Cannot connect to VPN through NetworkManager anymore.

Similar Messages

• Cannot connect to VPN through Time Capsule.

  I have setup a VPN but my buddy cannot connect to it unless he bypasses his Time Capsule (2011 model)  and connects his Mac directly to his cable modem.
  The Time Capsule is setup with DHCP to lease out a different IP range than my VPN.
  We have looked over all of the Time Capsule settings and cannot seem to find anything wrong.
  My brother has a similar setup except using just a nornal Air Port Extreme and has no problems connecting to my VPN.
  Any suggestions would be appreciated.
  Thanks.
  -Jeff-

  Port forward using the v5 utility.. I have strong suspicions about the v6 for port forwarding.
  It does depend on what particular VPN you are talking about.
  Check what ports are required.
  You can load v5 utility even into Mountain Lion .. as well as later Lion versions thus and so.
  How to load 5.6 into ML.
  1. Download 5.6 for Lion.
  http://support.apple.com/kb/DL1482
  Click to open the dmg but do not attempt to install the pkg.. it won't work anyway.
  Leave the package open on the desktop so you can see the file. AirportUtility56.pkg
  2. Download and install unpkg.
  http://www.timdoug.com/unpkg/
  Run unpkg on the desktop.. If your Mac refuses to run the software, because it wasn’t downloaded from the Apple store, go to security in preferences and allow other software to work.. this is limitation of trade methinks. You can set back later if you like.
  Now drag the AirPortUtility56.pkg file over to unpkg.. and it will create a new directory of the same name on the desktop.. in finder, open the new directory, drill down.. applications, utilities .. there lo and behold is Airport utility 5.6 .. drag it to your main utilities directory or just run it from current location.
  You cannot uninstall version 6 (now 6.3 if you updated) so don't try.. and you cannot or should not run them both at the same time.. although I have had no problems when doing so.

• Cannot connect to VPN through firefox after installing 10.9.3?

  VPN through firefox for mac worked fine until the 10.9.3 install. I've reinstalled the required java and have the latest update along with the latest firefox update, any ideas?

  Hello Matt Hoffman,
  After reviewing your post, I have located an article that can help in this situation. It contains a number of troubleshooting steps and helpful advice concerning Airplay:
  iTunes: Troubleshooting AirPlay and AirPlay Mirroring
  http://support.apple.com/kb/ts5209
  You may want to review the information under the heading "If the AirPlay icon doesn’t appear in iTunes."
  Thank you for contributing to Apple Support Communities.
  Cheers,
  BobbyD

• Can't connect to PPPoE through Linksys anymore....

  I've been running my Earthlink DSL through a router for 9 months without any problems. (Model: Linksys WRT54G v3.1)
  But yesterday it seemed to just not work anymore.
  When I connect the ethernet directly to my Netopia modem from my G4 MDD Powermac, I can connect easily with the 'automatic' settings.
  HOWEVER... no matter how many different settings I try, I can't get the connection to work through the Linksys router. I keep getting the message 'Could not find PPPoE server'. The Network Settings says the ethernet is set up and trying to connect, but it can't seem to.
  I've tried unplugging, pushing in the reset buttons and all sorts of other things, but nothing works.
  I contacted Linksys and they claim you can reload the router firmware with a Mac. But after downloading their firmware update, I found it can't be opened by my Mac.
  But I'm wondering if the firmware is even the problem?
  Any clues much appreciated....

  That sounds like the exceptional tech support experience.
  Frankly I'm shocked at how bad the earthlink tech support experience was. In the past it wasn't that bad. It used to be a 3 minute wait and then someone halfway knowledgeable would be there.
  This time I waited through 4 minutes of brainless telephone ads until they put me through to the Phillipines to Moron #1 who started off asking in an almost impossilbe to understand accent "What eees your father's middle name?" and then "What ees your credit card number?"
  I explained to him that he was supposed to as for the mother's maiden name and that I would NEVER give him my credit card number. And then... after another 3 minutes of telephone ads I got connected to another identical 3rd world slave labor tech person who simply asked me all the same questions over again
  Needless to say, the experience was a sad reflection of corporate strategy... thinking this is going to get them customers.
  Rant over... thank gosh for the Apple discussion boards!

• Cannot connect using VPN client

  Hi, I have a problem configuring my CISCO ASA 5515-x for VPN client. I succesfully configure AnyConnect and SSL VPN but when client using VPN Client software, they cannot establish the VPN connection. This is my configuration and attached is the error occured when connecting to the firewall. Can anyone help me solve this problem?
  : Saved
  ASA Version 9.1(1)
  hostname ciscoasa
  domain-name g
  ip local pool vpn_client 192.168.2.200-192.168.2.254 mask 255.255.255.0
  ip local pool vpn_250 192.168.3.1-192.168.3.254 mask 255.255.255.0
  interface GigabitEthernet0/0
  nameif DIGI
  security-level 0
  ip address 210.48.*.* 255.255.255.0
  interface GigabitEthernet0/1
  nameif LAN
  security-level 0
  ip address 192.168.2.5 255.255.255.0
  interface GigabitEthernet0/2
  nameif Pone
  security-level 0
  ip address dhcp setroute
  interface GigabitEthernet0/3
  shutdown
  no nameif
  no security-level
  no ip address
  interface GigabitEthernet0/4
  shutdown
  no nameif
  no security-level
  no ip address
  interface GigabitEthernet0/5
  shutdown
  no nameif
  no security-level
  no ip address
  interface Management0/0
  management-only
  nameif management
  security-level 100
  ip address 192.168.1.1 255.255.255.0
  ftp mode passive
  clock timezone MYT 8
  dns domain-lookup DIGI
  dns server-group DefaultDNS
  name-server 8.8.8.8
  domain-name g
  same-security-traffic permit inter-interface
  same-security-traffic permit intra-interface
  object network NETWORK_OBJ_113.20.*.*_24
  subnet 113.20.*.* 255.255.255.0
  object network NETWORK_OBJ_210.48.*.*_24
  subnet 210.48.*.* 255.255.255.0
  object network CsHiew
  host 192.168.2.9
  object network ERPServer
  host 192.168.2.2
  object network Giap
  host 192.168.2.126
  object network Jennifer
  host 192.168.2.31
  object network KCTan
  host 192.168.2.130
  object network KCTan-NB
  host 192.168.2.77
  object network MailServer
  host 192.168.2.6
  object network YHKhoo
  host 192.168.2.172
  object network Aslina
  host 192.168.2.59
  object network Law
  host 192.168.2.38
  object network Nurul
  host 192.168.2.127
  object network Laylee
  host 192.168.2.17
  object network Ms_Pan
  host 192.168.2.188
  object network Peck_Ling
  host 192.168.2.248
  object network Pok_Leng
  host 192.168.2.36
  object network UBS
  host 192.168.2.21
  object network Ainie
  host 192.168.2.11
  object network Angie
  host 192.168.2.116
  object network Carol
  host 192.168.2.106
  object network ChunKit
  host 192.168.2.72
  object network KKPoong
  host 192.168.2.121
  object network Ben
  host 192.168.2.147
  object network Eva
  host 192.168.2.37
  object network Jacklyn
  host 192.168.2.135
  object network Siew_Peng
  host 192.168.2.149
  object network Suki
  host 192.168.2.61
  object network Yeow
  host 192.168.2.50
  object network Danny
  host 192.168.2.40
  object network Frankie
  host 192.168.2.101
  object network Jamal
  host 192.168.2.114
  object network OcLim
  host 192.168.2.177
  object network Charles
  host 192.168.2.210
  object network Ho
  host 192.168.2.81
  object network YLChow
  host 192.168.2.68
  object network Low
  host 192.168.2.58
  object network Sfgan
  host 192.168.2.15
  object network Joey
  host 192.168.2.75
  object network Rizal
  host 192.168.2.79
  object network 190
  host 192.168.2.190
  object network 191
  host 192.168.2.191
  object network 192
  host 192.168.2.192
  object network 193
  host 192.168.2.193
  object network 194
  host 192.168.2.194
  object network 199
  host 192.168.2.199
  object network 201
  host 192.168.2.201
  object network 203
  host 192.168.2.203
  object network 204
  host 192.168.2.204
  object network 205
  host 192.168.2.205
  object network CNC214
  host 192.168.2.214
  object network Liyana
  host 192.168.2.16
  object network Aipin
  host 192.168.2.22
  object network Annie
  host 192.168.2.140
  object network Ikah
  host 192.168.2.54
  object network Sue
  host 192.168.2.113
  object network Zaidah
  host 192.168.2.32
  object network CKWong
  host 192.168.2.33
  object network KhooSC
  host 192.168.2.47
  object network Neexon-PC
  host 192.168.2.179
  object network Neexon_NB
  host 192.168.2.102
  object network kc
  host 192.168.2.130
  object network P1
  subnet 192.168.2.0 255.255.255.0
  object network NETWORK_OBJ_192.168.2.0_24
  subnet 192.168.2.0 255.255.255.0
  object network NETWORK_OBJ_192.168.2.192_26
  subnet 192.168.2.192 255.255.255.192
  object network NETWORK_OBJ_192.168.10.192_26
  subnet 192.168.10.192 255.255.255.192
  object network VPN
  subnet 192.68.3.0 255.255.255.0
  object network NETWORK_OBJ_192.168.3.0_24
  subnet 192.168.3.0 255.255.255.0
  object-group network HPTM_DIGI
  network-object object CsHiew
  network-object object ERPServer
  network-object object Giap
  network-object object Jennifer
  network-object object KCTan
  network-object object KCTan-NB
  network-object object MailServer
  network-object object YHKhoo
  object-group network Inventory
  network-object object Aslina
  network-object object Law
  network-object object Nurul
  object-group network Account
  network-object object Laylee
  network-object object Ms_Pan
  network-object object Peck_Ling
  network-object object Pok_Leng
  network-object object UBS
  object-group network HR
  network-object object Ainie
  network-object object Angie
  object-group network Heeroz
  network-object object Carol
  network-object object ChunKit
  network-object object KKPoong
  object-group network Sales
  network-object object Ben
  network-object object Eva
  network-object object Jacklyn
  network-object object Siew_Peng
  network-object object Suki
  network-object object Yeow
  object-group network Production
  network-object object Danny
  network-object object Frankie
  network-object object Jamal
  network-object object OcLim
  object-group network Engineering
  network-object object Charles
  network-object object Ho
  network-object object YLChow
  network-object object Joey
  network-object object Rizal
  object-group network Purchasing
  network-object object Low
  network-object object Sfgan
  object-group network Wireless
  network-object object 190
  network-object object 191
  network-object object 192
  network-object object 193
  network-object object 194
  network-object object 199
  network-object object 201
  network-object object 203
  network-object object 204
  network-object object 205
  object-group network IT
  network-object object CNC214
  network-object object Liyana
  object-group network Skype
  network-object object Aipin
  network-object object Annie
  network-object object Ikah
  network-object object Sue
  network-object object Zaidah
  object-group network HPTM-P1
  network-object object CKWong
  network-object object KhooSC
  network-object object Neexon-PC
  network-object object Neexon_NB
  object-group service DM_INLINE_SERVICE_1
  service-object tcp-udp destination eq www
  service-object tcp destination eq https
  object-group protocol TCPUDP
  protocol-object udp
  protocol-object tcp
  object-group service DM_INLINE_SERVICE_2
  service-object tcp-udp destination eq www
  service-object tcp destination eq https
  access-list DIGI_access_in extended permit ip any any
  access-list DIGI_access_in extended permit icmp any any echo
  access-list LAN_access_in extended deny object-group DM_INLINE_SERVICE_2 object-group Skype any
  access-list LAN_access_in extended deny object-group DM_INLINE_SERVICE_1 object 205 any
  access-list LAN_access_in extended permit ip any any
  access-list DIGI_cryptomap extended permit ip object VPN 113.20.*.* 255.255.255.0
  access-list Pq_access_in extended permit ip any any
  access-list splittun-vpngroup1 extended permit ip 192.168.2.0 255.255.255.0 192.168.3.0 255.255.255.0
  access-list nonat extended permit ip 192.168.2.0 255.255.255.0 192.168.3.0 255.255.255.0
  pager lines 24
  logging enable
  logging asdm informational
  logging recipient-address aaa@***.com level errors
  mtu DIGI 1500
  mtu LAN 1500
  mtu Pone 1500
  mtu management 1500
  no failover
  icmp unreachable rate-limit 1 burst-size 1
  asdm image disk0:/asdm-711(1).bin
  no asdm history enable
  arp timeout 14400
  no arp permit-nonconnected
  nat (DIGI,LAN) source static any interface
  nat (Pone,LAN) source static any interface
  nat (DIGI,DIGI) source static NETWORK_OBJ_210.48.*.*_24 NETWORK_OBJ_210.48.*.*_24 destination static NETWORK_OBJ_113.20.*.*_24 NETWORK_OBJ_113.20.*.*_24 no-proxy-arp route-lookup
  nat (LAN,DIGI) source static NETWORK_OBJ_192.168.2.0_24 NETWORK_OBJ_192.168.2.0_24 destination static NETWORK_OBJ_192.168.2.192_26 NETWORK_OBJ_192.168.2.192_26 no-proxy-arp route-lookup
  nat (LAN,DIGI) source static NETWORK_OBJ_192.168.2.0_24 NETWORK_OBJ_192.168.2.0_24 destination static NETWORK_OBJ_192.168.10.192_26 NETWORK_OBJ_192.168.10.192_26 no-proxy-arp route-lookup
  nat (LAN,any) source static any any destination static VPN VPN
  nat (LAN,DIGI) source static any any destination static NETWORK_OBJ_192.168.3.0_24 NETWORK_OBJ_192.168.3.0_24 no-proxy-arp route-lookup
  nat (LAN,DIGI) source static NETWORK_OBJ_192.168.2.0_24 NETWORK_OBJ_192.168.2.0_24 destination static NETWORK_OBJ_192.168.3.0_24 NETWORK_OBJ_192.168.3.0_24 no-proxy-arp route-lookup
  object network VPN
  nat (any,DIGI) dynamic interface
  nat (LAN,Pone) after-auto source dynamic any interface dns
  nat (LAN,DIGI) after-auto source dynamic any interface dns
  access-group DIGI_access_in in interface DIGI
  access-group LAN_access_in in interface LAN
  access-group Pq_access_in in interface Pone
  route Pone 0.0.0.0 0.0.0.0 10.1.*.* 2
  route DIGI 0.0.0.0 0.0.0.0 210.48..*.* 3
  timeout xlate 3:00:00
  timeout pat-xlate 0:00:30
  timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
  timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
  timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
  timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
  timeout tcp-proxy-reassembly 0:01:00
  timeout floating-conn 0:00:00
  dynamic-access-policy-record DfltAccessPolicy
  user-identity default-domain LOCAL
  http server enable
  http 192.168.1.0 255.255.255.0 management
  http 192.168.2.0 255.255.255.0 LAN
  http 0.0.0.0 0.0.0.0 DIGI
  no snmp-server location
  no snmp-server contact
  snmp-server enable traps snmp authentication linkup linkdown coldstart warmstart
  crypto ipsec ikev1 transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
  crypto ipsec ikev1 transform-set ESP-DES-SHA esp-des esp-sha-hmac
  crypto ipsec ikev1 transform-set ESP-DES-MD5 esp-des esp-md5-hmac
  crypto ipsec ikev1 transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
  crypto ipsec ikev1 transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
  crypto ipsec ikev1 transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
  crypto ipsec ikev1 transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
  crypto ipsec ikev1 transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
  crypto ipsec ikev1 transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
  crypto ipsec ikev1 transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec ikev2 ipsec-proposal DES
  protocol esp encryption des
  protocol esp integrity sha-1 md5
  crypto ipsec ikev2 ipsec-proposal 3DES
  protocol esp encryption 3des
  protocol esp integrity sha-1 md5
  crypto ipsec ikev2 ipsec-proposal AES
  protocol esp encryption aes
  protocol esp integrity sha-1 md5
  crypto ipsec ikev2 ipsec-proposal AES192
  protocol esp encryption aes-192
  protocol esp integrity sha-1 md5
  crypto ipsec ikev2 ipsec-proposal AES256
  protocol esp encryption aes-256
  protocol esp integrity sha-1 md5
  crypto ipsec security-association pmtu-aging infinite
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set pfs group1
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set ikev1 transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set ikev2 ipsec-proposal AES256 AES192 AES 3DES DES
  crypto dynamic-map DIGI_access_in 20 set ikev1 transform-set ESP-3DES-SHA
  crypto map DIGI_map 65535 ipsec-isakmp dynamic DIGI_access_in
  crypto map DIGI_map interface DIGI
  crypto ca trustpoint ASDM_TrustPoint0
  enrollment self
  fqdn sslvpn.cisco.com
  subject-name CN=sslvpn.cisco.com
  keypair hpmtkeypair
  crl configure
  crypto ca trustpool policy
  crypto ca certificate chain ASDM_TrustPoint0
  certificate ed15c051
      308201ef 30820158 a0030201 020204ed 15c05130 0d06092a 864886f7 0d010105
      0500303c 31193017 06035504 03131073 736c7670 6e2e6369 73636f2e 636f6d31
      1f301d06 092a8648 86f70d01 09021610 73736c76 706e2e63 6973636f 2e636f6d
      301e170d 31333036 32313038 30343438 5a170d32 33303631 39303830 3434385a
      303c3119 30170603 55040313 1073736c 76706e2e 63697363 6f2e636f 6d311f30
      1d06092a 864886f7 0d010902 16107373 6c76706e 2e636973 636f2e63 6f6d3081
      9f300d06 092a8648 86f70d01 01010500 03818d00 30818902 818100a9 7715ca9e
      4d63204e 66e6517b 9a560be8 188603cc 90bb39a7 c61ef0d8 cd74bf19 8ec33146
      5176547f f43615a2 b8917a03 3a5a9dd6 e087a78a 74bf3a8e 6d7cfad2 0678253d
      b03a677a 52e9ebc0 8e044353 e9fe2055 3cafafa3 3ec74ef9 45eaf8d6 8e554879
      db9bf2fb ebcdb5c3 011bf61f 8c139ed1 a00d300a 8fe4784f 173c7702 03010001
      300d0609 2a864886 f70d0101 05050003 81810046 d32b20a6 a1efb0b5 29c7ed00
      11c0ce87 c58228c9 aae96197 eb275f9a f9da57a1 fc895faf 09a24c0c af43772b
      2818ec29 0a56eb33 c0e56696 dd1fa3bb 151ee0e4 18d27366 92177a31 b2f7842b
      4f5145b9 942fbc49 c785f925 3a909c17 2593efcc 2e410b5c d3026fe1 f48d93c1
      744333e2 c377e5d3 62eebb63 abca4109 d57bb0
    quit
  crypto ikev2 policy 1
  encryption aes-256
  integrity sha
  group 5 2
  prf sha
  lifetime seconds 86400
  crypto ikev2 policy 10
  encryption aes-192
  integrity sha
  group 5 2
  prf sha
  lifetime seconds 86400
  crypto ikev2 policy 20
  encryption aes
  integrity sha
  group 5 2
  prf sha
  lifetime seconds 86400
  crypto ikev2 policy 30
  encryption 3des
  integrity sha
  group 5 2
  prf sha
  lifetime seconds 86400
  crypto ikev2 policy 40
  encryption des
  integrity sha
  group 5 2
  prf sha
  lifetime seconds 86400
  crypto ikev2 enable DIGI client-services port 443
  crypto ikev2 remote-access trustpoint ASDM_TrustPoint0
  crypto ikev1 enable DIGI
  crypto ikev1 policy 10
  authentication pre-share
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 20
  authentication rsa-sig
  encryption aes-256
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 30
  authentication pre-share
  encryption aes-256
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 40
  authentication crack
  encryption aes-192
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 50
  authentication rsa-sig
  encryption aes-192
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 60
  authentication pre-share
  encryption aes-192
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 70
  authentication crack
  encryption aes
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 80
  authentication rsa-sig
  encryption aes
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 90
  authentication pre-share
  encryption aes
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 100
  authentication crack
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 110
  authentication rsa-sig
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 130
  authentication crack
  encryption des
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 140
  authentication rsa-sig
  encryption des
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 150
  authentication pre-share
  encryption des
  hash sha
  group 2
  lifetime 86400
  track 1 rtr 123 reachability
  telnet 192.168.1.0 255.255.255.0 management
  telnet timeout 5
  ssh 0.0.0.0 0.0.0.0 DIGI
  ssh timeout 5
  console timeout 0
  vpn-sessiondb max-other-vpn-limit 250
  vpn-sessiondb max-anyconnect-premium-or-essentials-limit 2
  vpn load-balancing
  interface lbpublic DIGI
  interface lbprivate DIGI
  dhcp-client client-id interface Pone
  dhcpd address 192.168.2.10-192.168.2.150 LAN
  dhcpd dns 210.48.*.* 210.48.*.* interface LAN
  dhcpd enable LAN
  dhcpd address 192.168.1.2-192.168.1.254 management
  dhcpd enable management
  threat-detection basic-threat
  threat-detection statistics
  threat-detection statistics tcp-intercept rate-interval 30 burst-rate 400 average-rate 200
  ssl trust-point ASDM_TrustPoint0 DIGI
  webvpn
  enable DIGI
  anyconnect image disk0:/anyconnect-win-2.5.2014-k9.pkg 1
  anyconnect profiles anyhpmt_client_profile disk0:/anyhpmt_client_profile.xml
  anyconnect enable
  tunnel-group-list enable
  tunnel-group-preference group-url
  group-policy sslpolicy internal
  group-policy sslpolicy attributes
  vpn-tunnel-protocol ssl-clientless
  webvpn
    url-list none
  group-policy GroupPolicy_anyhpmt internal
  group-policy GroupPolicy_anyhpmt attributes
  wins-server none
  dns-server value 8.8.8.8
  vpn-tunnel-protocol ikev2 ssl-client ssl-clientless
  default-domain value g
  webvpn
    anyconnect profiles value anyhpmt_client_profile type user
  group-policy vpngroup1 internal
  group-policy vpngroup1 attributes
  dns-server value 8.8.8.8
  vpn-tunnel-protocol ikev1 ikev2 l2tp-ipsec
  split-tunnel-policy tunnelspecified
  split-tunnel-network-list value splittun-vpngroup1
  default-domain value g
  address-pools value vpn_250
  group-policy newvpn internal
  group-policy newvpn attributes
  dns-server value 8.8.8.8
  vpn-tunnel-protocol ikev1 l2tp-ipsec
  default-domain value g
  username cshiew password KK1oQOhoxfwWvya4 encrypted
  username cshiew attributes
  webvpn
    anyconnect keep-installer installed
    anyconnect ask none default anyconnect
  username newuser password GJrqM3H2KqQZv/MI encrypted privilege 1
  tunnel-group vpngroup1 type remote-access
  tunnel-group vpngroup1 general-attributes
  address-pool vpn_250
  default-group-policy vpngroup1
  tunnel-group vpngroup1 webvpn-attributes
  group-alias vpngroup1 enable
  tunnel-group vpngroup1 ipsec-attributes
  ikev1 pre-shared-key *****
  tunnel-group sslhpmt type remote-access
  tunnel-group sslhpmt general-attributes
  default-group-policy sslpolicy
  tunnel-group sslhpmt webvpn-attributes
  group-alias sslhpmt enable
  tunnel-group anyhpmt type remote-access
  tunnel-group anyhpmt general-attributes
  address-pool vpn_client
  default-group-policy GroupPolicy_anyhpmt
  tunnel-group anyhpmt webvpn-attributes
  group-alias anyhpmt enable
  tunnel-group-map default-group vpngroup1
  class-map global-class
  match any
  class-map inspection_default
  match default-inspection-traffic
  policy-map type inspect dns preset_dns_map
  parameters
    message-length maximum client auto
    message-length maximum 512
  policy-map global_policy
  class inspection_default
    inspect dns preset_dns_map
    inspect ftp
    inspect h323 h225
    inspect h323 ras
    inspect rsh
    inspect rtsp
    inspect esmtp
    inspect sqlnet
    inspect skinny 
    inspect sunrpc
    inspect xdmcp
    inspect sip 
    inspect netbios
    inspect tftp
    inspect ip-options
    inspect icmp
  class global-class
    cxsc fail-open
  class class-default
    user-statistics accounting
  policy-map global-policy
  service-policy global_policy global
  prompt hostname context
  no call-home reporting anonymous
  hpm topN enable
  Cryptochecksum:7a5ee8ff016e63420802423269da864b
  : end

  Hi,
  Safwan Hashan napisano:i dont know which output you referring but this is output from the VPN client.
  We need more information.
  I expect debug output from the ASA.
  To enable debugging and syslog messages, perform the following CLI steps:
  1.
  ASA#configure terminal
  ASA(config)# debug crypto ikev1 127
  ASA(config)# debug crypto ipsec 127
  Enable debuging messages for IKEv1 and IPSec.
  2.
  ASA(config)# logging monitor debug
  Sets syslog messages to be sent to Telnet or SSH sessions.
  Note: You can alternately use the logging buffer debug command to send log messages to a buffer, and then view them later using the show logging command.
  3.
  ASA(config)# terminal monitor
  Sends the syslog messages to a Telnet or SSH session.
  4.
  ASA(config)# logging on
  Enables syslog message generation.
  NOTE: This you have enabled.
  Cleanup CLI
  ASA(config)# no debug crypto ikev1
  ASA(config)# no debug crypto ipsec
  ASA(config)# no logging monitor debug
  ASA(config)# no terminal monitor
  More information: Sensible Debugging and Logging
  I have one suggestion. Change and try.
  group-policy vpngroup1 internal
  group-policy vpngroup1 attributes
  no vpn-tunnel-protocol ikev1 ikev2 l2tp-ipsec
  vpn-tunnel-protocol ikev1
  Best regards,
  MB
  Please rate all helpful posts. Thx

• Cannot connect to VPN: Cisco issues?

  I'm having huge troubles here! I just bought a MacBook Pro and cannot connect to my company's VPN. I've scoured around and it appears to be Cisco related. All I know is that I can connect using Windows but not on my Mac.
  I'm running OS X 10.4.10 and the network is Cisco PIX 515E. Is there a third party application? Where do I start?
  Any help would be greatly appreciated and save me from having to make a "switch" into the wrong direction.
  Thanks!

  Hello,
  My home computer, an iBook running os10.4.9 using Cisco VPN 4.9.00 isnot able to connect with my work server.
  I used to but when I upgraded system software the VPN stopped. I am running all the same software on my newer G4 and eveything works fine.
  Any ideas how to let the home iBook connect?
  What is this thing called parallels? Where do I look at those or change them?
  Thanks,
  John

• After a while, cannot connect to WRT320N through 192.168.1.1

  I have a WRT320N with latest firmware 1.0.03.
  Everything works OK other than the fact that after a while (hours / days) I cannot connect to the router through http://192.168.1.1 but I have connection to the internet though. If I restart the router, I cannot connect to it but after a while I can't do it again. When I try, browser stays for minutes  and eventually gives me the "Page not found error". This is happening from any computer (I have 4 computers wired and 2 wireless). The wired computers are connected through a GbLan switch and they have different OS: Vista(x64), XP(x86), Windows Server 2003 (x86) and Windows Server 2008 (x64). The 2 computers wireless connected are Windows 7 (x86) and Windows 2000. From all of them I have the same problem and after restarting the router I can connect again from any.
  This behavior had been in place from the beginning but not being under pressure because I rarely have to change something in router's settings, I did not report it in time and now it seems is out of warranty.
  My question is if this is something that happened to others (but I was not able to find any similar reports) or is it something wrong with my router? As I said before, other than that, router is functioning without any issues.
  Thank-you

  Is someone using bittorrent or any p2p software? p2p software, downloading using torrent opens a lot of TCP port, hogging the router's resources. Thus, accessing the router's gui is sluggish or not even opening up.
  Upgrade the router's firmware.

• Cannot connect to VPN for work on OS10.7.3

  Hi All,
  I need to connect to VPN so I can connect to my work server.
  I currently do this on a Toshiba Lap top running Unantu with no problems. The Toshiba will be heading overseas and I need the VPN connection at home, hopefully on my Mac Book Air.
  I have spent many hours searching the internet to see how to connect and have tried many ideas but cannnot find a solution.
  Our work IT manager has also tried and given up.
  Is there something I can install to make it work? Unfortuantly not being able to work on my Mac makes it useless to me and I will have to purchase a new laptop which can connect to VPN.
  I have now tried 3 VPN connections and get the following errors -
  The PPTP-VPN server did nto respon. Try reconnecting. If the problem continues, verify your settings and contact your administrator.
  The IPSec Certificate is missing. Verify your settings and try reconnecting.
  The VPN server did not respond. Verify the server address and try reconnecting.
  Can anyone help please before I also give up, as many others have on forums, and sell the Mac?
  Roxycollie

  Hello Again LSRW,
  I don't have time now to go into great detail but will try to return later.
  But, you wrote "...AOL Desktop 1.5. I still find it lacking in functionality, performance, and aesthetics compared to it's predecessor, which I miss dearly.".
  I am still using AOL For Mac OSX and have never installed AOL Desktop.
  I don't have any problems connecting AOL to the Internet.
  You can still download AOL® for
  Mac OS X from AOL Downloads For Mac.
  ali b

• Cannot Connect to VPN After License Upgrade

  Hello,
  I am having an issue where I can't connect to VPN after upgrading the license.
  The license upgraded is related to AnyConnect VPN.
  I noticed from the newly upgraded license, the Encryption-3DES-AES is disabled whereas previously it was enabled.
  Could it be the cause of the issue?
  ASA 5512-K9
  Version 8.6(1)2
  Thank you in advance.
  Regards,
  Zul

  Hello,
  It is,
  here you have the link to request it for free
  https://tools.cisco.com/SWIFT/LicensingUI/loadDemoLicensee?FormId=139
  Regards

• CANNOT CONNECT TO WIFI THROUGH IPOD TOUCH 4G..ROUTER REQUIRES USERNAME AND PASSWORD..HELP NEEDED

  i have a ipod touch 4g...and my router requires WEP key and a username and a password when i connect to it through my laptop..ipod touch only asks for a password i.e. the WEP key..question is how to enter the username and the password in ipod touch?  

  my service provider has provided me with a username and a password..therefore my router is "NOT ALWAYS CONNECTED TO THE INTERNET"..also PPPoE is enabled...
  i think i ll have to call the ISP and tell him to remove the username and password...because i dont think that ipod has a provision for entering passwords other than the WEP key..

