Cisco VPN for Linux Darwin

patel.nishit · ‎08-22-2008

Have installed the lastest Linux Darwin Cisco VPN client 4.9.01.0100 . When I connect to vpn my internet connection drops and the VPN session gets disconnected.

Any idea to what could be causing this.

andrew.prince · ‎08-22-2008

Post the debug log of the client - set the logging levels:-

IKE - 3 = high

IPSEC - 3 = high

Firewall - 3 = high

patel.nishit · ‎08-22-2008

Do I do this on the workstation

andrew.prince · ‎08-22-2008

Yes - the VPN client has detailed logging capabilities.

patel.nishit · ‎09-04-2008

After setting that you told me to do, it is still unable to produce any logs.

Post the debug log of the client - set the logging levels:-

IKE - 3 = high

IPSEC - 3 = high

Firewall - 3 = high

andrew.prince · ‎09-04-2008

OK - did you actually enable logging? You have to enable it on the client for the logs to be captured?

HTH>

patel.nishit · ‎09-04-2008

I have attached the logs to this message. Please have a look and is if you can find any issue.

Many Tnaks.

patel.nishit · ‎09-04-2008

From Console Messages:

04/09/2008 10:50:47 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:47 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: dst addr 0.0.0.0 port 500

04/09/2008 10:50:47 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:48 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:48 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: dst addr 0.0.0.0 port 500

04/09/2008 10:50:48 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:49 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:49 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: dst addr 0.0.0.0 port 500

04/09/2008 10:50:49 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:50 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:50 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: dst addr 0.0.0.0 port 500

04/09/2008 10:50:50 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:53 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:53 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: dst addr 0.0.0.0 port 500

04/09/2008 10:50:53 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:54 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:54 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: dst addr 0.0.0.0 port 500

04/09/2008 10:50:54 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:55 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:55 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: dst addr 0.0.0.0 port 500

04/09/2008 10:50:55 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:56 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

04/09/2008 10:50:56 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: dst addr 0.0.0.0 port 500

04/09/2008 10:50:56 [0x0-0x67b67b].com.cisco.VPNClient[7345] bind: Address already in use

andrew.prince · ‎09-04-2008

15 10:50:50.476 09/04/2008 Sev=Critical/1 CVPND/0xC3400003

Function SocketApiBind() failed with an error code of 0xFFFFFFFF(ike-init-state.cpp:402)

16 10:50:50.476 09/04/2008 Sev=Critical/1 CVPND/0x43400012

Unable to bind to IKE port. This could be because there is another VPN client installed or running. Please disable or uninstall all VPN Clients other than the Cisco VPN Client.

17 10:50:50.476 09/04/2008 Sev=Info/4 CM/0xC3100003

Failure to Initialize IKE ports

18 10:50:50.476 09/04/2008 Sev=Info/5 CM/0x43100025

Initializing CVPNDrv

You habe an issue with the install or the machine is using those ports for something else. I suggest you remove the software and try re-installing.

HTH>

patel.nishit · ‎09-05-2008

I have reinstalled it couple of times now and its still not working.

There is a possible issue with a feature called "Back To My Mac" which allows two Macs running OS X 10.5+ (Leopard) remote access to each other via PnP enabled routers.

This has been disabled as have all the sharing functions on this iMac.

I also have a Windows VM (on VMware Fusion) that shares the network capabilities of the host but this is also offline.

andrew.prince · ‎09-05-2008

Something on the machine is stopping the client from working!

HTH>

markebbert · ‎09-15-2008

Any updates? I have the exact same issue and have tried several methods to fix the problem.

The thing that doesn't make sense is that I can find nothing that is already bound to port 500. I've used netstat -af and lsof -i:500, but nothing is using it already. I even got on with Apple support, and they had no suggestions.

The only other option I can come up with is to reinstall OS X (I've already tried repairing permissions), but before I do that I want to see if anyone has another idea.

I should also mention that I added an extra setting to the end of the pcf file ("UseLegacyIKEPort=0"), which somehow gets past the problem and lets me connect, but I cannot make http requests to my company's intranet.