newer versions of Openswan have slightly more verbose output, but that just distracts from the Tutorial. This is included so that you'll know what it looks like:
marajade:~# ipsec auto --up marajade--extrude
104 "marajade--extrude" #185: STATE_MAIN_I1: initiate
003 "marajade--extrude" #185: received Vendor ID payload [Openswan (this version) 2.4.5dr3 X.509-1.5.4 PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]
003 "marajade--extrude" #185: received Vendor ID payload [Dead Peer Detection]
003 "marajade--extrude" #185: received Vendor ID payload [RFC 3947] method set to=109
106 "marajade--extrude" #185: STATE_MAIN_I2: sent MI2, expecting MR2
003 "marajade--extrude" #185: NAT-Traversal: Result using 3: i am NATed
108 "marajade--extrude" #185: STATE_MAIN_I3: sent MI3, expecting MR3
004 "marajade--extrude" #185: STATE_MAIN_I4: ISAKMP SA established {auth=OAKLEY_RSA_SIG cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1536}
117 "marajade--extrude" #186: STATE_QUICK_I1: initiate
004 "marajade--extrude" #186: STATE_QUICK_I2: sent QI2, IPsec SA established {ESP=>0x78b9cf4a <0x5fd5920e xfrm=AES_0-HMAC_SHA1 NATD=none DPD=enabled}
Note that the SPI# is logged, vendor IDs are logged, and the cryptographic parameters are also logged.
None of the cryptographic keys are logged.
