root@SRX2> show log vpnflow.log | no-more Dec 24 06:48:48 S4 clear-log[4101]: logfile cleared Dec 24 06:49:01 06:49:00.839457:CID-0:RT:<10.10.23.2/53599->10.10.34.4/17321;50> : Dec 24 06:49:01 06:49:00.839470:CID-0:RT:packet [172] ipid = 630, @0x4a0549d2 Dec 24 06:49:01 06:49:00.839479:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x4a054780, rtbl_idx = 0 Dec 24 06:49:01 06:49:00.839497:CID-0:RT: flow process pak fast ifl 71 in_ifp ge-0/0/0.100 Dec 24 06:49:01 06:49:00.839508:CID-0:RT: ge-0/0/0.100:10.10.23.2->10.10.34.4, 50 Dec 24 06:49:01 06:49:00.839515:CID-0:RT: find flow: table 0x5734df00, hash 22539(0xffff), sa 10.10.23.2, da 10.10.34.4, sp 53599, dp 17321, proto 50, tok 7 Dec 24 06:49:01 06:49:00.839528:CID-0:RT:Found: session id 0x2ad. sess tok 7 Dec 24 06:49:01 06:49:00.839531:CID-0:RT: flow got session. Dec 24 06:49:01 06:49:00.839531:CID-0:RT: flow session id 685 Dec 24 06:49:01 06:49:00.839538:CID-0:RT: flow_decrypt: tun 0x59644350(flag 0x82), iif 71 Dec 24 06:49:01 06:49:00.839549:CID-0:RT:lpak_init: lpak 0x5761c4e0, paksize 172, machdr 0x0, iphdr 0x4a0549d2 Dec 24 06:49:01 06:49:00.839634:CID-0:RT:<10.10.23.2/53599->10.10.34.4/17321;50> : Dec 24 06:49:01 06:49:00.839636:CID-0:RT:packet [172] ipid = 630, @0x4a0549d2 Dec 24 06:49:01 06:49:00.839637:CID-0:RT: ----- flow_process_pkt rc 0x11 (fp rc 0) Dec 24 06:49:01 06:49:00.839668:CID-0:RT:<100.100.100.250/10466->10.10.10.101/86;1> : Dec 24 06:49:01 06:49:00.839670:CID-0:RT:packet [100] ipid = 700, @0x4a0549fe Dec 24 06:49:01 06:49:00.839670:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 1, common flag 0x0, mbuf 0x4a054780, rtbl_idx = 0 Dec 24 06:49:01 06:49:00.839674:CID-0:RT:flow process pak, mbuf 0x4a054780, ifl 69, ctxt_type 1 inq type 6 Dec 24 06:49:01 06:49:00.839678:CID-0:RT: in_ifp Dec 24 06:49:01 06:49:00.839680:CID-0:RT:flow_process_pkt_exception: setting rtt in lpak to 0x5d1c8530 Dec 24 06:49:01 06:49:00.839685:CID-0:RT:host inq check inq_type 0x6 Dec 24 06:49:01 06:49:00.839687:CID-0:RT:tifp st0.1 Dec 24 06:49:01 06:49:00.839693:CID-0:RT:pkt out of tunnel.Proceed normally Dec 24 06:49:01 06:49:00.839693:CID-0:RT: st0.1:100.100.100.250->10.10.10.101, icmp, (8/0) Dec 24 06:49:01 06:49:00.839696:CID-0:RT: find flow: table 0x5734df00, hash 6048(0xffff), sa 100.100.100.250, da 10.10.10.101, sp 10466, dp 86, proto 1, tok 8 Dec 24 06:49:01 06:49:00.839700:CID-0:RT: no session found, start first path. in_tunnel - 0x59644350, from_cp_flag - 0 Dec 24 06:49:01 06:49:00.839720:CID-0:RT: Found ts-pair, matching packet's incoming nsp_tunnel (tid 268173315). Doing traffic-selector lookup for 10.10.10.101 -> 100.100.100.250 Dec 24 06:49:01 06:49:00.839736:CID-0:RT: IPSec Traffic-selector permit check success. Returning EOK Dec 24 06:49:01 06:49:00.839746:CID-0:RT: flow_first_create_session Dec 24 06:49:01 06:49:00.839800:CID-0:RT:First path alloc and instl pending session, natp=0x59651288, id=794 Dec 24 06:49:01 06:49:00.839803:CID-0:RT: flow_first_in_dst_nat: in , out dst_adr 10.10.10.101, sp 10466, dp 86 Dec 24 06:49:01 06:49:00.839808:CID-0:RT: chose interface st0.1 as incoming nat if. Dec 24 06:49:01 06:49:00.839814:CID-0:RT:flow_first_rule_dst_xlate: DST no-xlate: 0.0.0.0(0) to 10.10.10.101(86) Dec 24 06:49:01 06:49:00.839818:CID-0:RT:flow_first_routing: vr_id 0, call flow_route_lookup(): src_ip 100.100.100.250, x_dst_ip 10.10.10.101, in ifp st0.1, out ifp N/A sp 10466, dp 86, ip_proto 1, tos 0 Dec 24 06:49:01 06:49:00.839820:CID-0:RT:Doing DESTINATION addr route-lookup Dec 24 06:49:01 06:49:00.839851:CID-0:RT:flow_ipv4_rt_lkup success 10.10.10.101, iifl 0x45, oifl 0x49 Dec 24 06:49:01 06:49:00.839857:CID-0:RT: routed (x_dst_ip 10.10.10.101) from VPN1 (st0.1 in 0) to ge-0/0/1.0, Next-hop: 10.10.45.5 Dec 24 06:49:01 06:49:00.839861:CID-0:RT:flow_first_policy_search: policy search from zone VPN1-> zone INSIDE (0x0,0x28e20056,0x56) Dec 24 06:49:01 06:49:00.839874:CID-0:RT:Policy lkup: vsys 0 zone(8:VPN1) -> zone(6:INSIDE) scope:0 Dec 24 06:49:01 06:49:00.839877:CID-0:RT: 100.100.100.250/2048 -> 10.10.10.101/39273 proto 1 Dec 24 06:49:01 06:49:00.839953:CID-0:RT: policy has timeout 30 Dec 24 06:49:01 06:49:00.839954:CID-0:RT: app 0, timeout 60s, curr ageout 60s Dec 24 06:49:01 06:49:00.839956:CID-0:RT: permitted by policy VPN_NAT(5) Dec 24 06:49:01 06:49:00.839957:CID-0:RT: packet passed, Permitted by policy. Dec 24 06:49:01 06:49:00.839962:CID-0:RT:flow_first_src_xlate: nat_src_xlated: False, nat_src_xlate_failed: False Dec 24 06:49:01 06:49:00.839965:CID-0:RT:flow_first_src_xlate: incoming src port is : 57896. Dec 24 06:49:01 06:49:00.839967:CID-0:RT:flow_first_src_xlate: src nat returns status: 0, rule/pool id: 0/0, pst_nat: False. Dec 24 06:49:01 06:49:00.839968:CID-0:RT: dip id = 0/0, 100.100.100.250/10466->100.100.100.250/10466 protocol 0 Dec 24 06:49:01 06:49:00.839971:CID-0:RT: choose interface ge-0/0/1.0(P2P) as outgoing phy if Dec 24 06:49:01 06:49:00.839979:CID-0:RT:is_loop_pak: No loop: on ifp: ge-0/0/1.0, addr: 10.10.10.101, rtt_idx:0 Dec 24 06:49:01 06:49:00.839992:CID-0:RT:-jsf : Alloc sess plugin info for session 794 Dec 24 06:49:01 06:49:00.839998:CID-0:RT:[JSF]Normal interest check. regd plugins 19, enabled impl mask 0x0 Dec 24 06:49:01 06:49:00.840098:CID-0:RT:+++++++++++jsf_test_plugin_data_evh: 3 Dec 24 06:49:01 06:49:00.840129:CID-0:RT:[JSF]Plugins(0x0, count 0) enabled for session = 3410204033024, impli mask(0x0), post_nat cnt 0 svc req(0x0) Dec 24 06:49:01 06:49:00.840131:CID-0:RT:-jsf : no plugin interested for session 794, free sess plugin info Dec 24 06:49:01 06:49:00.840135:CID-0:RT:flow_first_service_lookup(): natp(0x59651288): app_id, 0(0). Dec 24 06:49:01 06:49:00.840136:CID-0:RT: service lookup identified service 0. Dec 24 06:49:01 06:49:00.840137:CID-0:RT: flow_first_final_check: in , out Dec 24 06:49:01 06:49:00.840139:CID-0:RT:In flow_first_complete_session Dec 24 06:49:01 06:49:00.840898:CID-0:RT:flow_first_complete_session, pak_ptr: 0xbf97d728, nsp: 0x59651288, in_tunnel: 0x59644350 Dec 24 06:49:01 06:49:00.840901:CID-0:RT:construct v4 vector for nsp2 Dec 24 06:49:01 06:49:00.840905:CID-0:RT: existing vector list 0x204-0x53f59938. Dec 24 06:49:01 06:49:00.840908:CID-0:RT: Session (id:794) created for first pak 204 Dec 24 06:49:01 06:49:00.840909:CID-0:RT:first pak processing successful Dec 24 06:49:01 06:49:00.840913:CID-0:RT: flow_first_install_session======> 0x59651288 Dec 24 06:49:01 06:49:00.840914:CID-0:RT: nsp 0x59651288, nsp2 0x59651318 Dec 24 06:49:01 06:49:00.840918:CID-0:RT: make_nsp_ready_no_resolve() Dec 24 06:49:01 06:49:00.840932:CID-0:RT:flow_ipv4_rt_lkup success 100.100.100.250, iifl 0x45, oifl 0x45 Dec 24 06:49:01 06:49:00.840938:CID-0:RT: route lookup: dest-ip 100.100.100.250 orig ifp st0.1 output_ifp st0.1 orig-zone 8 out-zone 8 vsd 0 Dec 24 06:49:01 06:49:00.840941:CID-0:RT: route to 100.100.100.250 Dec 24 06:49:01 06:49:00.840953:CID-0:RT:no need update ha Dec 24 06:49:01 06:49:00.840954:CID-0:RT:Installing s2c NP session wing Dec 24 06:49:01 06:49:00.840961:CID-0:RT:first path session installation succeeded Dec 24 06:49:01 06:49:00.840962:CID-0:RT: flow got session. Dec 24 06:49:01 06:49:00.840963:CID-0:RT: flow session id 794 Dec 24 06:49:01 06:49:00.840968:CID-0:RT: vector bits 0x204 vector 0x53f59938 Dec 24 06:49:01 06:49:00.840972:CID-0:RT:skip pre-frag: is_tunnel_if- 0, is_if_mtu_configured- 0 Dec 24 06:49:01 06:49:00.840973:CID-0:RT: encap vector Dec 24 06:49:01 06:49:00.840973:CID-0:RT: no more encapping needed Dec 24 06:49:01 06:49:00.840975:CID-0:RT:mbuf 0x4a054780, exit nh 0xe0010 Dec 24 06:49:01 06:49:00.840977:CID-0:RT:flow_process_pkt_exception: Freeing lpak 0xbf97d728 associated with mbuf 0x4a054780 Dec 24 06:49:01 06:49:00.840979:CID-0:RT: ----- flow_process_pkt rc 0x0 (fp rc 0) Dec 24 06:49:01 06:49:00.847043:CID-0:RT:<10.10.10.101/86->100.100.100.250/10466;1> : Dec 24 06:49:01 06:49:00.847049:CID-0:RT:packet [100] ipid = 700, @0x4a73bbce Dec 24 06:49:01 06:49:00.847051:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 15, common flag 0x0, mbuf 0x4a73b980, rtbl_idx = 0 Dec 24 06:49:01 06:49:00.847054:CID-0:RT: flow process pak fast ifl 73 in_ifp ge-0/0/1.0 Dec 24 06:49:01 06:49:00.847058:CID-0:RT: ge-0/0/1.0:10.10.10.101->100.100.100.250, icmp, (0/0) Dec 24 06:49:01 06:49:00.847060:CID-0:RT: find flow: table 0x5734df00, hash 24083(0xffff), sa 10.10.10.101, da 100.100.100.250, sp 86, dp 10466, proto 1, tok 6 Dec 24 06:49:01 06:49:00.847064:CID-0:RT:Found: session id 0x31a. sess tok 6 Dec 24 06:49:01 06:49:00.847065:CID-0:RT: flow got session. Dec 24 06:49:01 06:49:00.847065:CID-0:RT: flow session id 794 Dec 24 06:49:01 06:49:00.847068:CID-0:RT: vector bits 0x204 vector 0x53f59938 Dec 24 06:49:01 06:49:00.847069:CID-0:RT:ttl vector, out_tunnel = 0x59644350 Dec 24 06:49:01 06:49:00.847074:CID-0:RT:pre-frag not needed: ipsize: 100, mtu: 1438, nsp2->pmtu: 1438 Dec 24 06:49:01 06:49:00.847075:CID-0:RT: encap vector Dec 24 06:49:01 06:49:00.847076:CID-0:RT: going into tunnel 268173315 (nsp_tunnel=0x59644350). Dec 24 06:49:01 06:49:00.847077:CID-0:RT: flow_encrypt: tun 0x59644350, type 1 Dec 24 06:49:01 06:49:00.847079:CID-0:RT:mbuf 0x4a73b980, exit nh 0x20010 Dec 24 06:49:01 06:49:00.847079:CID-0:RT: ----- flow_process_pkt rc 0x0 (fp rc 0) Dec 24 06:49:01 06:49:00.847216:CID-0:RT:<10.10.34.4/61849->10.10.23.2/47775;50> : Dec 24 06:49:01 06:49:00.847218:CID-0:RT:packet [172] ipid = 534, @0x4a73bba2 Dec 24 06:49:01 06:49:00.847219:CID-0:RT:---- flow_process_pkt: (thd 1): flow_ctxt type 2, common flag 0x0, mbuf 0x4a73b980, rtbl_idx = 0 Dec 24 06:49:01 06:49:00.847221:CID-0:RT:flow process pak, mbuf 0x4a73b980, ifl 0, ctxt_type 2 inq type 6 Dec 24 06:49:01 06:49:00.847224:CID-0:RT: post_encap: nsp_tunnel 0x59644350. is_valid 1 Dec 24 06:49:01 06:49:00.847227:CID-0:RT:mbuf 0x4a73b980, exit nh 0xd0010 Dec 24 06:49:01 06:49:00.847228:CID-0:RT: ----- flow_process_pkt rc 0x0 (fp rc 0) Dec 24 06:49:03 06:49:02.1360853:CID-0:RT:jsf sess close notify Dec 24 06:49:03 06:49:02.1360856:CID-0:RT:flow_ipv4_del_flow: sess 794, in hash 32 Dec 24 06:49:03 06:49:02.1360858:CID-0:RT:flow_ipv4_del_flow: sess 794, in hash 32