Cisco vpn and Internet Connect 10.4.6

Today, after upgrading to 10.4.6 and mindful of the advertised feature that the built-in vpn now works with a Cisco server, I tried to use the l2tp/ipsec configuration to connect to a Cisco 3000 VPN service. Didn't work.
I sniffed the connection and found that on connection Internet Connect sends an ipsec exchange type of "Identity Protection (Main Mode)". The 3000 does not respond to this request at all, only to Aggressive Mode. I have tried eliminating the "Main mode" exchange type from /etc/racoon/racoon.conf and also /etc/racoon/remote/anonymous.conf which are the only two places I can find a setting for it. Made no difference.
The plist file for the vpn config does not have any of the lower level ipsec parameter settings so I assume that /etc/racoon... is what is used.
Is there anywhere else or any other way to change the phase 1 negotiation type from Main to Aggressive?
Has anyone got the built-in VPN service to talk to a Cisco 3000 Concentrator with the current OS release?
Thanks
r.
12"G4 PB     10.4.6
12" g4 pb    

r.l.
The plist file for the vpn config does not have any
of the lower level ipsec parameter settings so I
assume that /etc/racoon... is what is used.
I found this tip in another post (http://discussions.apple.com/thread.jspa?messageID=1738615) - thanks to Alan Snelgrove! - there is a conf file that is generated during the VPN session (in my case only 30 seconds long until it times out). The name of the file is "IPADDRESS.conf" (where IPADDRESS is the actual address to connect to) and it is located in /etc/racoon/remote. If you look there during the attempt to connect another file besides anonymous.conf will be there.
I tried to save this file in the /etc/racoon/remote directory, but the next time I tried to connect it overwrote the file and removed it after the attempt timed out.
I don't know if that helps...
Powerbook G4 1.5 GHz   Mac OS X (10.4.6)   1.5 GB Ram

Similar Messages

  • VPN and Internet Connection Sharing? (bridging remote networks)

    I'd like to try an experiment and some advice from this list will be useful.
    +Summary: Can a Mac with two interfaces activate VPN and Internet sharing simultaneously to bridge two remote networks?+
    I've created a PPTP VPN server on our XServe at work and opened the appropriate ports on our firewall. This and a second location are linked with standard (but fast) ADSL broadband. I can log in from both Mac and Windows VPN clients at an external location and indeed the experience is just like being at work- printers, file servers and other resources (eg networked Filemaker databases) are all visible. Yay.
    Question: Is it possible to extend this concept further by logging onto our VPN with once interface (eg Airport) +and then+ enabling Internet Sharing through the second interface (eg Ethernet)? Will this allow a small network connected through the second interface to all behave as though they are on the work network, with transparent access to fileservers, printers and so on, without each bothering individually with VPNs and so on? I suspect there are physical boxes that will do this, but it would be wonderful to know if I can get a Mac with two NICs to do the same job, acting as a router between the two networks. Are there any limitations to this? I am happy to tweak under the hood if need be. I just need to know if this is possible, even in theory, and what the limitations might be.
    Thanks.

    Hey Nathan...
    My VPN is down at the moment, but I think your going to have to manually configure all of the "clients" who are sharing the VPN to an IP range that your office uses. When you connect to your VPN, check your network prefs, and you'll see the IP addresses assigned to your VPN are similar to your network at the office. So, in a way, your sharing computer has 2 IP addresses... one from your modem or router at home, and one from the VPN server at the office. It's this 2nd IP address that allows you to appear to be on the network at the office.
    So, if you can find a way to set up your shared clients the same way.... it might work. It will also be VERY helpful if your IP range at home is different from the IP range at the office....192.168... for one...and 10.0.0 for the other. (Whether traffic will pass thru your "sharing server" is a different matter altogether.)
    Now, and I'm really guessing here.. if this works at all... you may be only able to access stuff from the office on your "shared clients" (ie no internet).... the way around that is to set up your VPN to allow VPN clients to pull stuff from the internet from the office thu the VPN... and for the life of me don't remember how that is done. But it will most likely be a bit slow.
    I'd start with the basics... setup one client with a manual IP address/router/dns servers, and try to ping a computer at the office. If this works... at least part of your problem is solved.
    With all that said... it may not work at all. Good Luck!

  • Mail and Internet Connection conflict

    I have a VPN PPTP connection running. Most of my other Mac internet apps run fine (Safari, Fetch), for that matter Mail can read new emails. The problem is that Mail won't send mail until I close the VPN connection. I figure this is a port conflict, Mail output and Internet Connection using the same ports, is there a way to change the port either is using? If so, any idea what I should change it to?

    Your issue has been escalated to a Verizon agent. Before the agent can begin assisting you, they will need to collect further information from you.
    Please go to your profile page for the forum, and look in the middle, right at the top where you will find an area titled "My Support Cases". You can reach your profile page by clicking on your name beside your post, or at the top left of this page underneath the title of the board.
    Under “My Support Cases” you will find a link to the private board where you and the agent may exchange information. This should be checked on a frequent basis as the agent may be waiting for information from you before they can proceed with any actions.
    To ensure you know when they have responded to you, at the top of your support case there is a drop down menu for support case options. Open that and choose "subscribe".
    Please keep all correspondence regarding your issue in the private support portal.

  • VPN via Internet Connect

    My work place has switched to a new Firewall and of course it's not compatible with my VPN Tracker software that I use at home. Grrrr...stupid PC networks!!
    Anyway...without having to go into my Terminal (which scares the crap out of me) and mess with that, I'd love to use the VPN access via the Internet Connection application. Far more user friendly.
    I entered all the correct and appropriate info that was given to me by our administrator (server address, ect), but it's giving me an error.
    QUESTION: Does something ELSE need to be running on my MAC for the VPN option to be working correctly?
    I'm running Tiger on my eMac. I have a cable modem connection via Airport.

    I rebooted and all seems to be okay. Both our MACs connected to the internet just fine. So I think I'm okay. No harm. Although I'm too tired and frustrated to be playing with this probably! LOL Frustrated that our so-called administrator at work is so afraid of MACs. But I don't want him coming to my house and screwing up my MAC and Network here!
    But when you said I had to open up a Port, wouldn't that require some kind of set up in Network Preferences? It makes sense that I'd need a new portal to connect, but I didn't used to have to before. I had a main portal (IP address) to my office, then I was able to connect to the other servers once that connection was made.
    I'm using that main IP address to try and connect via the VPN in Internet Connection, but no luck. I have the Share Secret, and account name and password all set up, so I don't know what i'm doing wrong at this point. Everything used to work great via VPN Tracker, so I'm even more upset he didn't ask me if that software program was compatible with the new FireWire they installed.
    Oh, well! I'll keep trying.
    Thanks,
    H

  • Client dns and internet connection

    Hi,
    Running 10.5.5 Server with basic DNS for inter clients to access AFP/SMB and Wiki services via Open Directory. IP address is 192.168.1.10
    Clients currently receive internet via DHCP from a router and Network preferences autofills DNS and search domains with router address 192.168.1.1 and RP614v4 respectively.
    If I add the server IP and search domain, I can't see the server via DNS name unless I reverse the order in the fields (192.168.1.10 and ######.private). However this turns the internet connection to snail pace.
    How can I get the DNS to work for both the internal server and internet connection?
    Thanks,
    Joel.

    If your DNS server is running correctly, there's no reason why it should resolve any slower than the router. The fact you're mentioning it implies that the delay is significant so I'll guess that your clients are requesting an address from your server, but that's timing out so they're falling back to the router before proceeding.
    You should check your DNS server to make sure it's set to be recursive (so it answers queries for non-local domains, too). That way the clients can get all lookups from your server and you should be good to go.

  • Video and Internet Connection

    So I bought this brand new Macbook Pro only two months ago, and already I'm experiencing issues with the video and Internet Connection. When I try to watch video, it plays for a few minutes, then completely stops, though it is buffered and loaded completely. It never starts replaying unless i refresh it, but then it happens again and again. Then for the internet connection, when im opening websites and everything, suddenly the it says "Sorry you are not connected to the internet" then after a few moments, it works, but this is very annoying. Websites also load very slowly. Is there anything I can do?

