west:~#
 named
west:~#
 route delete -net 192.0.2.0 netmask 255.255.255.0
west:~#
 route delete -net default
west:~#
 route add -net default gw 192.1.2.23
west:~#
 ipsec setup start
ipsec_setup: Starting Libreswan IPsec VERSION
west:~#
 ipsec auto --add us-to-anyone
west:~#
 /testing/pluto/basic-pluto-01/eroutewait.sh trap
west:~#
 : let my people go - let all packets not otherwise dealt with out in the
west:~#
 : clear, despite stoopid routing tricks.
west:~#
 ipsec auto --delete packetdefault
west:~#
 ipsec manual --up let-my-people-go
west:~#
 

west:~#
 grep us-to-anyone /tmp/pluto.log | sed 's/\(Message ID 0x\)[0-9a-f]*/\1FFFFFFFF/'
added connection description "us-to-anyone"
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: responding to Main Mode from unknown peer 192.1.2.23
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: transition from state STATE_MAIN_R0 to state STATE_MAIN_R1
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: STATE_MAIN_R1: sent MR1, expecting MI2
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: transition from state STATE_MAIN_R1 to state STATE_MAIN_R2
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: STATE_MAIN_R2: sent MR2, expecting MI3
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: Main mode peer ID is ID_IPV4_ADDR: '192.1.2.23'
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: Main mode peer ID is ID_IPV4_ADDR: '192.1.2.23'
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: I did not send a certificate because I do not have one.
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: transition from state STATE_MAIN_R2 to state STATE_MAIN_R3
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=OAKLEY_RSA_SIG cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: gateway 192.1.2.23 wants connection with 192.0.1.1 as our client, but DNS fails to confirm delegation: RR of type TXT for 1.1.0.192.in-addr.arpa. was not found (tried CNAMEs) 
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: sending encrypted notification INVALID_ID_INFORMATION to 192.1.2.23:500
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: failed to build notification for spisize=0 
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: Quick Mode I1 message is unacceptable because it uses a previously used Message ID 0xFFFFFFFF (perhaps this is a duplicated packet)
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: sending encrypted notification INVALID_MESSAGE_ID to 192.1.2.23:500
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: failed to build notification for spisize=0 
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: Quick Mode I1 message is unacceptable because it uses a previously used Message ID 0xFFFFFFFF (perhaps this is a duplicated packet)
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: sending encrypted notification INVALID_MESSAGE_ID to 192.1.2.23:500
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: failed to build notification for spisize=0 
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===? #1: received Delete SA payload: deleting ISAKMP State #1
"us-to-anyone"[1] 192.0.1.0/24=== ...192.1.2.23===?: deleting connection "us-to-anyone" instance with peer 192.1.2.23
west:~#
west:~#