• Cannot Connect to VPN

  I'm just about ready to ragequit for the day. I've been pouring through dozens of support pages, youtube videos, tutorials. The lack of true documentation on problems like this has me considering a start-up business that specifically deals with these frustrations. Clearly I could make millions!
  I will detail everything about this problem as best as I can, to avoid confusion later with questions:
  Here's what I have for hardware:
  1) A Public IP Address. We'll just call it X.X.X.X.
  2) A D-Link DI-604 router (yes they DO support VPN services, with a router address of 192.168.1.254.
       This router is running Firmware Version 3.53, the last firmware released for it on Wed, 18 Apr 2007 (YES I AM AWARE THE ROUTER IS OLD, DEFLECTING THIS ISSUE BY TELLING ME TO GET A NEWER ROUTER WITHOUT FIRST READING THROUGH EVERYTHING BELOW IS NOT A HELPFUL CONTRIBUTION TO THE PROBLEM, D-LINK HAS CONFIRMED THIS ROUTER SUPPORTS VPN PASSTHROUGHS).
  3) A Mac Mini Server running 10.6.8, router address of 192.168.1.10.
  Here are the ports that I've allowed through the router, pointed directly at 192.168.1.10 (aka my Server):
  UDP Port 500
  UDP Port 1701
  UDP Port 4500
  TCP & UDP Port 1723
  Here is how I have the VPN Service configured on my Server:
  L2TP is Enabled.
  Starting IP address range of 192.168.1.180
  Ending IP Address range of 192.168.1.189
  PPP Authentication: Directory Service with Authentication set to MS-CHAPv2
  IPSec Authentication is set to Shared Secret, let's just say the secret is "derp" without quotes.
  PPTP is Disabled.
  Client Information:
  DNS Servers point to my router: 192.168.1.254
  Search Domains is empty.
  Network Routing Definition is empty.
  Logging:
  Verbose logging is enabled.
  VPN Service is: Running.
  Server User Information
  Access to VPN Services:
  Allow only users and groups below:
  (I have users dedicated to this, but for the sake of this topic let's just say one of them is "misterderp" without quotes)
  The Hardware I'm Using to Connect to the VPN Server:
  I have a Macbook Pro running 10.6.8, another laptop running Windows XP Professional Service Pack 3, and another laptop running Windows 7 Home Premium 64-bit Service Pack 1. All 3 laptops acquire an IP Address via DHCP from the Router (192.168.1.254). Below is what happens when I try to set up a VPN connection on all 3 machines:
  Computer #1: MacBook Pro, running 10.6.8
  Settings: (this is in System Preferences > Network, by the way):
  New VPN Connection
  Server Address: X.X.X.X. (this is our Public IP Address)
  Account Name: misterderp (this is the account who has access granted to use VPN)
  Authentication Settings > User Authentication:
  Password: (password given to misterderp from server)
  Authentication Settings > Machine Authentication:
  Shared Secret: derp (as specified in the L2TP tab of the VPN Service on the Server)
  At this point I will try to connect. I receive the following error message:
  =========
  VPN Connection
  The L2TP-VPN server did not respond. Try reconnecting. If the problem persists, verify your settings and contact your Administrator.
  =========
  Computer #2: Laptop, running Windows XP Professional Service Pack 3
  Settings: (this is in Control Panel > Network Connections, by the way):
  Add a New Connection
  VPN Server Selection: X.X.X.X. (this is our Public IP Address)
  Smart Card
  Do not use my Smart Card
  New VPN Connection Properties
  General Tab:
  Host Name: X.X.X.X.
  Security Tab:
  Security Options:
       Advanced Custom Settings
            Data Encryption: Require encryption (disconnect if server declines)
            Allow These Protocols: Microsoft CHAP Version 2 (MS-CHAP v2)
       IPSec Settings
            Use Preshared key for authentication: derp (as specified in the L2TP tab of the VPN Service on the Server)
  At this point I will try to connect. I am using the Account Name misterderp, and the password given to this account from the server. I receive the following error message:
  =========
  Error 800: Unable to establish the VPN connection. The VPN server may be unreachable, or security parameters may not be configured properly for this connection.
  =========
  Computer #3: Laptop, running Windows 7 Home Premium x64 Service Pack 1
  Settings: (this is in Control Panel > Network and Internet > Network and Sharing Center, by the way):
  Set Up a Connection or Network:
       Connect to a workplace
       Use my Internet Connection
  Internet Address: X.X.X.X. (this is our Public IP Address)
  Type your username and password:
       User name: misterderp (specified on the Server to have VPN access)
       Password: password given to the misterderp account
  VPN Connection Properties:
  Security Tab:
  Type of VPN: Layer 2 Tunneling Protocol with IPsec (L2TP/IPSec)
       Advanced Settings: Use preshared key for authentication: derp (as specified in the L2TP tab of the VPN Service on the Server)
  Data Encryption: Require encryption (disconnect if server declines)
  Allow these protocols: Microsoft CHAP Version 2 (MS-CHAP v2)
  At this point I will try to connect. The window hangs at "Connecting to X.X.X.X. using "WAN Miniport (L2TP)"". After about 30 seconds, I receive the following error message:
  =========
  Error 789: The L2TP connection attempt failed because the security layer encountered a processing error during intiial negotiations with the remote computer.
  =========
  So there you have it, 3 sources of unintelligible frustration.
  You're probably wondering, HEY, WHAT ABOUT THE LOG ON YOUR SERVER ADMIN PAGE?
  I've been looking at the log, and there's a whole lot of nothing. The only thing I have is this:
  #Start-Date: 2012-02-17 14:01:46 CST
  #Fields: date time s-comment
  2012-02-17 14:01:46 CSTLoading plugin /System/Library/Extensions/L2TP.ppp
  2012-02-17 14:01:46 CSTListening for connections. . .
  So the Server's not getting ANYTHING, let alone spit out errors.
  Now you might be wondering, ALRIGHT, WHAT ABOUT VPN-ING WITHIN YOUR OWN NETWORK, THAT PROBABLY WORKS RIGHT?
  Yes it does. Without any question, my MacBook Pro will connect to the VPN Service so long as I'm connecting DIRECTLY to the Server through its local IP address, and not trying to reach it through a public IP address that's forwarding the requests through the ports I've assigned.
  At this point I am at a complete loss. I believe I have done everything correctly, but it would appear that my router isn't playing nice with VPN requests. If there is/are any other ports I should be turning on to point to my server, I would like to know what ones those are.
  If there are any tweaks or additional settings I should know about for the Windows computers (especially Windows 7), I would like to know what those are.
  If at the end of this post that you've just read and know with irrefutable proof or a reasonably educated decision that this router magically will not serve my VPN needs AT ALL, I would like to know a reasonably-priced alternative, preferably something that is not an Extreme Base Station, Time Capsule, or other product because my ISP hates Apple-based routers for a reason even they do not understand
  If at the end of htis post that you've just read and know with irrefutable proof or a reasonably educated decision that I would be better off attempting this with PPTP on this D-Link Router, and if you know how to set the correct settings on Server Admin, forward the correct ports on the router I have, I would like to know that
  Thank you for reading this wall of text, anyone willing to help me with this is an amazing person

  Hi Esther,
  After 3 months, I was finally able to revisit this issue. Here are the results of my nmap TCP test using your code:
  Gerchak$ nmap -T5 XX.XX.XXX.XX
  Starting Nmap 6.00 ( http://nmap.org ) at 2012-05-22 17:50 CDT
  Note: Host seems down. If it is really up, but blocking our ping probes, try -Pn
  Nmap done: 1 IP address (0 hosts up) scanned in 1.68 seconds
  And here are the results of my UDP test using your code:
  Gerchak$ sudo nmap -sU -T5 -p 500,1701,4500,9999 XX.XX.XXX.XX
  Starting Nmap 6.00 ( http://nmap.org ) at 2012-05-22 17:51 CDT
  Nmap scan report for xxx-bb-xxx-3-ws-6.xxx.xxxxxxxxxxxx.net (XX.XX.XXX.XX)
  Host is up (0.096s latency).
  PORT     STATE         SERVICE
  500/udp  open          isakmp
  1701/udp open|filtered L2TP
  4500/udp open|filtered nat-t-ike
  9999/udp open|filtered distinct
  Obviously there's something wrong since the TCP scan registered a major problem, so I redid the scan per nmap's recommendations:
  Gerchak$ nmap -Pn XX.XX.XXX.XX
  Starting Nmap 6.00 ( http://nmap.org ) at 2012-05-22 17:55 CDT
  Nmap scan report for xxx-bb-xxx-3-ws-6.xxx.xxxxxxxxxxxx.net (XX.XX.XXX.XX)
  Host is up (0.14s latency).
  Not shown: 990 filtered ports
  PORT     STATE  SERVICE
  22/tcp   closed ssh
  427/tcp  closed svrloc
  500/tcp  closed isakmp
  548/tcp  open   afp
  1723/tcp closed pptp
  5002/tcp closed rfe
  5003/tcp open   fm
  5004/tcp closed avt-profile-1
  5222/tcp open   xmpp-client
  8080/tcp open   http-proxy
  So, where should I go from here? 1723 is closed off yet my router says it's open. I'm just about ready to throw my hands up in the air and just purchase a different router.

• Cannot connect to VPN Server

  Upgraded to Yosemite last night and now my iMac can't connect to my companies VPN server.
  My error is  “The PPTP-VPN server did not respond.”
  The error log at my company's VPN server is...
  Log Name: System
  Source: RasMan
  Date: 10/17/2014 3:46:05 AM
  Event ID: 20209
  Task Category: None
  Level: Warning
  Keywords: Classic
  User: N/A
  Computer: TEXAS.private.4d.com
  Description:
  A connection between the VPN server and the VPN client 69.132.54.71 has been established, but the VPN connection cannot be completed. The most common cause for this is that a firewall or router between the VPN server and the VPN client is not configured to allow Generic Routing Encapsulation (GRE) packets (protocol 47).
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="RasMan" />
    <EventID Qualifiers="0">20209</EventID>
    <Level>3</Level>
    <Task>0</Task>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2014-10-17T10:46:05.000000000Z" />
    <EventRecordID>46547</EventRecordID>
    <Channel>System</Channel>
    <Computer>TEXAS.private.4d.com</Computer>
    <Security />
    </System>
    <EventData>
    <Data>69.132.54.71</Data>
    </EventData>
  </Event>
  Hope there is a solution to this problem. My MacBook Pro on the same network running 10.9.5 connect just fine.

  I had the same problem. Tried different vpn protocols via the OS X native interface but to no avail.
  I solved the problem by installing Tunnelblick: https://code.google.com/p/tunnelblick/
  Best regards
  Jan

• Cannot connect network drives through network switch

  macmini cannot see network drives connected to airport extreme.  Network drives are connected  through dlink 48 port 1 gig switch.How can
  I edit airport extreme to see these drives?

  The switch will be unlikely to have anything to do with the problem.. but bypass it and see.. plug a laptop or something directly into the extreme.. do the disks now show up?? If not the Extreme setup is wrong.. if they do and you can transfer files.. something is odd with the switch and you will need to work with dlink to figure if it is blocking some protocol.. Tell us how this test works out.. you can force the mac to use SMB by manually mounting the drive.. No switch is going to block SMB. 
  Do the external drives show up on the extreme in the airport utility?
  Have you turned on file sharing?
  Make sure in finder preferences you have enabled network drives.
  No go, are the drives formatted correctly.. they must be HFS+ or FAT32 format..
  I used to say GUID partitioned but not sure now..

• Cannot Access Corp VPN through Time Capsule Since Update

  Since updating to version 7.6.1, I am no longer able to VPN to our corporate servers from home... from any device. We know its the Time Capsule because:
  1) Connecting the laptop directly into the Provider and not using the Time Capsule, VPN will then work
  2) Taking the iPad off of the Time Capsule wireless and having it on 3G allows VPN to work
  FYI - we do not use any type of "ADSL/Cable" modem here since our building has Optical and there direct-to-provider LAN through the optical switch in the building cabinet.
  Steps I have Taken: I have scoured through the settings to see what might have changed... and honestly nothing changed on my Time Capsule. I went ahead and did a full reset of the device and upon reset checked to see if I could connect to our VPN server but still could not. I am able to setup a L2TP and PPTP VPN server inside my home and I am able to access it remotely.
  On thing that is interesting is that I can do a traceroute out the port and it does get out, so its not like its being blocked.... I am at a complete lost to what is going on. Anyone have any insight?

  What type of vpn exactly does your corporate server use? I presume it is ipsec of some sort.
  I think BTMM (reintroduced with Lion and iCloud and 7.61 firmware) uses ipsec somewhere in the process.. so it is very likely Apple allocated those ports to its own usage.. and really have a could not care less if ipsec now fails for anybody else.
  A solution is to simply go back to 7.5.2 firmware.. which I take as being the last that worked mostly properly!!
  Another solution is bridge the TC and get another router.
  As for fixing the TC.. apple have a record of breaking vpn in firmware upgrades and fixing them at some future point.. but don't hold your breath.

• Connect to vpn through exchange server

  looking for some tips for connecting a mac pro with OS X 10.6.8 to a vpn and via an exchange server, accessing email.  Help please.

  Anthony,
  Thanks. A few answers for you...
  What VPN Client are you using. Are you conneting
  through a dial in or through a network protocol (like
  an ssh tunnel)?
  I'm using Apple's "Internet Connect" to connect by PPTP. I connect from home via DSL.
  Are you using the public or private ip address of the
  server for this ping?
  If I understand right, private. I ping an address that a 192.168.0.x style address. Originally I couldn't ping the server until I changed the local address assigned by my DSL router (also 192.168.0.x). They were too similar.
  "(When I try "Connect to Server..." and enter
  smb://serveripaddress, a dialog box comes back with
  the correct workgroup and my username, but when I
  enter my password I get: "Could not connect to the
  server because the name or password is not
  correct.")"
  What happens if you use the dns name of your server
  for example:
  smb://servername.domain.office/ShareName?
  I get an error (-36). The finder can not read some of the data in "smb://servername.domain.office/ShareName"
  Oh,and you are putting the share name youre trying to
  connect to right?
  Yes. I should have said "When I try "Connect to Server..." and enter smb://serveripaddress/Shared..."
  One more thing...
  -I tried mapping the drive through VPN on a PC connected to the same DSL modem/router as the Mac and succeeded. At least I know, I think, that it is possible...
  Thanks for the help! I'm out of answers or even guesses.