whackwest --name isakmp-rsa --rsa --host 128.95.7.2 --ikeport 8500 --updown silly --to --updown sally --id=@west.example.com --host 128.95.7.1 --ikeport 8500 --rekeymargin 350 --ikelifetime 900 --ipseclifetime 800 --keyingtries 2
002 added connection description "isakmp-rsa"
whackeast --name clear-west --delete --host 128.95.7.2 --ikeport 8500 --nexthop 128.95.7.254 --updown silly --to --updown sally --host %group --ikeport 8500 --pass
002 added connection description "clear-west"
whackwest --listen
002 listening for IKE messages
002 adding interface virtual128.95.7.1/lo:w 128.95.7.1:8500
002 loading secrets from "./ipsec.secrets/west"
whackeast --listen
002 listening for IKE messages
002 adding interface virtual128.95.7.2/lo:e 128.95.7.2:8500
002 loading secrets from "./ipsec.secrets/east"
002 loading group "./ipsec.d/east/clear-west"
whackwest --initiate --name isakmp-rsa
002 "isakmp-rsa" #1: initiating Main Mode
104 "isakmp-rsa" #1: STATE_MAIN_I1: initiate
010 "isakmp-rsa" #1: STATE_MAIN_I1: retransmission; will wait 20s for response
010 "isakmp-rsa" #1: STATE_MAIN_I1: retransmission; will wait 40s for response
031 "isakmp-rsa" #1: max number of retransmissions (2) reached STATE_MAIN_I1.  No response (or no acceptable response) to our first IKE message
000 "isakmp-rsa" #1: starting keying attempt 2 of at most 2, but releasing whack
RC: 31
whackeast --route --name clear
021 no connection named "clear"
RC: 21
whackwest --shutdown
002 shutting down
whackeast --shutdown
002 shutting down

>>>Initiator:
PLUTO --ctlbase pluto.west --interface lo:w --ikeport 8500 --secretsfile ./ipsec.secrets/west --foodgroupsdir ./ipsec.d/west --noklips --uniqueids --stderrlog --debug-all --debug-private
added connection description "isakmp-rsa"
listening for IKE messages
adding interface virtual128.95.7.1/lo:w 128.95.7.1:8500:8500
loading secrets from "./ipsec.secrets/west"
"isakmp-rsa" #1: initiating Main Mode
"isakmp-rsa" #1: max number of retransmissions (2) reached STATE_MAIN_I1.  No response (or no acceptable response) to our first IKE message
"isakmp-rsa" #1: starting keying attempt 2 of at most 2, but releasing whack
"isakmp-rsa" #2: initiating Main Mode to replace #1
shutting down
forgetting secrets
"isakmp-rsa": deleting connection
"isakmp-rsa" #2: deleting state (STATE_MAIN_I1)
shutting down interface virtual128.95.7.1/lo:w 128.95.7.1:8500

>>>Responder:
PLUTO --ctlbase pluto.east --interface lo:e --ikeport 8500 --secretsfile ./ipsec.secrets/east --foodgroupsdir ./ipsec.d/east --noklips --uniqueids --stderrlog --debug-all --debug-private
added connection description "clear-west"
listening for IKE messages
adding interface virtual128.95.7.2/lo:e 128.95.7.2
loading secrets from "./ipsec.secrets/east"
loading group "./ipsec.d/east/clear-west"
packet from 128.95.7.1:8500: initial Main Mode message received on 128.95.7.2:8500 but "clear-west#128.95.7.1/32" forbids connection
packet from 128.95.7.1:8500: initial Main Mode message received on 128.95.7.2:8500 but "clear-west#128.95.7.1/32" forbids connection
packet from 128.95.7.1:8500: initial Main Mode message received on 128.95.7.2:8500 but "clear-west#128.95.7.1/32" forbids connection
packet from 128.95.7.1:8500: initial Main Mode message received on 128.95.7.2:8500 but "clear-west#128.95.7.1/32" forbids connection
shutting down
forgetting secrets
"clear-west#128.95.7.1/32" 0.0.0.0: deleting connection "clear-west#128.95.7.1/32" instance with peer 0.0.0.0
"clear-west": deleting connection
shutting down interface virtual128.95.7.2/lo:e 128.95.7.2