Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
750
Views
0
Helpful
1
Replies

Reason 412: Cisco VPN Client Terminated locally.

akunwar
Level 1
Level 1

‎09-25-2004 01:04 PM - edited ‎02-21-2020 01:21 PM

Hi,

I am trying to connect to PIX firewall using Cisco VPN Client 4.0.3.

When I try to connect it, after typing user name and password, its

says "

Secure VPN connection is terminated locally by the client

Reason 412: The remote peer is no longer responding."

The firewall config is attached.

Please let me know whats I am doing wrong.

Thanks alot for your help.

Asif.

Labels:
Preview file
6 KB
0 Helpful
1 Reply 1

piseli
Level 1
Level 1

‎09-27-2004 09:12 AM

Here is an example config:

hostname pix

domain-name localdomain

clock timezone EST -5

clock summer-time EDT recurring

fixup protocol esp-ike

names

name 192.168.1.0 LocalNET

name 192.168.200.0 VPN-Pool

access-list NONAT permit ip LocalNET 255.255.255.0 VPN-Pool 255.255.255.0

access-list VPN permit ip any VPN-Pool 255.255.255.0

ip local pool VPNPool 192.168.200.1-192.168.200.254

global (outside) 1 interface

nat (inside) 0 access-list NONAT

nat (inside) 1 LocalNET 255.255.255.0 0 0

aaa-server LOCAL protocol local

aaa authentication secure-http-client

sysopt connection permit-ipsec

crypto ipsec transform-set TRANS esp-3des esp-md5-hmac

crypto dynamic-map outside_dyn_map 20 match address VPN

crypto dynamic-map outside_dyn_map 20 set transform-set TRANS

crypto map MYMAP 65535 ipsec-isakmp dynamic outside_dyn_map

crypto map MYMAP client authentication LOCAL

crypto map MYMAP interface outside

isakmp enable outside

isakmp identity address

isakmp nat-traversal 20

isakmp policy 10 authentication pre-share

isakmp policy 10 encryption 3des

isakmp policy 10 hash md5

isakmp policy 10 group 2

isakmp policy 10 lifetime 86400

vpngroup VPNGroup address-pool VPNPool

vpngroup VPNGroup dns-server dns2 dns1

vpngroup VPNGroup default-domain localdomain

vpngroup VPNGroup idle-time 1800

vpngroup VPNGroup password grouppassword

username vpnclient password vpnclient-password

sincerly

Patrick

0 Helpful
Customers Also Viewed These Support Documents