Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
374
Views
0
Helpful
0
Replies

VPN client 4.X is not able to connect second time

jlacis
Level 1
Level 1

‎01-07-2005 04:45 AM - edited ‎02-21-2020 01:32 PM

Hi! We are running Cisco VPN clients 4.0.5X and 4.6 connecting to PIX 6.3(4). Everything works fine for the first connection. If for any reason VPN session is disconnected (either by error or manually by user), the second and any further connection attempts are unsuccessfull with the message : "Secure VPN connection terminated locally by the client. Reason 403: Unable to contact the security gateway". To resolve the situation it is necessary to exit the VPN client which is easy with 4.0.5X (right click on VPN client icon in systray and EXIT VPN CLIENT), but with 4.6X I have found the only way to kill the process "VPNGUI.EXE" in Task Manager.

The only exception to this is VPN client version 4.6.00.0045 which DOES NOT behave like described (it can be successfully run as many times as necesarry without exiting VPN client) and I hoped that this bug is resolved.

But :-( to my very great surprise the newest version "Release 4.6.01.0018" client has got the same BUG as I described earlier.

I did try to LOG on VPN client the reason for this with VPN client version 4.6.01.0018 (Log Settings->Connection Manager: 3 - High) and got

the following :

9 13:25:26.709 01/07/05 Sev=Info/4 CM/0x63100002

Begin connection process

10 13:25:26.729 01/07/05 Sev=Info/4 CM/0x63100004

Establish secure connection using Ethernet

11 13:25:26.729 01/07/05 Sev=Info/4 CM/0x63100024

Attempt connection with server "10.254.5.9"

12 13:25:26.819 01/07/05 Sev=Warning/2 IKE/0xE3000007

Unable to open certificate (cn=xxxx-yy-zz,ou=ORG-MYVPN,o=ORG-MYVPN,st=any,e=User.Name@Domain.any).

If you are using a smartcard or token containing a certificate, verify the correct one is plugged in and try again.

13 13:25:26.819 01/07/05 Sev=Warning/2 IKE/0xE3000099

Failed to open my certificate (Connection:239)

14 13:25:26.819 01/07/05 Sev=Warning/2 IKE/0xE3000098

Failed to set up connection data

15 13:25:26.819 01/07/05 Sev=Info/4 CM/0x6310001C

Unable to contact server "10.254.5.9"

16 13:25:26.829 01/07/05 Sev=Info/5 CM/0x63100025

Initializing CVPNDrv

Just to mention that we use certificate authentication between Windows VPN client and PIX Firewall. Certificate authority is Microsoft CA.

Thanks !

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents