06-11-2012 11:48 PM
We are getting the below logs in cisco ASA 55xx firewall with 8.x version continously.
%ASA-3-713141: IP = x.x.x.x, Client-reported firewall does not match configured firewall: terminating tunnel. Received -- Vendor: Sygate(4), Product Sygate Security Agent(3), Caps: 0001. Expected -- Vendor: Cisco Systems(1), Product: Cisco Integrated Client(0x00000001), Caps: 0002.
where x are multiple ip addresses used by Ras users..
can someone please help me.....
Solved! Go to Solution.
06-12-2012 03:38 AM
You can either change the firewall on the client's PC, or you can turn off the firewall checking for VPN Client if you don't actually use that feature. Because it hasn't failed the VPN Client connection, it is probably configured as an optional firewall setting on the ASA.
To disable it, you can configure the following under the respective group-policy:
client-firewall none
06-12-2012 01:44 AM
That means you are checking to see if you have firewall installed on the VPN Client's PC, and you have configured to see if Cisco Integrated Client firewall exists, while it detected Sygate firewall instead.
06-12-2012 02:01 AM
Thanks for the update...!!!
Does this indicate any problem and is there any way to suppress these logs ?
06-12-2012 03:38 AM
You can either change the firewall on the client's PC, or you can turn off the firewall checking for VPN Client if you don't actually use that feature. Because it hasn't failed the VPN Client connection, it is probably configured as an optional firewall setting on the ASA.
To disable it, you can configure the following under the respective group-policy:
client-firewall none
06-16-2012 08:53 PM
thanks for the update.. i think in stead of client-firewall none, we can even try firewall optional i guess.. correct me if i am wrong.
06-16-2012 08:54 PM
That is correct, you can have optional and the vpn will still get connected.
06-16-2012 08:57 PM
thanks..this thread can be closed.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide