:44.142439:CID-0:RToing jsf sess create notify

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:-jsf create notify: plugin id 22. rc 3

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:flow_do_jsf_notify_session_creation(): natp(0x54936f40): 0 SHORT_CIRCUITED: 0x00000000.

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:no need update ha

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:Installing c2s NP session wing

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:Installing s2c NP session wing

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: flow got session.

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: flow fast tcp/udp session id 5203

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: vector bits 0x9080 vector 0x48bddd10

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: ****jsf svc chain: sess id 5203, dir 1, nat_done 0, pak pid 1, first pid 22

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: plugin id 22. action 0, stbuf 0x0

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: jsf reinj pak pid 22, dir 1, jbuf 0x62b9e278, release hold 0

Jan 10 11:55:44 11:55:44.142439:CID-0:RT:jsf_inject_pkt_to_flow: Fill in flow_ctxt->rtbl_idx(0) based on natp, cos 0.

Jan 10 11:55:44 11:55:44.142439:CID-0:RTKT-PROC for plugin 22 jbuf 0x62b9de78, sess jsf flags 0x0, rc 7

Jan 10 11:55:44 11:55:44.142439:CID-0:RT: ----- flow_process_pkt rc 0x7 (fp rc -1)

Jan 10 11:55:44 11:55:44.132186:CID-0:CTRL:flow2: Rate limit changed to 0
Jan 10 11:55:44 11:55:44.132186:CID-0:CTRL:flow2: Destination ID set to 2
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow3: Rate limit changed to 0
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow3: Destination ID set to 2
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow4: Rate limit changed to 0
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow4: Destination ID set to 2
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow5: Rate limit changed to 0
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow5: Destination ID set to 2
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow6: Rate limit changed to 0
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow6: Destination ID set to 2
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow7: Rate limit changed to 0
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow7: Destination ID set to 2
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow8: Rate limit changed to 0
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow8: Destination ID set to 2
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow9: Rate limit changed to 0
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow9: Destination ID set to 2
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow10: Rate limit changed to 0
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow10: Destination ID set to 2
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow11: Rate limit changed to 0
Jan 10 11:55:44 11:55:44.132338:CID-0:CTRL:flow11: Destination ID set to 2
Jan 10 11:56:43 11:56:43.439496:CID-0:RT:-jsf close check notify: plugin id 22. rc 0

Jan 10 11:56:43 11:56:43.439496:CID-0:RT:jsf sess close notify

Jan 10 11:56:43 11:56:43.439496:CID-0:RT: jsf sess close notify plugin id 22. rc 0

Jan 10 11:56:43 11:56:43.439496:CID-0:RT:flow_ipv4_del_flow: sess 5203, in hash 32

Jan 10 11:56:43 11:56:43.439496:CID-0:RT:flow_ipv4_del_flow: sess 5203, in hash 32

Jan 10 11:56:45 11:56:45.437582:CID-0:RT:jsf sess destroy notify

Jan 10 11:56:45 11:56:45.437582:CID-0:RT:[JSF] set ext handle 0x0 for plugin 22 on session 304942683219

Jan 10 11:56:45 11:56:45.437582:CID-0:RT: jsf sess destroy notify plugin id 22. rc 0

Jan 10 11:58:57 11:58:57.377026:CID-0:RT:ASL nat rule lookup: src_ip: 185.53.91.39

Jan 10 11:58:57 11:58:57.377026:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 11:58:57 11:58:57.377026:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: ge-0/0/0.0->ge-0/0/1.0

Jan 10 11:58:57 11:58:57.377026:CID-0:RT:ASL nat rule lookup: src_ip: 1.1.1.1

Jan 10 11:58:57 11:58:57.377026:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 11:58:57 11:58:57.377026:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: ge-0/0/0.0->ge-0/0/1.0

Jan 10 11:58:57 11:58:57.377026:CID-0:RT:ASL nat rule lookup: src_ip: x.x.x.x

Jan 10 11:58:57 11:58:57.377026:CID-0:RT:ASL nat rule lookup: dst_ip: 192.168.200.185 port:0

Jan 10 11:58:57 11:58:57.377026:CID-0:RT:ASL nat rule lookup: lsys:0, ifp: .local..0->ge-0/0/1.0

SRX A i didn't see it is working

@corp-srx# run show log flow-trace

[edit]

ssswp · ‎01-09-2019

from srx B i did ping to 50.223 and ran flow-session in same box , result below

Jan 10 12:26:28 12:26:27.469796:CID-0:RTre-frag not needed: ipsize: 84, mtu: 1438, nsp2->pmtu: 1438

Jan 10 12:26:28 12:26:27.469796:CID-0:RT: encap vector

Jan 10 12:26:28 12:26:27.469796:CID-0:RT: going into tunnel 131074 (nsp_tunnel=0x603f6660).

Jan 10 12:26:28 12:26:27.469796:CID-0:RT: flow_encrypt: tun 0x603f6660, type 1

Jan 10 12:26:28 12:26:27.469796:CID-0:RT:mbuf 0x4480af80, exit nh 0x390010

Jan 10 12:26:28 12:26:27.469796:CID-0:RT:flow_process_pkt_exception: Freeing lpak 0x5090ec98 associated with mbuf 0x4480af80

Jan 10 12:26:28 12:26:27.469796:CID-0:RT: ----- flow_process_pkt rc 0x0 (fp rc 0)

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:<10.11.11.12/78->192.168.50.223/10460;1> matched filter f2:

Jan 10 12:26:28 12:26:28.491031:CID-0:RTacket [84] ipid = 30868, @0x4480ccc1

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 0, common flag 0x0, mbuf 0x4480ca80, rtbl_idx = 0

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: in_ifp <junos-host:.local..0>

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:flow_process_pkt_exception: setting rtt in lpak to 0x679f3f98

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:Using vr id from pfe_tag with value= 0

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:Changing lpak->in_ifp from:.local..0 -> to:.local..0

Jan 10 12:26:28 12:26:28.491031:CID-0:RTver-riding lpak->vsys with 0

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: .local..0:10.11.11.12->192.168.50.223, icmp, (8/0)

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: find flow: table 0x5088de78, hash 23388(0xffff), sa 10.11.11.12, da 192.168.50.223, sp 78, dp 10460, proto 1, tok 2

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: no session found, start first path. in_tunnel - 0x0, from_cp_flag - 0

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: flow_first_create_session

Jan 10 12:26:28 12:26:28.491031:CID-0:RTflow_first_create_session) usp_tagged set session as mng session

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: flow_first_in_dst_nat: in <.local..0>, out <N/A> dst_adr 192.168.50.223, sp 78, dp 10460

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: chose interface .local..0 as incoming nat if.

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:flow_first_rule_dst_xlate: packet 10.11.11.12->192.168.50.223 nsp2 0.0.0.0->192.168.50.223.

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:flow_first_routing: vr_id 0, call flow_route_lookup(): src_ip 10.11.11.12, x_dst_ip 192.168.50.223, in ifp .local..0, out ifp N/A sp 78, dp 10460, ip_proto 1, tos 0

Jan 10 12:26:28 12:26:28.491031:CID-0:RToing DESTINATION addr route-lookup

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: routed (x_dst_ip 192.168.50.223) from junos-host (.local..0 in 0) to st0.0, Next-hop: 192.168.50.223

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:flow_first_policy_search: policy search from zone junos-host-> zone us-corp-vpn (0x0,0x4e28dc,0x28dc)

Jan 10 12:26:28 12:26:28.491031:CID-0:RTolicy lkup: vsys 0 zone(2:junos-host) -> zone(9:us-corp-vpn) scope:0

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: 10.11.11.12/2048 -> 192.168.50.223/54429 proto 1

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: app 0, timeout 60s, curr ageout 60s

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: permitted by policy self-traffic-policy(1)

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: packet passed, Permitted by policy.

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:flow_first_src_xlate: nat_src_xlated: False, nat_src_xlate_failed: False

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:flow_first_src_xlate: src nat returns status: 0, rule/pool id: 0/0, pst_nat: False.

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: dip id = 0/0, 10.11.11.12/78->10.11.11.12/78 protocol 0

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: Found tunnel for if (non-vpn or vpn without nhtb) st0.0

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:flow_first_get_tun_info: tunnel out 0x603f6660, tun id 131074

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:flow_first_get_out_ifp: tunnel out 0x603f6660, tun id 131074

Jan 10 12:26:28 12:26:28.491031:CID-0:RT: choose interface ge-0/0/0.0 as outgoing phy if

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:is_loop_pak: No loop: on ifp: st0.0, addr: 192.168.50.223, rtt_idx:0

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:-jsf : Alloc sess plugin info for session 304942927504

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:[JSF]Normal interest check. regd plugins 19, enabled impl mask 0x0

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:-jsf int check: plugin id 2, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:-jsf int check: plugin id 3, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:-jsf int check: plugin id 5, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:-jsf int check: plugin id 6, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:-jsf int check: plugin id 7, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:-jsf int check: plugin id 8, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:-jsf int check: plugin id 12, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:-jsf int check: plugin id 15, svc_req 0x0, impl mask 0x0. rc 4

Jan 10 12:26:28 12:26:28.491031:CID-0:RT:+++++++++++jsf_test_plugin_data_evh: 3

ssswp · ‎01-09-2019

this is srx B, are these poilices are in correct oreder ? ihave seen trafic going /4 & /7 , index10 placed at last (which is not working )

@dc> show security policies
Default policy: deny-all
From zone: Internal, To zone: Internet
Policy: All_Internal_Internet, State: enabled, Index: 4, Scope Policy: 0, Sequence number: 1
    Source addresses: any
    Destination addresses: any
    Applications: any
    Action: permit
From zone: Internal, To zone: Internal
Policy: route-11, State: enabled, Index: 6, Scope Policy: 0, Sequence number: 1
    Source addresses: any
    Destination addresses: int-11-net
    Applications: any
    Action: permit
From zone: Internal, To zone: in.vpn
Policy: Internal-in-corp-vpn, State: enabled, Index: 8, Scope Policy: 0, Sequence number: 1
    Source addresses: int-200-net, int-201-net, int-203-net, int-11-net
    Destination addresses: net-cfgr_192-168-2-0--24, net-cfgr_192-168-6-0--24, net-inopenvpn_192-168-10-0--24
    Applications: any
    Action: permit
From zone: Internal, To zone: -corp-vpn
Policy: internal--corp-vpn, State: enabled, Index: 9, Scope Policy: 0, Sequence number: 1
    Source addresses: int-200-net, int-11-net
    Destination addresses: -corp-50-net
    Applications: any
    Action: permit
From zone: Internet, To zone: Internal
Policy: ov-access, State: enabled, Index: 5, Scope Policy: 0, Sequence number: 1
    Source addresses: any
    Destination addresses: ov-server
    Applications: any
    Action: permit
From zone: in.vpn, To zone: Internal
Policy: in-corp-vpn-Internal-vpn, State: enabled, Index: 7, Scope Policy: 0, Sequence number: 1
    Source addresses: net-cfgr_192-168-2-0--24, net-cfgr_192-168-6-0--24, net-inopenvpn_192-168-10-0--24
    Destination addresses: int-200-net, int-201-net, int-203-net, int-11-net
    Applications: any
    Action: permit
From zone: -corp-vpn, To zone: Internal
Policy: -corp-vpn-Internal-vpn, State: enabled, Index: 10, Scope Policy: 0, Sequence number: 1
    Source addresses: -corp-50-net
    Destination addresses: int-200-net, int-11-net
    Applications: any
    Action: permit

vikassingh · ‎01-10-2019

From the SRXb , it looks like packet is going in to the tunnel and getting processed successfully:

Jan 10 12:26:28 12:26:27.469796:CID-0:RTSmiley Tonguere-frag not needed: ipsize: 84, mtu: 1438, nsp2->pmtu: 1438
Jan 10 Jan 10 12:26:28 12:26:27.469796:CID-0:RT: going into tunnel 131074 (nsp_tunnel=0x603f6660).
Jan 10 12:26:28 12:26:28.491031:CID-0:RT:<10.11.11.12/78->192.168.50.223/10460;1> matched filter f2:
Jan 10 12:26:28 12:26:28.491031:CID-0:RTSmiley Tongueacket [84] ipid = 30868, @0x4480ccc1

I hope, you have configured the packet filter for the return traffic also. in Your snippet, I don't see above packet on the SRXA. LOgs on the SRXA is till 11:58:57 only. Did you take simultaneous traces ? Can you please attach the complete the trace log file from both the SRXs to see the complete flow ?

Thanks,

Vikas

ssswp · ‎01-10-2019

SRX A : acitaved trac-flow

Jan 10 08:47:27 08:47:27.218369:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:27 08:47:27.218369:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:27 08:47:27.218369:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:27 08:47:27.218369:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e1159c

Jan 10 08:47:27 08:47:27.218369:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:27 08:47:27.218369:CID-0:RTacket [136] ipid = 36483, @0x43e1159c

Jan 10 08:47:27 08:47:27.218369:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:28 08:47:28.238955:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:28 08:47:28.238955:CID-0:RTacket [136] ipid = 36508, @0x43e5889c

Jan 10 08:47:28 08:47:28.238955:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e58680, rtbl_idx = 0

Jan 10 08:47:28 08:47:28.238955:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:28 08:47:28.238955:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:28 08:47:28.238955:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:28 08:47:28.238955:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:28 08:47:28.238955:CID-0:RT: flow got session.

Jan 10 08:47:28 08:47:28.238955:CID-0:RT: flow session id 45433

Jan 10 08:47:28 08:47:28.238955:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:28 08:47:28.238955:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:28 08:47:28.238955:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:28 08:47:28.238955:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e5889c

Jan 10 08:47:28 08:47:28.238955:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:28 08:47:28.238955:CID-0:RTacket [136] ipid = 36508, @0x43e5889c

Jan 10 08:47:28 08:47:28.238955:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:29 08:47:29.258473:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:32 08:47:29.258473:CID-0:RTacket [136] ipid = 36534, @0x43e8859c

Jan 10 08:47:32 08:47:29.258473:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e88380, rtbl_idx = 0

Jan 10 08:47:32 08:47:29.258473:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:32 08:47:29.258473:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:32 08:47:29.258473:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:32 08:47:29.258473:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:32 08:47:29.258473:CID-0:RT: flow got session.

Jan 10 08:47:32 08:47:29.258473:CID-0:RT: flow session id 45433

Jan 10 08:47:32 08:47:29.258473:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:32 08:47:29.258473:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:32 08:47:29.258473:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:32 08:47:29.258473:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e8859c

Jan 10 08:47:32 08:47:29.258473:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:32 08:47:29.258473:CID-0:RTacket [136] ipid = 36534, @0x43e8859c

Jan 10 08:47:32 08:47:29.258473:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:32 08:47:30.277749:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:32 08:47:30.277749:CID-0:RTacket [136] ipid = 36557, @0x43e2941c

Jan 10 08:47:32 08:47:30.277749:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e29200, rtbl_idx = 0

Jan 10 08:47:32 08:47:30.277749:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:32 08:47:30.277749:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:32 08:47:30.277749:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:32 08:47:30.277749:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:32 08:47:30.277749:CID-0:RT: flow got session.

Jan 10 08:47:32 08:47:30.277749:CID-0:RT: flow session id 45433

Jan 10 08:47:32 08:47:30.277749:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:32 08:47:30.277749:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:32 08:47:30.277749:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:32 08:47:30.277749:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e2941c

Jan 10 08:47:32 08:47:30.277749:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:32 08:47:30.277749:CID-0:RTacket [136] ipid = 36557, @0x43e2941c

Jan 10 08:47:32 08:47:30.277749:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:32 08:47:30.475437:CID-0:RT:<x.x.x.194/1194->x.x.x.249/24119;17,0x0> matched filter MatchTraffic:

Jan 10 08:47:32 08:47:30.475437:CID-0:RTacket [121] ipid = 58322, @0x43e6219c

Jan 10 08:47:32 08:47:30.475437:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e61f80, rtbl_idx = 0

Jan 10 08:47:32 08:47:30.475437:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:32 08:47:30.475437:CID-0:RT: find flow: table 0x52fa0fc0, hash 26552(0xffff), sa x.x.x.194, da x.x.x.249, sp 1194, dp 24119, proto 17, tok 10, conn-tag 0x00000000

Jan 10 08:47:32 08:47:30.475437:CID-0:RT: flow got session.

