Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1198
Views
0
Helpful
3
Replies

windows 10 pro v2004 problem with remote access vpn using cisco vpn client 5.0.07.440

goran ljubic
Level 1
Level 1

‎09-04-2020 02:12 AM - edited ‎09-04-2020 03:46 AM

in my company the users on workstations with windows 10 pro v2004 have a problem, previous version of windows workstations have not a problem. the cisco vpn client v 5.0.07.440  can not connect on remote access vpn on the asa 5510 firewall.

in logs of the asa 5510 i found error

03-09-2020 21:09:18 Local4.Info asa5510 :%ASA-auth-6-113004: AAA user authentication Successful : server = domain.com : user = abaralic
03-09-2020 21:09:18 Local4.Info asa5510 :%ASA-auth-6-113009: AAA retrieved default group policy (vpn) for user = abaralic
03-09-2020 21:09:18 Local4.Info asa5510 :%ASA-auth-6-113008: AAA transaction status ACCEPT : user = abaralic
03-09-2020 21:09:18 Local4.Info asa5510 :%ASA-dap-6-734001: DAP: User abaralic, Addr xx-xx-xx-xx.dynamic.ip.address, Connection IPSec: The following DAP records were selected for this connection: polisa
03-09-2020 21:09:18 Local4.Notice asa5510 :%ASA-vpn-5-713130: Group = vpn, Username = abaralic, IP = xx-xx-xx-xx.dynamic.ip.address, Received unsupported transaction mode attribute: 5
03-09-2020 21:09:18 Local4.Info asa5510 :%ASA-vpn-6-713184: Group = vpn, Username = abaralic, IP = xx-xx-xx-xx.dynamic.ip.address, Client Type: WinNT Client Application Version: 5.0.07.0440
03-09-2020 21:09:18 Local4.Notice asa5510 :%ASA-ipaa-5-737003: IPAA: DHCP configured, no viable servers found for tunnel-group 'vpn'
03-09-2020 21:09:18 Local4.Info asa5510 :%ASA-ipaa-6-737026: IPAA: Client assigned 192.168.230.116 from local pool
03-09-2020 21:09:18 Local4.Info asa5510 :%ASA-ipaa-6-737006: IPAA: Local pool request succeeded for tunnel-group 'vpn'
03-09-2020 21:09:18 Local4.Info asa5510 :%ASA-vpn-6-713228: Group = vpn, Username = abaralic, IP = xx-xx-xx-xx.dynamic.ip.address, Assigned private IP address 192.168.230.116 to remote user
03-09-2020 21:09:18 Local4.Notice asa5510 :%ASA-vpn-5-713119: Group = vpn, Username = abaralic, IP = xx-xx-xx-xx.dynamic.ip.address, PHASE 1 COMPLETED
03-09-2020 21:09:18 Local4.Notice asa5510 :%ASA-vpn-5-713075: Group = vpn, Username = abaralic, IP = xx-xx-xx-xx.dynamic.ip.address, Overriding Initiator's IPSec rekeying duration from 2147483 to 28800 seconds
03-09-2020 21:09:18 Local4.Info asa5510 :%ASA-vpn-6-602303: IPSEC: An outbound remote access SA (SPI= 0x99534441) between xx-xx-xx-xx.static.ip.address and xx-xx-xx-xx.dynamic.ip.address (user= abaralic) has been created.
03-09-2020 21:09:18 Local4.Notice asa5510 :%ASA-vpn-5-713049: Group = vpn, Username = abaralic, IP = xx-xx-xx-xx.dynamic.ip.address, Security negotiation complete for User (abaralic) Responder, Inbound SPI = 0x13d73894, Outbound SPI = 0x99534441
03-09-2020 21:09:18 Local4.Info asa5510 :%ASA-vpn-6-602303: IPSEC: An inbound remote access SA (SPI= 0x13D73894) between xx-xx-xx-xx.static.ip.address and xx-xx-xx-xx.dynamic.ip.address (user= abaralic) has been created.
03-09-2020 21:09:18 Local4.Notice asa5510 :%ASA-vpn-5-713120: Group = vpn, Username = abaralic, IP = xx-xx-xx-xx.dynamic.ip.address, PHASE 2 COMPLETED (msgid=a72f4f9b)
03-09-2020 21:09:24 Local4.Info asa5510 :%ASA-bridge-6-110002: Failed to locate egress interface for UDP from outside:192.168.230.116/55841 to 239.255.255.250/1900
03-09-2020 21:09:35 Local4.Warning asa5510 :%ASA--4-733100: [ Scanning] drop rate-1 exceeded. Current burst rate is 3 per second, max configured rate is 10; Current average rate is 6 per second, max configured rate is 5; Cumulative total count is 3890
03-09-2020 21:09:35 Local4.Warning asa5510 :%ASA--4-733100: [ Scanning] drop rate-2 exceeded. Current burst rate is 0 per second, max configured rate is 8; Current average rate is 4 per second, max configured rate is 4; Cumulative total count is 15158
03-09-2020 21:09:55 Local4.Warning asa5510 :%ASA--4-733100: [ Scanning] drop rate-1 exceeded. Current burst rate is 4 per second, max configured rate is 10; Current average rate is 6 per second, max configured rate is 5; Cumulative total count is 3965
03-09-2020 21:10:05 Local4.Notice asa5510 :%ASA-vpn-5-713050: Group = vpn, Username = abaralic, IP = xx-xx-xx-xx.dynamic.ip.address, Connection terminated for peer abaralic. Reason: Peer Terminate Remote Proxy 192.168.230.116, Local Proxy 0.0.0.0
03-09-2020 21:10:05 Local4.Info asa5510 :%ASA-vpn-6-602304: IPSEC: An outbound remote access SA (SPI= 0x99534441) between xx-xx-xx-xx.static.ip.address and xx-xx-xx-xx.dynamic.ip.address (user= abaralic) has been deleted.
03-09-2020 21:10:05 Local4.Info asa5510 :%ASA-vpn-6-602304: IPSEC: An inbound remote access SA (SPI= 0x13D73894) between xx-xx-xx-xx.dynamic.ip.address and xx-xx-xx-xx.static.ip.address (user= abaralic) has been deleted.
03-09-2020 21:10:05 Local4.Notice asa5510 :%ASA-vpn-5-713259: Group = vpn, Username = abaralic, IP = xx-xx-xx-xx.dynamic.ip.address, Session is being torn down. Reason: User Requested
03-09-2020 21:10:05 Local4.Info asa5510 :%ASA-vpn-6-713273: Group = vpn, Username = abaralic, IP = xx-xx-xx-xx.dynamic.ip.address, Deleting static route for client address: 192.168.230.116
03-09-2020 21:10:05 Local4.Warning asa5510 :%ASA-auth-4-113019: Group = vpn, Username = abaralic, IP = xx-xx-xx-xx.dynamic.ip.address, Session disconnected. Session Type: IPsecOverNatT, Duration: 0h:01m:31s, Bytes xmt: 12351, Bytes rcv: 20178, Reason: User Requested

