Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: vpnc: devel

vpnc requires cisco vpnclient to reset connection

  

 
vpnc devel RSS feed   Index | Next | Previous | View Threaded


BHills at openfieldsolutions

Jul 9, 2004, 3:10 AM

Post #1 of 4 (518 views)
Permalink
vpnc requires cisco vpnclient to reset connection
Hello,

After a random number of connection/disconnections the vpnc program
reports a successful connection but after setting up the routing does not
seem to receive any traffic. Telnet/ftp etc just hang trying to open the
connection.

Reconnection or even rebooting does not recover the connection but running
the cisco vpnclient to establish a connection and then disconnecting
allows vpnc to function again.

This is using Linux Fedora Core II with either kernel versions:
2.6.6-1.435.2.3 or 2.6.5-1.358

I used both the current version in svn and the latest tarball of vpnc.

Any ideas?

Brent
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.unix-ag.uni-kl.de/pipermail/vpnc-devel/attachments/20040708/8ee9d75a/attachment.html


dc2rpt at gmx

Jul 9, 2004, 9:09 AM

Post #2 of 4 (479 views)
Permalink
vpnc requires cisco vpnclient to reset connection [In reply to]
Hallo.

> After a random number of connection/disconnections the vpnc program
> reports a successful connection but after setting up the routing does not
> seem to receive any traffic. Telnet/ftp etc just hang trying to open the
> connection.
>
> Any ideas?
I could only say, i have the same problem on some days, after waiting some
hours it works again...

cu Thomas


cruvolo at inviosoftware

Jul 20, 2004, 10:15 PM

Post #3 of 4 (485 views)
Permalink
Re: vpnc requires cisco vpnclient to reset connection [In reply to]
Thomas & Bill,

I am having a similar problem. I am unable to reconnect and pass packets.
The authentication goes through and vpnc thinks it is sending packets (seen
in debug and no-detach mode). However none are recieved, except for a small
window when the connection is new.

For example, if I leave a 'ping 10.0.0.1' going (where 10.x is accessible
only via the VPN) and try to connect, I will receive *1* echo reply from the
other side, and then nothing. (it takes a few tries to get the timing
right, but this is fairly consistent)

Does anyone have any ideas about how to fix this or work around this? I can
provide packet captures to developers if needed.

BTW, this is with Debian's package, version 0.2-rm+zomb.1-7, on kernel
2.6.7, x86. The remote is a Cisco PIX.

Thanks,
-Chris


massar at unix-ag

Aug 2, 2004, 9:12 PM

Post #4 of 4 (480 views)
Permalink
Re: vpnc requires cisco vpnclient to reset connection [In reply to]
hi,

> For example, if I leave a 'ping 10.0.0.1' going (where 10.x is accessible
> only via the VPN) and try to connect, I will receive *1* echo reply from the
> other side, and then nothing. (it takes a few tries to get the timing
> right, but this is fairly consistent)
>
> Does anyone have any ideas about how to fix this or work around this? I can
> provide packet captures to developers if needed.
>
> BTW, this is with Debian's package, version 0.2-rm+zomb.1-7, on kernel
> 2.6.7, x86. The remote is a Cisco PIX.

sounds strange...
can you verify with tcpdump (or so) that vpnc is sending pakets
but receiving nothing? (and no icmp-errors or so?)
can you try if there is any traffic pix -> vpnc if you start generating
traffic at the pix end?

do you have access to that pix? is it logging anything?

I've no idea what is causing this...

cu
maurice

vpnc devel RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.