Jan 10 08:47:32 08:47:30.475437:CID-0:RT: flow fast tcp/udp session id 13829

Jan 10 08:47:32 08:47:30.475437:CID-0:RT: vector bits 0x1000 vector 0x4b083eb0

Jan 10 08:47:32 08:47:30.475437:CID-0:RT:mbuf 0x43e61f80, exit nh 0x2a0010

Jan 10 08:47:32 08:47:30.475437:CID-0:RT: ----- flow_process_pkt rc 0x0 (fp rc 0)

Jan 10 08:47:32 08:47:31.297754:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:32 08:47:31.297754:CID-0:RTacket [136] ipid = 36575, @0x43e0851c

Jan 10 08:47:32 08:47:31.297754:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e08300, rtbl_idx = 0

Jan 10 08:47:32 08:47:31.297754:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:32 08:47:31.297754:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:32 08:47:31.297754:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:32 08:47:31.297754:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:32 08:47:31.297754:CID-0:RT: flow got session.

Jan 10 08:47:32 08:47:31.297754:CID-0:RT: flow session id 45433

Jan 10 08:47:32 08:47:31.297754:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:32 08:47:31.297754:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:32 08:47:31.297754:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:32 08:47:31.297754:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e0851c

Jan 10 08:47:32 08:47:31.297754:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:32 08:47:31.297754:CID-0:RTacket [136] ipid = 36575, @0x43e0851c

Jan 10 08:47:32 08:47:31.297754:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:32 08:47:32.315476:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:32 08:47:32.315476:CID-0:RTacket [136] ipid = 36601, @0x43e1511c

Jan 10 08:47:32 08:47:32.315476:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e14f00, rtbl_idx = 0

Jan 10 08:47:32 08:47:32.315476:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:32 08:47:32.315476:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:32 08:47:32.315476:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:32 08:47:32.315476:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:32 08:47:32.315476:CID-0:RT: flow got session.

Jan 10 08:47:32 08:47:32.315476:CID-0:RT: flow session id 45433

Jan 10 08:47:32 08:47:32.315476:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:32 08:47:32.315476:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:32 08:47:32.315476:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:32 08:47:32.315476:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e1511c

Jan 10 08:47:32 08:47:32.315476:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:32 08:47:32.315476:CID-0:RTacket [136] ipid = 36601, @0x43e1511c

Jan 10 08:47:32 08:47:32.315476:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:33 08:47:33.331139:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:33 08:47:33.331139:CID-0:RTacket [136] ipid = 36615, @0x43e80e9c

Jan 10 08:47:33 08:47:33.331139:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e80c80, rtbl_idx = 0

Jan 10 08:47:33 08:47:33.331139:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:33 08:47:33.331139:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:33 08:47:33.331139:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:33 08:47:33.331139:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:33 08:47:33.331139:CID-0:RT: flow got session.

Jan 10 08:47:33 08:47:33.331139:CID-0:RT: flow session id 45433

Jan 10 08:47:33 08:47:33.331139:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:33 08:47:33.331139:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:33 08:47:33.331139:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:33 08:47:33.331139:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e80e9c

Jan 10 08:47:33 08:47:33.331139:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:33 08:47:33.331139:CID-0:RTacket [136] ipid = 36615, @0x43e80e9c

Jan 10 08:47:33 08:47:33.331139:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:34 08:47:34.348596:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:34 08:47:34.348596:CID-0:RTacket [136] ipid = 36640, @0x43e7319c

Jan 10 08:47:34 08:47:34.348596:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e72f80, rtbl_idx = 0

Jan 10 08:47:34 08:47:34.348596:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:34 08:47:34.348596:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:34 08:47:34.348596:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:34 08:47:34.348596:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:34 08:47:34.348596:CID-0:RT: flow got session.

Jan 10 08:47:34 08:47:34.348596:CID-0:RT: flow session id 45433

Jan 10 08:47:34 08:47:34.348596:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:34 08:47:34.348596:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:34 08:47:34.348596:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:34 08:47:34.348596:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e7319c

Jan 10 08:47:34 08:47:34.348596:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:34 08:47:34.348596:CID-0:RTacket [136] ipid = 36640, @0x43e7319c

Jan 10 08:47:34 08:47:34.348596:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:35 08:47:35.370638:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:35 08:47:35.370638:CID-0:RTacket [136] ipid = 36670, @0x43e89f1c

Jan 10 08:47:35 08:47:35.370638:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e89d00, rtbl_idx = 0

Jan 10 08:47:35 08:47:35.370638:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:35 08:47:35.370638:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:35 08:47:35.370638:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:35 08:47:35.370638:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:35 08:47:35.370638:CID-0:RT: flow got session.

Jan 10 08:47:35 08:47:35.370638:CID-0:RT: flow session id 45433

Jan 10 08:47:35 08:47:35.370638:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:35 08:47:35.370638:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:35 08:47:35.370638:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:35 08:47:35.370638:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e89f1c

Jan 10 08:47:35 08:47:35.370638:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:35 08:47:35.370638:CID-0:RTacket [136] ipid = 36670, @0x43e89f1c

Jan 10 08:47:35 08:47:35.370638:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:36 08:47:36.385136:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:36 08:47:36.385136:CID-0:RTacket [136] ipid = 36691, @0x43e1ea1c

Jan 10 08:47:36 08:47:36.385136:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e1e800, rtbl_idx = 0

Jan 10 08:47:36 08:47:36.385136:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:36 08:47:36.385136:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:36 08:47:36.385136:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:36 08:47:36.385136:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:36 08:47:36.385136:CID-0:RT: flow got session.

Jan 10 08:47:36 08:47:36.385136:CID-0:RT: flow session id 45433

Jan 10 08:47:36 08:47:36.385136:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:36 08:47:36.385136:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:36 08:47:36.385136:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:36 08:47:36.385136:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e1ea1c

Jan 10 08:47:36 08:47:36.385136:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:36 08:47:36.385136:CID-0:RTacket [136] ipid = 36691, @0x43e1ea1c

Jan 10 08:47:36 08:47:36.385136:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:37 08:47:37.400095:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:37 08:47:37.400095:CID-0:RTacket [136] ipid = 36723, @0x43e4789c

Jan 10 08:47:37 08:47:37.400095:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e47680, rtbl_idx = 0

Jan 10 08:47:37 08:47:37.400095:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:37 08:47:37.400095:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:37 08:47:37.400095:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:37 08:47:37.400095:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:37 08:47:37.400095:CID-0:RT: flow got session.

Jan 10 08:47:37 08:47:37.400095:CID-0:RT: flow session id 45433

Jan 10 08:47:37 08:47:37.400095:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:37 08:47:37.400095:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:37 08:47:37.400095:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:37 08:47:37.400095:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e4789c

Jan 10 08:47:37 08:47:37.400095:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:37 08:47:37.400095:CID-0:RTacket [136] ipid = 36723, @0x43e4789c

Jan 10 08:47:37 08:47:37.400095:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:38 08:47:38.417754:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:38 08:47:38.417754:CID-0:RTacket [136] ipid = 36734, @0x43e0a71c

Jan 10 08:47:38 08:47:38.417754:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e0a500, rtbl_idx = 0

Jan 10 08:47:38 08:47:38.417754:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:38 08:47:38.417754:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:38 08:47:38.417754:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:38 08:47:38.417754:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:38 08:47:38.417754:CID-0:RT: flow got session.

Jan 10 08:47:38 08:47:38.417754:CID-0:RT: flow session id 45433

Jan 10 08:47:38 08:47:38.417754:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:38 08:47:38.417754:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:38 08:47:38.417754:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:38 08:47:38.417754:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e0a71c

Jan 10 08:47:38 08:47:38.417754:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:38 08:47:38.417754:CID-0:RTacket [136] ipid = 36734, @0x43e0a71c

Jan 10 08:47:38 08:47:38.417754:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:39 08:47:39.438228:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:39 08:47:39.438228:CID-0:RTacket [136] ipid = 36761, @0x43e2be9c

Jan 10 08:47:39 08:47:39.438228:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e2bc80, rtbl_idx = 0

Jan 10 08:47:39 08:47:39.438228:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:39 08:47:39.438228:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:39 08:47:39.438228:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:39 08:47:39.438228:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:39 08:47:39.438228:CID-0:RT: flow got session.

Jan 10 08:47:39 08:47:39.438228:CID-0:RT: flow session id 45433

Jan 10 08:47:39 08:47:39.438228:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:39 08:47:39.438228:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:39 08:47:39.438228:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:39 08:47:39.438228:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e2be9c

Jan 10 08:47:39 08:47:39.438228:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:39 08:47:39.438228:CID-0:RTacket [136] ipid = 36761, @0x43e2be9c

Jan 10 08:47:39 08:47:39.438228:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:40 08:47:40.455112:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:40 08:47:40.455112:CID-0:RTacket [136] ipid = 36789, @0x43e6ba9c

Jan 10 08:47:40 08:47:40.455112:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e6b880, rtbl_idx = 0

Jan 10 08:47:40 08:47:40.455112:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:40 08:47:40.455112:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:40 08:47:40.455112:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:40 08:47:40.455112:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:40 08:47:40.455112:CID-0:RT: flow got session.

Jan 10 08:47:40 08:47:40.455112:CID-0:RT: flow session id 45433

Jan 10 08:47:40 08:47:40.455112:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:40 08:47:40.455112:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:40 08:47:40.455112:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:40 08:47:40.455112:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e6ba9c

Jan 10 08:47:40 08:47:40.455112:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:40 08:47:40.455112:CID-0:RTacket [136] ipid = 36789, @0x43e6ba9c

Jan 10 08:47:40 08:47:40.455112:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:41 08:47:41.131132:CID-0:RT:<x.x.x.194/1194->x.x.x.249/24119;17,0x0> matched filter MatchTraffic:

Jan 10 08:47:41 08:47:41.131132:CID-0:RTacket [273] ipid = 58323, @0x43e3df9c

Jan 10 08:47:41 08:47:41.131132:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e3dd80, rtbl_idx = 0

Jan 10 08:47:41 08:47:41.131132:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:41 08:47:41.131132:CID-0:RT: find flow: table 0x52fa0fc0, hash 26552(0xffff), sa x.x.x.194, da x.x.x.249, sp 1194, dp 24119, proto 17, tok 10, conn-tag 0x00000000

Jan 10 08:47:41 08:47:41.131132:CID-0:RT: flow got session.

Jan 10 08:47:41 08:47:41.131132:CID-0:RT: flow fast tcp/udp session id 13829

Jan 10 08:47:41 08:47:41.131132:CID-0:RT: vector bits 0x1000 vector 0x4b083eb0

Jan 10 08:47:41 08:47:41.131132:CID-0:RT:mbuf 0x43e3dd80, exit nh 0x2a0010

Jan 10 08:47:41 08:47:41.131132:CID-0:RT: ----- flow_process_pkt rc 0x0 (fp rc 0)

Jan 10 08:47:41 08:47:41.472167:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:41 08:47:41.472167:CID-0:RTacket [136] ipid = 36814, @0x43e53c1c

Jan 10 08:47:41 08:47:41.472167:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e53a00, rtbl_idx = 0

Jan 10 08:47:41 08:47:41.472167:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:41 08:47:41.472167:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:41 08:47:41.472167:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:41 08:47:41.472167:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:41 08:47:41.472167:CID-0:RT: flow got session.

Jan 10 08:47:41 08:47:41.472167:CID-0:RT: flow session id 45433

Jan 10 08:47:41 08:47:41.472167:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:41 08:47:41.472167:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:41 08:47:41.472167:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:41 08:47:41.472167:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e53c1c

Jan 10 08:47:41 08:47:41.472167:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:41 08:47:41.472167:CID-0:RTacket [136] ipid = 36814, @0x43e53c1c

Jan 10 08:47:41 08:47:41.472167:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:42 08:47:42.492383:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:42 08:47:42.492383:CID-0:RTacket [136] ipid = 36854, @0x43e3249c

Jan 10 08:47:42 08:47:42.492383:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e32280, rtbl_idx = 0

Jan 10 08:47:42 08:47:42.492383:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:42 08:47:42.492383:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:42 08:47:42.492383:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:42 08:47:42.492383:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:42 08:47:42.492383:CID-0:RT: flow got session.

Jan 10 08:47:42 08:47:42.492383:CID-0:RT: flow session id 45433

Jan 10 08:47:42 08:47:42.492383:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:42 08:47:42.492383:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:42 08:47:42.492383:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:42 08:47:42.492383:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e3249c

Jan 10 08:47:42 08:47:42.492383:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:42 08:47:42.492383:CID-0:RTacket [136] ipid = 36854, @0x43e3249c

Jan 10 08:47:42 08:47:42.492383:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:43 08:47:43.512245:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:43 08:47:43.512245:CID-0:RTacket [136] ipid = 36862, @0x43e66e1c

Jan 10 08:47:43 08:47:43.512245:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e66c00, rtbl_idx = 0

Jan 10 08:47:43 08:47:43.512245:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:43 08:47:43.512245:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:43 08:47:43.512245:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:43 08:47:43.512245:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:43 08:47:43.512245:CID-0:RT: flow got session.

Jan 10 08:47:43 08:47:43.512245:CID-0:RT: flow session id 45433

Jan 10 08:47:43 08:47:43.512245:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:43 08:47:43.512245:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:43 08:47:43.512245:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:43 08:47:43.512245:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e66e1c

Jan 10 08:47:43 08:47:43.512245:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:43 08:47:43.512245:CID-0:RTacket [136] ipid = 36862, @0x43e66e1c

Jan 10 08:47:43 08:47:43.512245:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:44 08:47:44.530450:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:44 08:47:44.530450:CID-0:RTacket [136] ipid = 36891, @0x43e3ac9c

Jan 10 08:47:44 08:47:44.530450:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e3aa80, rtbl_idx = 0

Jan 10 08:47:44 08:47:44.530450:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:44 08:47:44.530450:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:44 08:47:44.530450:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:44 08:47:44.530450:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:44 08:47:44.530450:CID-0:RT: flow got session.

Jan 10 08:47:44 08:47:44.530450:CID-0:RT: flow session id 45433

Jan 10 08:47:44 08:47:44.530450:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:44 08:47:44.530450:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:44 08:47:44.530450:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:44 08:47:44.530450:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e3ac9c

Jan 10 08:47:44 08:47:44.530450:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:44 08:47:44.530450:CID-0:RTacket [136] ipid = 36891, @0x43e3ac9c

Jan 10 08:47:44 08:47:44.530450:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:45 08:47:45.545789:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:45 08:47:45.545789:CID-0:RTacket [136] ipid = 36928, @0x43e6cb9c

Jan 10 08:47:45 08:47:45.545789:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e6c980, rtbl_idx = 0

Jan 10 08:47:45 08:47:45.545789:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:45 08:47:45.545789:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:45 08:47:45.545789:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:45 08:47:45.545789:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:45 08:47:45.545789:CID-0:RT: flow got session.

Jan 10 08:47:45 08:47:45.545789:CID-0:RT: flow session id 45433

Jan 10 08:47:45 08:47:45.545789:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:45 08:47:45.545789:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:45 08:47:45.545789:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:45 08:47:45.545789:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e6cb9c

Jan 10 08:47:45 08:47:45.545789:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:45 08:47:45.545789:CID-0:RTacket [136] ipid = 36928, @0x43e6cb9c

Jan 10 08:47:45 08:47:45.545789:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:46 08:47:46.565409:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:46 08:47:46.565409:CID-0:RTacket [136] ipid = 36941, @0x43e6219c

Jan 10 08:47:46 08:47:46.565409:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e61f80, rtbl_idx = 0

Jan 10 08:47:46 08:47:46.565409:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:46 08:47:46.565409:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:46 08:47:46.565409:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:46 08:47:46.565409:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:46 08:47:46.565409:CID-0:RT: flow got session.

Jan 10 08:47:46 08:47:46.565409:CID-0:RT: flow session id 45433

Jan 10 08:47:46 08:47:46.565409:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:46 08:47:46.565409:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:46 08:47:46.565409:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:46 08:47:46.565409:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e6219c

Jan 10 08:47:46 08:47:46.565409:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:46 08:47:46.565409:CID-0:RTacket [136] ipid = 36941, @0x43e6219c

Jan 10 08:47:46 08:47:46.565409:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:47 08:47:47.587732:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:47 08:47:47.587732:CID-0:RTacket [136] ipid = 36982, @0x43e6ba9c

Jan 10 08:47:47 08:47:47.587732:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e6b880, rtbl_idx = 0

Jan 10 08:47:47 08:47:47.587732:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:47 08:47:47.587732:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:47 08:47:47.587732:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:47 08:47:47.587732:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:47 08:47:47.587732:CID-0:RT: flow got session.

Jan 10 08:47:47 08:47:47.587732:CID-0:RT: flow session id 45433

Jan 10 08:47:47 08:47:47.587732:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:47 08:47:47.587732:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:47 08:47:47.587732:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:47 08:47:47.587732:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e6ba9c

Jan 10 08:47:47 08:47:47.587732:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:47 08:47:47.587732:CID-0:RTacket [136] ipid = 36982, @0x43e6ba9c

Jan 10 08:47:47 08:47:47.587732:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:48 08:47:48.605669:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:48 08:47:48.605669:CID-0:RTacket [136] ipid = 36984, @0x43e53c1c

Jan 10 08:47:48 08:47:48.605669:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e53a00, rtbl_idx = 0

Jan 10 08:47:48 08:47:48.605669:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:48 08:47:48.605669:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:48 08:47:48.605669:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:48 08:47:48.605669:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:48 08:47:48.605669:CID-0:RT: flow got session.

Jan 10 08:47:48 08:47:48.605669:CID-0:RT: flow session id 45433

Jan 10 08:47:48 08:47:48.605669:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:48 08:47:48.605669:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:48 08:47:48.605669:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:48 08:47:48.605669:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e53c1c

Jan 10 08:47:48 08:47:48.605669:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:48 08:47:48.605669:CID-0:RTacket [136] ipid = 36984, @0x43e53c1c

Jan 10 08:47:48 08:47:48.605669:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:49 08:47:49.621818:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:49 08:47:49.621818:CID-0:RTacket [136] ipid = 37012, @0x43e1599c

Jan 10 08:47:49 08:47:49.621818:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e15780, rtbl_idx = 0

Jan 10 08:47:49 08:47:49.621818:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:49 08:47:49.621818:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:49 08:47:49.621818:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:49 08:47:49.621818:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:49 08:47:49.621818:CID-0:RT: flow got session.

Jan 10 08:47:49 08:47:49.621818:CID-0:RT: flow session id 45433

Jan 10 08:47:49 08:47:49.621818:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:49 08:47:49.621818:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:49 08:47:49.621818:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:49 08:47:49.621818:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e1599c

Jan 10 08:47:49 08:47:49.621818:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:49 08:47:49.621818:CID-0:RTacket [136] ipid = 37012, @0x43e1599c

Jan 10 08:47:49 08:47:49.621818:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:50 08:47:50.643156:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:50 08:47:50.643156:CID-0:RTacket [136] ipid = 37047, @0x43e2be9c

Jan 10 08:47:50 08:47:50.643156:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e2bc80, rtbl_idx = 0

Jan 10 08:47:50 08:47:50.643156:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:50 08:47:50.643156:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:50 08:47:50.643156:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:50 08:47:50.643156:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:50 08:47:50.643156:CID-0:RT: flow got session.

Jan 10 08:47:50 08:47:50.643156:CID-0:RT: flow session id 45433

Jan 10 08:47:50 08:47:50.643156:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:50 08:47:50.643156:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:50 08:47:50.643156:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:50 08:47:50.643156:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e2be9c

Jan 10 08:47:50 08:47:50.643156:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:50 08:47:50.643156:CID-0:RTacket [136] ipid = 37047, @0x43e2be9c

Jan 10 08:47:50 08:47:50.643156:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:47:51 08:47:51.664631:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:51 08:47:51.664631:CID-0:RTacket [136] ipid = 37057, @0x43e3d71c

Jan 10 08:47:51 08:47:51.664631:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e3d500, rtbl_idx = 0

Jan 10 08:47:51 08:47:51.664631:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:51 08:47:51.664631:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:51 08:47:51.664631:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:51 08:47:51.664631:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:51 08:47:51.664631:CID-0:RT: flow got session.

Jan 10 08:47:51 08:47:51.664631:CID-0:RT: flow session id 45433

Jan 10 08:47:51 08:47:51.664631:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:51 08:47:51.664631:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:51 08:47:51.664631:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:51 08:47:51.664631:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e3d71c

Jan 10 08:47:51 08:47:51.664631:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:51 08:47:51.664631:CID-0:RTacket [136] ipid = 37057, @0x43e3d71c

Jan 10 08:47:51 08:47:51.664631:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)


Jan 10 08:47:52 08:47:52.682959:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:52 08:47:52.682959:CID-0:RTacket [136] ipid = 37090, @0x43e6e51c

Jan 10 08:47:52 08:47:52.682959:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e6e300, rtbl_idx = 0

Jan 10 08:47:52 08:47:52.682959:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:52 08:47:52.682959:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:52 08:47:52.682959:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:52 08:47:52.682959:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:52 08:47:52.682959:CID-0:RT: flow got session.

Jan 10 08:47:52 08:47:52.682959:CID-0:RT: flow session id 45433

Jan 10 08:47:52 08:47:52.682959:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:52 08:47:52.682959:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:52 08:47:52.682959:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:52 08:47:52.682959:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e6e51c

Jan 10 08:47:52 08:47:52.682959:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:52 08:47:52.682959:CID-0:RTacket [136] ipid = 37090, @0x43e6e51c

Jan 10 08:47:52 08:47:52.682959:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)


Jan 10 08:47:53 08:47:53.224764:CID-0:RT:<x.x.x.194/1194->x.x.x.249/24119;17,0x0> matched filter MatchTraffic:

Jan 10 08:47:53 08:47:53.224764:CID-0:RTacket [81] ipid = 58324, @0x43e4789c

Jan 10 08:47:53 08:47:53.224764:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e47680, rtbl_idx = 0

Jan 10 08:47:53 08:47:53.224764:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:53 08:47:53.224764:CID-0:RT: find flow: table 0x52fa0fc0, hash 26552(0xffff), sa x.x.x.194, da x.x.x.249, sp 1194, dp 24119, proto 17, tok 10, conn-tag 0x00000000

Jan 10 08:47:53 08:47:53.224764:CID-0:RT: flow got session.

Jan 10 08:47:53 08:47:53.224764:CID-0:RT: flow fast tcp/udp session id 13829

Jan 10 08:47:53 08:47:53.224764:CID-0:RT: vector bits 0x1000 vector 0x4b083eb0

Jan 10 08:47:53 08:47:53.224764:CID-0:RT:mbuf 0x43e47680, exit nh 0x2a0010

Jan 10 08:47:53 08:47:53.224764:CID-0:RT: ----- flow_process_pkt rc 0x0 (fp rc 0)

Jan 10 08:47:53 08:47:53.698986:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:53 08:47:53.698986:CID-0:RTacket [136] ipid = 37091, @0x43e3821c

Jan 10 08:47:53 08:47:53.698986:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e38000, rtbl_idx = 0

Jan 10 08:47:53 08:47:53.698986:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:47:53 08:47:53.698986:CID-0:RT: ge-0/0/0.0:x.x.x.195->x.x.x.249, 50

Jan 10 08:47:53 08:47:53.698986:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:47:53 08:47:53.698986:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:47:53 08:47:53.698986:CID-0:RT: flow got session.

Jan 10 08:47:53 08:47:53.698986:CID-0:RT: flow session id 45433

Jan 10 08:47:53 08:47:53.698986:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:47:53 08:47:53.698986:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:47:53 08:47:53.698986:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:47:53 08:47:53.698986:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e3821c

Jan 10 08:47:53 08:47:53.698986:CID-0:RT:<x.x.x.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:47:53 08:47:53.698986:CID-0:RTacket [136] ipid = 37091, @0x43e3821c

Jan 10 08:47:53 08:47:53.698986:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:39 08:53:38.887441:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:39 08:53:38.887441:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:39 08:53:38.887441:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:39 08:53:38.887441:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e1841c

Jan 10 08:53:39 08:53:38.887441:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:39 08:53:38.887441:CID-0:RTacket [136] ipid = 46128, @0x43e1841c

Jan 10 08:53:39 08:53:38.887441:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:39 08:53:39.477253:CID-0:RT:<x.x.x.159.194/1194->x.x.x.249/24119;17,0x0> matched filter MatchTraffic:

Jan 10 08:53:39 08:53:39.477253:CID-0:RTacket [81] ipid = 58377, @0x43e0741c

Jan 10 08:53:39 08:53:39.477253:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e07200, rtbl_idx = 0

Jan 10 08:53:39 08:53:39.477253:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:39 08:53:39.477253:CID-0:RT: find flow: table 0x52fa0fc0, hash 26552(0xffff), sa x.x.x.159.194, da x.x.x.249, sp 1194, dp 24119, proto 17, tok 10, conn-tag 0x00000000

Jan 10 08:53:39 08:53:39.477253:CID-0:RT: flow got session.

Jan 10 08:53:39 08:53:39.477253:CID-0:RT: flow fast tcp/udp session id 13829

Jan 10 08:53:39 08:53:39.477253:CID-0:RT: vector bits 0x1000 vector 0x4b083eb0

Jan 10 08:53:39 08:53:39.477253:CID-0:RT:mbuf 0x43e07200, exit nh 0x2a0010

Jan 10 08:53:39 08:53:39.477253:CID-0:RT: ----- flow_process_pkt rc 0x0 (fp rc 0)

Jan 10 08:53:40 08:53:39.908958:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:40 08:53:39.908958:CID-0:RTacket [136] ipid = 46170, @0x43e3711c

Jan 10 08:53:40 08:53:39.908958:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e36f00, rtbl_idx = 0

Jan 10 08:53:40 08:53:39.908958:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:40 08:53:39.908958:CID-0:RT: ge-0/0/0.0:x.x.x.159.195->x.x.x.249, 50

Jan 10 08:53:40 08:53:39.908958:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.159.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:53:40 08:53:39.908958:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:53:40 08:53:39.908958:CID-0:RT: flow got session.

Jan 10 08:53:40 08:53:39.908958:CID-0:RT: flow session id 45433

Jan 10 08:53:40 08:53:39.908958:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:40 08:53:39.908958:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:40 08:53:39.908958:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:40 08:53:39.908958:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e3711c

Jan 10 08:53:40 08:53:39.908958:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:40 08:53:39.908958:CID-0:RTacket [136] ipid = 46170, @0x43e3711c

Jan 10 08:53:40 08:53:39.908958:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:41 08:53:40.924789:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:43 08:53:40.924789:CID-0:RTacket [136] ipid = 46195, @0x43e0169c

Jan 10 08:53:43 08:53:40.924789:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e01480, rtbl_idx = 0

Jan 10 08:53:43 08:53:40.924789:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:43 08:53:40.924789:CID-0:RT: ge-0/0/0.0:x.x.x.159.195->x.x.x.249, 50

Jan 10 08:53:43 08:53:40.924789:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.159.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:53:43 08:53:40.924789:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:53:43 08:53:40.924789:CID-0:RT: flow got session.

Jan 10 08:53:43 08:53:40.924789:CID-0:RT: flow session id 45433

Jan 10 08:53:43 08:53:40.924789:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:43 08:53:40.924789:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:43 08:53:40.924789:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:43 08:53:40.924789:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e0169c

Jan 10 08:53:43 08:53:40.924789:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:43 08:53:40.924789:CID-0:RTacket [136] ipid = 46195, @0x43e0169c

Jan 10 08:53:43 08:53:40.924789:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:43 08:53:41.177660:CID-0:RT:<x.x.x.159.194/1194->x.x.x.249/24119;17,0x0> matched filter MatchTraffic:

Jan 10 08:53:43 08:53:41.177660:CID-0:RTacket [273] ipid = 58378, @0x43e2a51c

Jan 10 08:53:43 08:53:41.177660:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e2a300, rtbl_idx = 0

Jan 10 08:53:43 08:53:41.177660:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:43 08:53:41.177660:CID-0:RT: find flow: table 0x52fa0fc0, hash 26552(0xffff), sa x.x.x.159.194, da x.x.x.249, sp 1194, dp 24119, proto 17, tok 10, conn-tag 0x00000000

Jan 10 08:53:43 08:53:41.177660:CID-0:RT: flow got session.

Jan 10 08:53:43 08:53:41.177660:CID-0:RT: flow fast tcp/udp session id 13829

Jan 10 08:53:43 08:53:41.177660:CID-0:RT: vector bits 0x1000 vector 0x4b083eb0

Jan 10 08:53:43 08:53:41.177660:CID-0:RT:mbuf 0x43e2a300, exit nh 0x2a0010

Jan 10 08:53:43 08:53:41.177660:CID-0:RT: ----- flow_process_pkt rc 0x0 (fp rc 0)

Jan 10 08:53:43 08:53:41.941047:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:43 08:53:41.941047:CID-0:RTacket [136] ipid = 46236, @0x43e1b71c

Jan 10 08:53:43 08:53:41.941047:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e1b500, rtbl_idx = 0

Jan 10 08:53:43 08:53:41.941047:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:43 08:53:41.941047:CID-0:RT: ge-0/0/0.0:x.x.x.159.195->x.x.x.249, 50

Jan 10 08:53:43 08:53:41.941047:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.159.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:53:43 08:53:41.941047:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:53:43 08:53:41.941047:CID-0:RT: flow got session.

Jan 10 08:53:43 08:53:41.941047:CID-0:RT: flow session id 45433

Jan 10 08:53:43 08:53:41.941047:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:43 08:53:41.941047:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:43 08:53:41.941047:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:43 08:53:41.941047:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e1b71c

Jan 10 08:53:43 08:53:41.941047:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:43 08:53:41.941047:CID-0:RTacket [136] ipid = 46236, @0x43e1b71c

Jan 10 08:53:43 08:53:41.941047:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:43 08:53:42.960907:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:43 08:53:42.960907:CID-0:RTacket [136] ipid = 46279, @0x43e3df9c

Jan 10 08:53:43 08:53:42.960907:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e3dd80, rtbl_idx = 0

Jan 10 08:53:43 08:53:42.960907:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:43 08:53:42.960907:CID-0:RT: ge-0/0/0.0:x.x.x.159.195->x.x.x.249, 50

Jan 10 08:53:43 08:53:42.960907:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.159.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:53:43 08:53:42.960907:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:53:43 08:53:42.960907:CID-0:RT: flow got session.

Jan 10 08:53:43 08:53:42.960907:CID-0:RT: flow session id 45433

Jan 10 08:53:43 08:53:42.960907:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:43 08:53:42.960907:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:43 08:53:42.960907:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:43 08:53:42.960907:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e3df9c

Jan 10 08:53:43 08:53:42.960907:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:43 08:53:42.960907:CID-0:RTacket [136] ipid = 46279, @0x43e3df9c

Jan 10 08:53:43 08:53:42.960907:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:44 08:53:43.977507:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:44 08:53:43.977507:CID-0:RTacket [136] ipid = 46285, @0x43e6dc9c

Jan 10 08:53:44 08:53:43.977507:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e6da80, rtbl_idx = 0

Jan 10 08:53:44 08:53:43.977507:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:44 08:53:43.977507:CID-0:RT: ge-0/0/0.0:x.x.x.159.195->x.x.x.249, 50

Jan 10 08:53:44 08:53:43.977507:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.159.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:53:44 08:53:43.977507:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:53:44 08:53:43.977507:CID-0:RT: flow got session.

Jan 10 08:53:44 08:53:43.977507:CID-0:RT: flow session id 45433

Jan 10 08:53:44 08:53:43.977507:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:44 08:53:43.977507:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:44 08:53:43.977507:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:44 08:53:43.977507:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e6dc9c

Jan 10 08:53:44 08:53:43.977507:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:44 08:53:43.977507:CID-0:RTacket [136] ipid = 46285, @0x43e6dc9c

Jan 10 08:53:44 08:53:43.977507:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:45 08:53:44.995265:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:45 08:53:44.995265:CID-0:RTacket [136] ipid = 46349, @0x43e4b41c

Jan 10 08:53:45 08:53:44.995265:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e4b200, rtbl_idx = 0

Jan 10 08:53:45 08:53:44.995265:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:45 08:53:44.995265:CID-0:RT: ge-0/0/0.0:x.x.x.159.195->x.x.x.249, 50

Jan 10 08:53:45 08:53:44.995265:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.159.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:53:45 08:53:44.995265:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:53:45 08:53:44.995265:CID-0:RT: flow got session.

Jan 10 08:53:45 08:53:44.995265:CID-0:RT: flow session id 45433

Jan 10 08:53:45 08:53:44.995265:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:45 08:53:44.995265:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:45 08:53:44.995265:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:45 08:53:44.995265:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e4b41c

Jan 10 08:53:45 08:53:44.995265:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:45 08:53:44.995265:CID-0:RTacket [136] ipid = 46349, @0x43e4b41c

Jan 10 08:53:45 08:53:44.995265:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:46 08:53:46.014013:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:46 08:53:46.014013:CID-0:RTacket [136] ipid = 46387, @0x43e3579c

Jan 10 08:53:46 08:53:46.014013:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e35580, rtbl_idx = 0

Jan 10 08:53:46 08:53:46.014013:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:46 08:53:46.014013:CID-0:RT: ge-0/0/0.0:x.x.x.159.195->x.x.x.249, 50

Jan 10 08:53:46 08:53:46.014013:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.159.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:53:46 08:53:46.014013:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:53:46 08:53:46.014013:CID-0:RT: flow got session.

Jan 10 08:53:46 08:53:46.014013:CID-0:RT: flow session id 45433

Jan 10 08:53:46 08:53:46.014013:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:46 08:53:46.014013:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:46 08:53:46.014013:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:46 08:53:46.014013:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e3579c

Jan 10 08:53:46 08:53:46.014013:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:46 08:53:46.014013:CID-0:RTacket [136] ipid = 46387, @0x43e3579c

Jan 10 08:53:46 08:53:46.014013:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:47 08:53:47.032510:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:47 08:53:47.032510:CID-0:RTacket [136] ipid = 46425, @0x43e7f51c

Jan 10 08:53:47 08:53:47.032510:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e7f300, rtbl_idx = 0

Jan 10 08:53:47 08:53:47.032510:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:47 08:53:47.032510:CID-0:RT: ge-0/0/0.0:x.x.x.159.195->x.x.x.249, 50

Jan 10 08:53:47 08:53:47.032510:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.159.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:53:47 08:53:47.032510:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:53:47 08:53:47.032510:CID-0:RT: flow got session.

Jan 10 08:53:47 08:53:47.032510:CID-0:RT: flow session id 45433

Jan 10 08:53:47 08:53:47.032510:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:47 08:53:47.032510:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:47 08:53:47.032510:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:47 08:53:47.032510:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e7f51c

Jan 10 08:53:47 08:53:47.032510:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:47 08:53:47.032510:CID-0:RTacket [136] ipid = 46425, @0x43e7f51c

Jan 10 08:53:47 08:53:47.032510:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:48 08:53:48.047471:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:48 08:53:48.047471:CID-0:RTacket [136] ipid = 46453, @0x43e0059c

Jan 10 08:53:48 08:53:48.047471:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e00380, rtbl_idx = 0

Jan 10 08:53:48 08:53:48.047471:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:48 08:53:48.047471:CID-0:RT: ge-0/0/0.0:x.x.x.159.195->x.x.x.249, 50

Jan 10 08:53:48 08:53:48.047471:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.159.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:53:48 08:53:48.047471:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:53:48 08:53:48.047471:CID-0:RT: flow got session.

Jan 10 08:53:48 08:53:48.047471:CID-0:RT: flow session id 45433

Jan 10 08:53:48 08:53:48.047471:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:48 08:53:48.047471:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:48 08:53:48.047471:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:48 08:53:48.047471:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e0059c

Jan 10 08:53:48 08:53:48.047471:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:48 08:53:48.047471:CID-0:RTacket [136] ipid = 46453, @0x43e0059c

Jan 10 08:53:48 08:53:48.047471:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:49 08:53:49.069399:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:49 08:53:49.069399:CID-0:RTacket [136] ipid = 46468, @0x43e4789c

Jan 10 08:53:49 08:53:49.069399:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e47680, rtbl_idx = 0

Jan 10 08:53:49 08:53:49.069399:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:49 08:53:49.069399:CID-0:RT: ge-0/0/0.0:x.x.x.159.195->x.x.x.249, 50

Jan 10 08:53:49 08:53:49.069399:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.159.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:53:49 08:53:49.069399:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:53:49 08:53:49.069399:CID-0:RT: flow got session.

Jan 10 08:53:49 08:53:49.069399:CID-0:RT: flow session id 45433

Jan 10 08:53:49 08:53:49.069399:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:49 08:53:49.069399:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:49 08:53:49.069399:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:49 08:53:49.069399:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e4789c

Jan 10 08:53:49 08:53:49.069399:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:49 08:53:49.069399:CID-0:RTacket [136] ipid = 46468, @0x43e4789c

Jan 10 08:53:49 08:53:49.069399:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:50 08:53:50.094057:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:50 08:53:50.094057:CID-0:RTacket [136] ipid = 46499, @0x43e1ea1c

Jan 10 08:53:50 08:53:50.094057:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e1e800, rtbl_idx = 0

Jan 10 08:53:50 08:53:50.094057:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:50 08:53:50.094057:CID-0:RT: ge-0/0/0.0:x.x.x.159.195->x.x.x.249, 50

Jan 10 08:53:50 08:53:50.094057:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.159.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:53:50 08:53:50.094057:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:53:50 08:53:50.094057:CID-0:RT: flow got session.

Jan 10 08:53:50 08:53:50.094057:CID-0:RT: flow session id 45433

Jan 10 08:53:50 08:53:50.094057:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:50 08:53:50.094057:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:50 08:53:50.094057:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:50 08:53:50.094057:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e1ea1c

Jan 10 08:53:50 08:53:50.094057:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:50 08:53:50.094057:CID-0:RTacket [136] ipid = 46499, @0x43e1ea1c

Jan 10 08:53:50 08:53:50.094057:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

Jan 10 08:53:51 08:53:51.112912:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:51 08:53:51.112912:CID-0:RTacket [136] ipid = 46534, @0x43e3821c

Jan 10 08:53:51 08:53:51.112912:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x43e38000, rtbl_idx = 0

Jan 10 08:53:51 08:53:51.112912:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/0.0

Jan 10 08:53:51 08:53:51.112912:CID-0:RT: ge-0/0/0.0:x.x.x.159.195->x.x.x.249, 50

Jan 10 08:53:51 08:53:51.112912:CID-0:RT: find flow: table 0x52fa0fc0, hash 56870(0xffff), sa x.x.x.159.195, da x.x.x.249, sp 45128, dp 15033, proto 50, tok 10, conn-tag 0x00000000

Jan 10 08:53:51 08:53:51.112912:CID-0:RT:Found: session id 0xb179. sess tok 10

Jan 10 08:53:51 08:53:51.112912:CID-0:RT: flow got session.