 

what i do?

again, previous version of windows 10, windows 7 have not this problem.

Labels:
0 Helpful
3 Replies 3

balaji.bandi
Hall of Fame
Hall of Fame

‎09-04-2020 04:07 AM

Looking at below logs something not right :

 

Please confirm,

1. version of the ASA code

2. same IP address pool use to work before ?

 

 

 

 

03-09-2020 21:09:24 Local4.Info asa5510 :%ASA-bridge-6-110002: Failed to locate egress interface for UDP from outside:192.168.230.116/55841 to 239.255.255.250/1900
03-09-2020 21:09:35 Local4.Warning asa5510 :%ASA--4-733100: [ Scanning] drop rate-1 exceeded. Current burst rate is 3 per second, max configured rate is 10; Current average rate is 6 per second, max configured rate is 5; Cumulative total count is 3890
03-09-2020 21:09:35 Local4.Warning asa5510 :%ASA--4-733100: [ Scanning] drop rate-2 exceeded. Current burst rate is 0 per second, max configured rate is 8; Current average rate is 4 per second, max configured rate is 4; Cumulative total count is 15158
03-09-2020 21:09:55 Local4.Warning asa5510 :%ASA--4-733100: [ Scanning] drop rate-1 exceeded. Current burst rate is 4 per second, max configured rate is 10; Current average rate is 6 per second, max configured rate is 5; Cumulative total count is 3965

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

goran ljubic
Level 1
Level 1
In response to balaji.bandi

‎09-04-2020 04:14 AM

the ASA 5510 is version 8.4.(4)1. yes, the address pool is used to work before.

0 Helpful

WiLL-I-Am
Level 1
Level 1
In response to goran ljubic

‎09-07-2020 11:29 PM

why you don't use SSL vpn?

that old ipsec client is deprecated!

0 Helpful
Customers Also Viewed These Support Documents