    How many lines do you have on your wifi "fan" up at the top right of your computer and how far are you from the router? sometimes things like that happen when I sit a little too far from our wifi hub. If I show a good set of bars I have good internet flow etc. if just a single bar or barely, it gets dodgy.

  • Where have my speaker volume and internet connection notification icons gone?

    This morning two 'notification icons' (at bottom right of screen) vanished: speaker volume, and internet connection. How do I restore them?
    I have Firefox 6.0.2 running on Windows Vista

    Great, thanks you two, much appreciate the help. They only say it will be restored ASAP. Has this happened before and how long did it take to fix? Also, I'm in the UK so I assume its a global issue?
    Thanks

  • I have an airport extreme with a HP Folio laptop and cannon pixma MX882 printer. when i am VPN'd in thru Cisco vpn and try to print the wireless print connection stops. i Un-VPN and it prints. then i have to go back into VPN to continue?how do i configure

    i have an Airport Extreme wireless router, HP Folio laptop (company supplied) and a Canon PIXMA MX882 wireless printer,copier, scanner and fax.
    when i am VPN's in thru CISCO VPN to my company Intranet site I cannot print wirelessly. i have to turn off VPN, priint and log back into the company intranet site.  is there a way to configure the router so that it is not blocking the signal?
    Tx

    The problem is not the router.. the issue is the vpn has put your computer in a different IP range with a different gateway. When you turn off the vpn the computer returns to local lan and can print.
    Some vpn software allows you to set gateway to use local net instead of remote gateway or access to other webistes or local lan.
    Read up the issue.
    http://stevejenkins.com/blog/2010/01/using-the-local-default-gateway-with-a-wind ows-vpn-connection/
    Cisco vpn client..
    https://supportforums.cisco.com/thread/239113
    I did not search much.. just grabbed the first article I could find that explains the issue.
    The whole point of the vpn is whilst it is connected your computer is NOT part of the Local Lan .. it is part of the Remote LAN via the vpn tunnel.
    It is also a security risk using split tunnelling so often it will not be allowed.
    Plug the printer directly into the computer via usb or whatever.. Local connection will work.. not local lan.

  • VPN and Internet Sharing

    I am running OS 10.5.8 on an iMac. I have the mac connected to the Belkin N1 Vision router (new). I have networked my xBox to the Mac via ethernet connection, and I have internet sharing of the AirPort on and the xBox connects to xBox Live just fine. When I attempt to connect to the VPN server, it will not. I turn off internet sharing and I can connect to the VPN server. Then when I try to turn on internet sharing again, I lose internet connection all together. Can anyone help?

    Something else to consider.
    If you don't do anything the default configuration of the VPN Server in Mac OS X 10.6 Server is to route all the users traffic including traffic for sites on the Internet via the Mac OS X Server. If your happy enough for only the traffic that needs to reach your internal LAN to go via the VPN Server and to let the (remote) users Internet traffic go via their own Internet link instead of the office VPN, then you need to add at least one rule in the VPN Server.
    Launch Server Admin
    Click on the VPN service
    Click on Settings at the top
    Click on the Client Information tab
    In the big box at the bottom add a rule to route to your office LAN and mark it as type Private.
    See page 151 of the Mac OS X 10.6 Server "Network Services Admin v10.6" PDF manual.

  • Cisco VPN and Microsoft Virtual PC (xp mode under Windows 7)

    I've installed XP under my users Windows 7 64 bit Enterprise.  Unfortunately I set up networking for DHCP so that the host and guest (too much vmware :) )  get two different IP's.
    So with Cisco anyconnect, I can't get the guest (i.e. the Win xp vm) to connect correctly.  I want to change networking back to bridged and try that, but for the life of me I can't find where the settings are.  I'm thinking that bridged (where
    I don't have to try the Cisco client in the vm might work better)
    But I"m in the US
    My users in Australia
    and right now I can't get remote tools to work on the host and talking this guy through it on the phone is not pleasant.
    Are there instructions somewhere, and where is the full downloadable documentation for this product. I can find online, can't find a full downloadable copy

    On Thu, 2 Sep 2010 14:34:57 +0000, Jim_St wrote:
    I've installed XP under my users Windows 7 64 bit Enterprise.=A0=20
    Unfortunately I set up networking for DHCP so that the host and guest=20
    (too much vmware :) )=A0 get two different IP's.
    So with Cisco anyconnect, I can't get the guest (i.e. the Win xp vm) to=20
    connect correctly.=A0 I want to change networking back to bridged and =
    try=20
    that, but for the life of me I can't find where the settings are.=A0 I'm=
    =20
    thinking that bridged (where I don't have to try the Cisco client in=20
    the vm might work better)
    But I"m in the US
    My users in Australia
    and right now I can't get remote tools to work on the host and talking=20
    this guy through it on the phone is not pleasant.
    Are there instructions somewhere, and where is the full downloadable=20
    documentation for this product. I can find online, can't find a full=20
    downloadable copy
    Bridged networking is what VMWare calls it and it works basically the
    same as the way you don't like here. The guest will interact with the
    NIC on the host and from the outsie it will present a second channel
    with a different MAC address. This channel will acquire an IP address
    of its own from the DHCP server.
    But no matter what you do, the host and guest will NEVER EVER get the
    same IP address!
    Additionally, Cisco VPN by design will shut down ALL other network
    interfaces when it connects the tunnel so the computer running Cisco
    VPN will be effectively disconnected from the local network and
    INSTEAD connected to the remote network. You cannot share this VPN
    tunnel to another local computer and this includes the host.
    Bo Berglund

  • Installer error and internet connection

    The installer app for the Creative Cloud Desktop application keeps stating that I have no internet connection when I definitely do have one.  I suspect it has something to do with an old vpn and proxy server but I am unable to change the installer's LAN connection settings.  Can someone help with this? 

    Hi -- I was able to resolve this by following the posts relating to proxy servers.  Although I no longer am running a vpn, the proxy server check box was still checked under the Internet Options Connections tab and LAN settings.  Unchecking the box then seemed to allow the Creative Cloud Desktop applicaiton to 'see' my interent connection and connect.  Thank you to Florian for providing the clues to this resolution.

  • Cisco UC540W DHCP Internet connection Issue.

    Hi guys, i would like some help trying to figure this out:
    We have an UC540 system in our office, we also have a broadband internet connection through a local ISP, the UC540 internet connection setup is DHCP, but when i connect the ONT cable into the WAN port, it doesnt get any ip address, i tried with other device (D-LINK router) and it works perfectly.
    I need your advice to let me know what i am missing. Here is the sh run configutarion, and no CLI changes have been made by the way.
    Thanks in advance for the assistance.                  

    ISP may have a temporary MAC lock to other router address. So you may need to stay with ISP device turned off some hours or a night before reconnecting Cisco.

  • New FIOS customer with dropped VOIP calls and Internet connection

    I am a new FIOS customer. Got my 50/25 connection a week ago, switching from a TWC 6/1 connection. Ever since the new connection, I've had numerous issues.
    My VOIP (Ooma) connection constantly drops and re-connects during conversations
    I've had random Internet connection losses, which picks up again after a few minutes
    My home alarm starts chirping every once in a while
    I've contacted Verizon several times due to these problems and have received varying answers with no resolution of the problem.
    The first time I spoke with support, the tech logged into my router and changed the WiFi channel saying that would fix the problem. It didn’t.
    The second time I contacted them, the tech ran a bunch of diagnostics and said everything looked fine so it must be an IP address conflict with my devices, because I had a couple devices using static IP addresses. He said everythinf should be DHCP and the last two digits could not be higher than 99 (192.168.1.99). He said FIOS does not support 3-digit numbers at the end.
    So I changed all my devices to DHCP and ran some online VOIP tests. It showed a packet loss of 2-5% and MOS score of 1 (which is bad). I was still getting dropped connections, so I disconnected all devices and connected just one computer to the router and tested again. I was still getting packet loss.
    Then I called support a third time, this time the tech said there were no 2-digit IP restrictions and that he was detecting there was no UPS baterry backup for the ONT which was probably causing the problem, so he dispatched a field tech to my house.
    Today the field tech came (same guy as before), he took one look at the box and said it was too close to my Electric meter and the RF from the meter was causing interference to the FIOS connection and resulting in dropped connection.
    He moved the ONT to another location and said that should fix it.
    Well, I'm still seeing packet loss and low MOS score when I run the VOIP test.
    I don't know how much of what the techs are saying is true and how much is made up stuff.
    Has anyone had similar issues and have thoughts on solutions or likely causes for dropped VOIP calls and connections? Could RF be causing this?
    I thought going from a 6/1 Cable connection to a 50/25 FIOS connection would be awesome, but this has turned out to be a nightmare, and I may have to switch back to cable if the problem is not resolved.
    I would appreciate any help.
    Thanks!