Jan 10 08:53:51 08:53:51.112912:CID-0:RT: flow session id 45433

Jan 10 08:53:51 08:53:51.112912:CID-0:RT: slb_rs: nsp2flag = 0xffffffff, nspflag = 0x100621

Jan 10 08:53:51 08:53:51.112912:CID-0:RT: spu local: nspflag = 0xffffffff

Jan 10 08:53:51 08:53:51.112912:CID-0:RT: flow_decrypt: tun 0x562a5568(flag 0x82), iif 73

Jan 10 08:53:51 08:53:51.112912:CID-0:RT:lpak_init: lpak 0x511f7968, paksize 136, machdr 0x0, iphdr 0x43e3821c

Jan 10 08:53:51 08:53:51.112912:CID-0:RT:<x.x.x.159.195/45128->x.x.x.249/15033;50,0x0> matched filter MatchTraffic:

Jan 10 08:53:51 08:53:51.112912:CID-0:RTacket [136] ipid = 46534, @0x43e3821c

Jan 10 08:53:51 08:53:51.112912:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0)

ssswp · ‎01-10-2019

srx A configured below trac option

flow {
        inactive: traceoptions {
            file flow-trace size 1m files 2 world-readable;
            flag basic-datapath;
            packet-filter c2s {
                source-prefix 192.168.50.223/24;
                destination-prefix 192.168.200.0/24;
            }
            packet-filter s2c {
                source-prefix 192.168.200.0/24;
                destination-prefix 192.168.50.0/32;
            }
            packet-filter outgoing {
                source-prefix 192.168.200.0/24;
            }
            packet-filter MatchTraffic {
                source-prefix y.y.y.y/29;                    ----------> pb gw
                destination-prefix x.x.x.x/26;          ----------->pb gw
            }
            packet-filter MatchTrafficReverse {
                source-prefix 192.168.50.223/24;
                destination-prefix 192.168.200.23/24;
            }
            packet-filter f1 {
                destination-prefix 192.168.200.0/24;
            }
            packet-filter filter1 {
                protocol esp;
                source-prefix 10.11.11.11/24;
                destination-prefix 10.11.11.12/24;
            }
            packet-filter filter2 {
                protocol esp;
                source-prefix 10.11.11.12/24;
                destination-prefix 10.11.11.11/24;
            }
            packet-filter filter3 {
                source-prefix 192.168.50.0/24;
                destination-prefix 192.168.200.0/24;
            }
            packet-filter filter4 {
                source-prefix 192.168.200.0/24;
                destination-prefix 192.168.50.0/24;
            }

ssswp · ‎01-10-2019

srx B when ping from srx A for 50.x ip

Jan 10 15:51:34 15:51:33.915227:CID-0:RT:flow_first_rule_dst_xlate: packet 10.11.11.12->192.168.50.254 nsp2 0.0.0.0->192.168.50.254.

Jan 10 15:51:34 15:51:33.915227:CID-0:RT:flow_first_routing: vr_id 0, call flow_route_lookup(): src_ip 10.11.11.12, x_dst_ip 192.168.50.254, in ifp .local..0, out ifp N/A sp 437, dp 13971, ip_proto 1, tos 0

Jan 10 15:51:34 15:51:33.915227:CID-0:RToing DESTINATION addr route-lookup

Jan 10 15:51:34 15:51:33.915227:CID-0:RT: routed (x_dst_ip 192.168.50.254) from junos-host (.local..0 in 0) to st0.0, Next-hop: 192.168.50.254

Jan 10 15:51:34 15:51:33.915227:CID-0:RT:flow_first_policy_search: policy search from zone junos-host-> zone us-corp-vpn (0x0,0x1b53693,0x3693)

Jan 10 15:51:34 15:51:33.915227:CID-0:RTolicy lkup: vsys 0 zone(2:junos-host) -> zone(9:us-corp-vpn) scope:0 ( why this one junos to zone ? )

Jan 10 15:51:34 15:51:33.915227:CID-0:RT: 10.11.11.12/2048 -> 192.168.50.254/7366 proto 1

Jan 10 15:51:34 15:51:33.915227:CID-0:RT: app 0, timeout 60s, curr ageout 60s

Jan 10 15:51:34 15:51:33.915227:CID-0:RT: permitted by policy self-traffic-policy(1)

Jan 10 15:51:34 15:51:33.915227:CID-0:RT: packet passed, Permitted by policy.

Jan 10 15:51:34 15:51:33.915227:CID-0:RT:flow_first_src_xlate: nat_src_xlated: False, nat_src_xlate_failed: False

Jan 10 15:51:34 15:51:33.915227:CID-0:RT:flow_first_src_xlate: src nat returns status: 0, rule/pool id: 0/0, pst_nat: False.

Jan 10 15:51:34 15:51:33.915227:CID-0:RT: dip id = 0/0, 10.11.11.12/437->10.11.11.12/437 protocol 0

Jan 10 15:51:34 15:51:33.915227:CID-0:RT: Found tunnel for if (non-vpn or vpn without nhtb) st0.0

Jan 10 15:51:34 15:51:33.915227:CID-0:RT:flow_first_get_tun_info: tunnel out 0x603f6660, tun id 131074

Jan 10 15:51:34 15:51:33.915227:CID-0:RT:flow_first_get_out_ifp: tunnel out 0x603f6660, tun id 131074

Jan 10 15:51:34 15:51:33.915227:CID-0:RT: choose interface ge-0/0/0.0 as outgoing phy if

Jan 10 15:51:34 15:51:33.915227:CID-0:RT:is_loop_pak: No loop: on ifp: st0.0, addr: 192.168.50.254, rtt_idx:0

Jan 10 15:51:34 15:51:33.915227:CID-0:RT:-jsf : Alloc sess plugin info for session 322122866316

vikassingh · ‎01-10-2019

Hi,

I don;t see any packet filter on the SRXA matching wtih the traffic on the SRXB :

10.11.11.12/78->192.168.50.223/10460 <<traffic seems to be initiated by st0.0 as source interface by default. Also, filters have the ESP protocols configured.

Either modify your filters to match this traffic or or use the source interface of internal zones to match with the filters.

Thanks,

Vikas

ssswp · ‎01-10-2019

where should i change ? srx A or srx b ?

srxA flow trace options (50.x , 10.11.11.11 st0.0)

    flow {
        traceoptions {
            file flow-trace size 1m files 2 world-readable;
            flag basic-datapath;
            packet-filter c2s {
                source-prefix 192.168.50.223/24;
                destination-prefix 192.168.200.0/24;
            }
            packet-filter s2c {
                source-prefix 192.168.200.0/24;
                destination-prefix 192.168.50.0/32;
            }
            packet-filter outgoing {
                source-prefix 192.168.200.0/24;
            }
            packet-filter MatchTraffic {
                source-prefix y.y.y.y/29;
                destination-prefix x,x,x,x/26;
            }
            packet-filter MatchTrafficReverse {
                source-prefix 192.168.50.223/24;
                destination-prefix 192.168.200.23/24;
            }
            packet-filter f1 {
                destination-prefix 192.168.200.0/24;
            }
            packet-filter filter1 {
                protocol esp;
                source-prefix 10.11.11.11/24;
                destination-prefix 10.11.11.12/24;
            }
            packet-filter filter2 {
                protocol esp;
                source-prefix 10.11.11.12/24;
                destination-prefix 10.11.11.11/24;
            }
            packet-filter filter3 {
                source-prefix 192.168.50.0/24;
                destination-prefix 192.168.200.0/24;
            }
            packet-filter filter4 {
                source-prefix 192.168.200.0/24;
                destination-prefix 192.168.50.0/24;
            }
        }
    }

srxB (200.x n/w , 10.11.11.12 st0.0 )

flow {
        traceoptions {
            file trc-sec-flow size 30k files 3 world-readable;
            flag basic-datapath;
            flag packet-drops;
            packet-filter f2 {
                destination-prefix 192.168.50.0/24;
            }
            packet-filter filter1 {
                protocol esp;
                source-prefix 10.11.11.12/32;
                destination-prefix 10.11.11.11/32;
            }
            packet-filter filter2 {
                protocol esp;
                source-prefix 10.11.11.12/32;
                destination-prefix 10.11.11.11/32;
            }
            packet-filter filter3 {
                protocol tcp;
                destination-prefix y.y.y.y/32;
                destination-port ssh;
            }
            packet-filter filter4 {
                protocol tcp;
                source-prefix x.x.x.x/32;
                destination-port ssh;
            }
        }

2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Attachments

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue

Re: 2 vpns issue