From: IgaDumA (igaduma@gmail.com)
Date: Mon Dec 19 2005 - 12:02:14 EST
Hello All,
I'm having some trouble with Cisco VPN client on a Solaris 9 E250 machine.
After a few days of googling, cisco manuals & coffee, I turn to here...
I've ran the sol9 update cluster and the machine is sitting on a network
with a static ip address, qualified hostname, dns-servers & a default
gateway.
I downloaded the cisco VPN client and installed it being root on the
machine, dmesg shows me ipsec module is loaded OK.
When I try to start up a vpn session with 2 profiles I have copied from a
winXP laptop I get a very vague error on both profiles:
Tried this both in 32bit & 64bit mode. Computer continues to say NO!.
This is the output from vpnclient:
Authenticating user.
Negotiating security policies.
Securing communication channel.
Secure VPN Connection terminated by Peer.
Reason: Firewall Policy Mismatch.
There are no new notification messages at this time.
And then it returns to commandline prompt.
I tried with a winXP client on the same lan segment and that worked, so
maybe I can rule out any pix firewall issue's I think.
According to our cisco guru, pix is set anyhow to allow any traffic & it's
proven working by the winXP client on the same lan segment, with the same
.pcf profile.
Must be the solaris machine.
I've tried upping the loglevels but I can't seem to pinpoint the error in
the ipseclog file,
at a certain point it says IKE_FIREWALL_MISMATCH and thats it, starts
de-connecting.
I've added the necessary hme 0 -1 ipsec line into my iu.ap as per cisco
manual.
Any help is greatly appriciated.... :)
Thanks!
Igaduma
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:37:51 EDT