    Don't know where the packet loss is happening. I ran the VOIP test on myspeed.visualware.com and it shows a packet loss of 2-5% at different times and a MOS score of 1.
    The report says MOS should be around 4 for good VOIP calls.
    The Verizon tech who came to the house just blamed the electric meter box for RF interference and move the ONT farther away.
    My concern is that I'm getting different answers from different techs at Verizon.
    Regarding IP addresses. The Router shows a DHCP range from 192.162.1.2 to 192.168.1.254 as available for devices on the network. So, if I need to assign a static IP to a device should I use a number below 99 or above 151?
    Thanks!

  • Dock and Internet Connection Problem

    Since downloading some software updates recently, my computer has been behaving strangely. Most notably, I no longer have an internet connection on my Mac. My Mac is the computer connected to my wireless router and my other computers pick up the internet signal fine. Network Diagnostics show all aspects FAILED.
    This all became apparent when I hit F12 to access my Dashboard. All of my widgets were INOP and then my Dock went dead--wouldn't pop up. I had to restart my computer to get my dock to show.
    Can anyone help?

    Well after some troubleshooting, it looks like my network card may be the culprit. Does anyone know the cost of replacing one and/or where I can order one if it comes to that? Maybe it's just some settings (wishful thinking?). Can anyone help?

  • HT1725 My first time purchasing, downloading and watching a movie from itunes worked fine but the second did not!  An error (unknown error 50) kept coming up no matter how often I tried resuming the download or restarting my laptop and internet connection

    My first ever purchase and download of a movie was successful but the second didn't download and came up with
    "error 50 has occured".  I tried downloading numerous times again after checking my internet connection and rebooting my
    laptop.  Still no luck and the Itunes store have charged me.  Any suggestions please?

    This error can be quite common:
    iTunes Store: "Error (-50)" when downloading purchased content
    http://support.apple.com/kb/TS1583

Maybe you are looking for

  • Hitting 'Save' in EditForm opens PDF document

    I created a custom document library that stores scans of invoices as PDF-A documents. The library has a custom content type with some custom fields and the list's schema also links to a custom EditForm.aspx. In the EditForm I am using a JavaScript fu

  • No response Installing Oracle 9i Release 2 on Win XP SP2

    After double-clicking the setup icon on Disk1 nothing happens. The hourglass is visible dor less than a second, then nothing. Anyone know what's going on? Regards, Golan

  • Error while starting services in OBIEE11g

    Hi Gurus, can some one help me with a solution for this error. i am facing this error when i try to restart the services in obiee11g D:\OBI\instances\instance2\bin>opmnctl startall Error --> Process (index=1,uid=716638472,pid=6872) failed to start a

  • Oracle9i JDeveloper Beta Release Notes Adendum

    How can i do the balancing of DFD using oracle designer 2.1. How can i record business rules and business logic in designer and where?

  • How do I read the Visual Source Safe version of a sequence file?

    I can read the TestStand Version using RunState.SequenceFile.Data.Version. I would like to sink the version numbers in VSS and TestStand up. How do I obtain the version number maintained by VSS. Thanks, Jeff