C.J. Collier cjac
cjac
/ gist:48727ed6137ad53329119740b59baf0c
Created
April 21, 2020 05:26
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@wanjet1:~# dhcp6c -d -D -f ens11 | |
| Apr/20/2020 22:22:39: get_duid: extracted an existing DUID from /var/lib/dhcpv6/dhcp6c_duid: 00:01:00:01:26:31:38:f3:52:54:00:42:9e:e1 | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>comment [# Default dhpc6c configuration: it assumes the address is autoconfigured using] (78) | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>comment [# router advertisements.] (24) | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>[profile] (7) | |
| Apr/20/2020 22:22:39: cfdebug_print: <7>[default] (7) | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>begin of closure [{] (1) | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>[information-only] (16) | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>end of sentence [;] (1) | |
| Apr/20/2020 22:22:39: cfdebug_print: <3>[request] (7) |
cjac
/ gist:0e4702b633e318400be3ee273b0986a9
Created
April 21, 2020 05:29
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@wanjet1:~# cat /etc/wide-dhcpv6/dhcp6c.conf | |
| # Default dhpc6c configuration: it assumes the address is autoconfigured using | |
| # router advertisements. | |
| profile default | |
| { | |
| information-only; | |
| request domain-name-servers; | |
| request domain-name; |
cjac
/ gist:4407230a98df3053b3c1b224161921c8
Created
April 21, 2020 05:48
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@wanjet1:~# dhcp6c -d -D -f ens11 | |
| Apr/20/2020 22:48:17: get_duid: extracted an existing DUID from /var/lib/dhcpv6/dhcp6c_duid: 00:01:00:01:26:31:38:f3:52:54:00:42:9e:e1 | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>comment [# Default dhpc6c configuration: it assumes the address is autoconfigured using] (78) | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>comment [# router advertisements.] (24) | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>[profile] (7) | |
| Apr/20/2020 22:48:17: cfdebug_print: <7>[default] (7) | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>begin of closure [{] (1) | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>comment [# send domain-name-servers;] (28) | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>[information-only] (16) | |
| Apr/20/2020 22:48:17: cfdebug_print: <3>end of sentence [;] (1) |
cjac
/ gist:c32ee682bb1c85ef330cad8ea77c4410
Created
April 21, 2020 05:52
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cjac@wanjet1:~$ cat /etc/wide-dhcpv6/dhcp6c.conf | |
| profile default | |
| { | |
| information-only; | |
| request domain-name-servers; | |
| request domain-name; | |
| script "/etc/wide-dhcpv6/dhcp6c-script"; | |
| }; |
cjac
/ gist:5eec99868814c60a4e851edeeb71397f
Created
April 21, 2020 06:40
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cjac@ns1:~$ sudo rdisc6 eth1 | |
| Soliciting ff02::2 (ff02::2) on eth1... | |
| Hop limit : 64 ( 0x40) | |
| Stateful address conf. : No | |
| Stateful other conf. : No | |
| Router preference : low | |
| Router lifetime : 30 (0x0000001e) seconds | |
| Reachable time : unspecified (0x00000000) | |
| Retransmit time : unspecified (0x00000000) |
cjac
/ gist:d9bd5c8782b7b6aa6c493b0c8d3369bb
Created
April 21, 2020 06:44
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@mini:~# tcpdump -v -s0 -n -i loc ip6 | |
| tcpdump: listening on loc, link-type EN10MB (Ethernet), capture size 262144 bytes | |
| 23:44:27.559299 IP6 (hlim 255, next-header ICMPv6 (58) payload length: 32) fe80::216:3eff:fe02:ec4e > fe80::5054:ff:fee6:2458: [icmp6 sum ok] ICMP6, neighbor solicitation, length 32, who has fe80::5054:ff:fee6:2458 | |
| source link-address option (1), length 8 (1): 00:16:3e:02:ec:4e | |
| 23:44:27.559467 IP6 (hlim 255, next-header ICMPv6 (58) payload length: 24) fe80::5054:ff:fee6:2458 > fe80::216:3eff:fe02:ec4e: [icmp6 sum ok] ICMP6, neighbor advertisement, length 24, tgt is fe80::5054:ff:fee6:2458, Flags [router, solicited] | |
| 23:44:27.668605 IP6 (flowlabel 0x0b590, hlim 255, next-header ICMPv6 (58) payload length: 8) fe80::216:3eff:fe02:ec4e > ff02::2: [icmp6 sum ok] ICMP6, router solicitation, length 8 | |
| 23:44:27.669392 IP6 (flowlabel 0xe5129, hlim 255, next-header ICMPv6 (58) payload length: 56) fe80::5054:ff:fee6:2458 > ff02::1: [icmp6 sum ok] ICMP6, router advertisement, length 56 | |
| hop limit 6 |
cjac
/ gist:1812f3addebf4d5f5960079bad64438f
Created
April 24, 2020 20:29
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cjac@wanjet1:~$ sudo ipsec up edge | |
| initiating IKE_SA edge[3] to 74.120.12.135 | |
| generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) N(HASH_ALG) N(REDIR_SUP) ] | |
| sending packet: from 73.53.45.61[500] to 74.120.12.135[500] (1124 bytes) | |
| received packet: from 74.120.12.135[500] to 73.53.45.61[500] (38 bytes) | |
| parsed IKE_SA_INIT response 0 [ N(INVAL_KE) ] | |
| peer didn't accept DH group MODP_3072, it requested ECP_256 | |
| initiating IKE_SA edge[3] to 74.120.12.135 | |
| generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) N(HASH_ALG) N(REDIR_SUP) ] | |
| sending packet: from 73.53.45.61[500] to 74.120.12.135[500] (804 bytes) |
cjac
/ gist:3c07c872e866f3c45b8d9b44f90e1f04
Created
April 27, 2020 17:30
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cjac@wanjet1:~$ sudo ipsec up edge | |
| initiating IKE_SA edge[5998] to 74.120.12.135 | |
| generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) N(HASH_ALG) N(REDIR_SUP) ] | |
| sending packet: from 73.19.0.71[500] to 74.120.12.135[500] (1124 bytes) | |
| received packet: from 74.120.12.135[500] to 73.19.0.71[500] (36 bytes) | |
| parsed IKE_SA_INIT response 0 [ N(NO_PROP) ] | |
| received NO_PROPOSAL_CHOSEN notify error | |
| establishing connection 'edge' failed |
cjac
/ gist:919c3f98c3c4df3ad001b223554fbe20
Created
April 27, 2020 17:31
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cjac@edge:~$ sudo ipsec statusall edge | |
| Status of IKE charon daemon (strongSwan 5.7.2, Linux 5.4.0-0.bpo.4-amd64, x86_64): | |
| uptime: 110 minutes, since Apr 27 08:40:35 2020 | |
| malloc: sbrk 3067904, mmap 0, used 1166816, free 1901088 | |
| worker threads: 11 of 16 idle, 5/0/0/0 working, job queue: 0/0/0/0, scheduled: 1 | |
| loaded plugins: charon test-vectors ldap pkcs11 tpm aesni aes rc2 sha2 sha1 md5 mgf1 random nonce x509 revocation constraints pubkey pkcs1 pkcs7 pkcs8 pkcs12 pgp dnskey sshkey pem openssl gcrypt af-alg fips-prf gmp curve25519 agent chapoly xcbc cmac hmac ctr ccm gcm curl attr kernel-netlink resolve socket-default connmark farp stroke vici updown eap-identity eap-aka eap-md5 eap-gtc eap-mschapv2 eap-radius eap-tls eap-ttls eap-tnc xauth-generic xauth-eap xauth-pam tnc-tnccs dhcp lookip error-notify certexpire led addrblock unity counters | |
| Listening IP addresses: | |
| 74.120.12.135 | |
| 2607:ff08:f5:7::5 | |
| 2607:ff08:f5:3a::1 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cjac@pki:/usr/src/git/github/cjac/bq-pks$ perl bin/bq-pks --filename data/0xBA27A83C.asc | |
| Name "Crypt::OpenPGP::Key::Public::RSA::TO_JSON" used only once: possible typo at bin/bq-pks line 48. | |
| Name "Crypt::OpenPGP::KeyBlock::TO_JSON" used only once: possible typo at bin/bq-pks line 47. | |
| Name "Crypt::OpenPGP::Certificate::TO_JSON" used only once: possible typo at bin/bq-pks line 49. | |
| Name "Crypt::OpenPGP::Signature::SubPacket::TO_JSON" used only once: possible typo at bin/bq-pks line 45. | |
| Name "Crypt::OpenPGP::Signature::TO_JSON" used only once: possible typo at bin/bq-pks line 46. | |
| Name "Crypt::RSA::Key::Public::TO_JSON" used only once: possible typo at bin/bq-pks line 50. | |
| main, bin/bq-pks, 57 | |
| JSON encoder called at bin/bq-pks line 39. | |
| main::__ANON__(Crypt::OpenPGP::KeyBlock=HASH(0x55b5e8827400)) called at bin/bq-pks line 57 |