Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
948
Views
0
Helpful
4
Replies

rv260w VPN suddenly not working for one user

micknc453
Level 1
Level 1

‎05-21-2021 07:59 AM - edited ‎05-21-2021 08:00 AM

I've spent several hours on this one and I'm stumped. Hoping someone can give me some direction.

 

We have client to site VPN enabled for 3 remote workers. This week one of them is no longer able to use the VPN. They can connect and everything looks normal for them but about 10 seconds in, they will get an error: gateway not responding. They are using ShrewSoft with a standard profile that we created. I've tried the follwing:

1. Create a new user account in the router.

2. Uninstalled and reinstalled shrewsoft and the profile on the remote machine.

3. Turned off all firewalls and malware defenders on the remote machine.

 

Here is what the user sees:

config loaded for site 'XXXX VPN Connection'
attached to key daemon ...
peer configured
iskamp proposal configured
esp proposal configured
client configured
local id configured
remote id configured
pre-shared key configured
bringing up tunnel ...
network device configured
tunnel enabled
--- All looks good Right? ---

Then about 10-30 seconds later:
gateway is not responding
tunnel disabled
detached from key daemon

 

Here's the VPN log from the router:

micknc453 is the user with the problem

mickncTest is my new account just to see if something was corrupt inside the user account

p_Linville is another user and her's is working fine.

I'm stumped and beyone my depth on this one.

 

2021-05-20T16:03:21-05:00 <notice>charon: pam_krb5(s2s-vpn:auth): authentication failure; logname=mickncTest uid=0 euid=0 tty= ruser= rhost=
2021-05-20T16:03:21-05:00 <error>charon: pam_krb5(s2s-vpn:auth): (user mickncTest) parse_name failed: Configuration file does not specify default realm
2021-05-20T16:03:21-05:00 <alert>charon: pam_ldap: missing file /etc/ldap.conf
2021-05-20T16:03:21-05:00 <error>charon: pam_radius_auth: Could not open configuration file /etc/raddb/server: No such file or directory
2021-05-20T16:03:21-05:00 <error>charon: PAM _pam_init_handlers: no default config /etc/pam.d/other
2021-05-20T16:03:10-05:00 <notice>VPN-cfg: loading tunnel c2s_RemoteVPN...
2021-05-20T16:03:09-05:00 <notice>VPN-cfg: Starting ipsec...
2021-05-20T16:03:08-05:00 <notice>VPN-cfg: Enabling IPSec globally.
2021-05-20T14:13:46-05:00 <notice>VPN-cfg: Stopping ipsec...
2021-05-20T14:13:45-05:00 <notice>VPN-cfg: Disabling IPSec globally.
2021-05-20T13:23:49-05:00 <notice>charon: pam_krb5(s2s-vpn:auth): authentication failure; logname=mickncTest uid=0 euid=0 tty= ruser= rhost=
2021-05-20T13:23:49-05:00 <error>charon: pam_krb5(s2s-vpn:auth): (user mickncTest) parse_name failed: Configuration file does not specify default realm
2021-05-20T13:23:49-05:00 <alert>charon: pam_ldap: missing file /etc/ldap.conf
2021-05-20T13:23:49-05:00 <error>charon: pam_radius_auth: Could not open configuration file /etc/raddb/server: No such file or directory
2021-05-20T13:23:49-05:00 <error>charon: PAM _pam_init_handlers: no default config /etc/pam.d/other
2021-05-20T13:21:20-05:00 <notice>charon: pam_krb5(s2s-vpn:auth): authentication failure; logname=mickncTest uid=0 euid=0 tty= ruser= rhost=
2021-05-20T13:21:20-05:00 <error>charon: pam_krb5(s2s-vpn:auth): (user mickncTest) parse_name failed: Configuration file does not specify default realm
2021-05-20T13:21:20-05:00 <alert>charon: pam_ldap: missing file /etc/ldap.conf
2021-05-20T13:21:20-05:00 <error>charon: pam_radius_auth: Could not open configuration file /etc/raddb/server: No such file or directory
2021-05-20T13:21:20-05:00 <error>charon: PAM _pam_init_handlers: no default config /etc/pam.d/other
2021-05-20T13:15:01-05:00 <notice>charon: pam_krb5(s2s-vpn:auth): authentication failure; logname=mickncTest uid=0 euid=0 tty= ruser= rhost=
2021-05-20T13:15:01-05:00 <error>charon: pam_krb5(s2s-vpn:auth): (user mickncTest) parse_name failed: Configuration file does not specify default realm
2021-05-20T13:15:01-05:00 <alert>charon: pam_ldap: missing file /etc/ldap.conf
2021-05-20T13:15:01-05:00 <error>charon: pam_radius_auth: Could not open configuration file /etc/raddb/server: No such file or directory
2021-05-20T13:15:01-05:00 <error>charon: PAM _pam_init_handlers: no default config /etc/pam.d/other
2021-05-20T13:12:40-05:00 <notice>charon: pam_krb5(s2s-vpn:auth): authentication failure; logname=mickncTest uid=0 euid=0 tty= ruser= rhost=
2021-05-20T13:12:40-05:00 <error>charon: pam_krb5(s2s-vpn:auth): (user mickncTest) parse_name failed: Configuration file does not specify default realm
2021-05-20T13:12:40-05:00 <alert>charon: pam_ldap: missing file /etc/ldap.conf
2021-05-20T13:12:40-05:00 <error>charon: pam_radius_auth: Could not open configuration file /etc/raddb/server: No such file or directory
2021-05-20T13:12:40-05:00 <error>charon: PAM _pam_init_handlers: no default config /etc/pam.d/other
2021-05-20T13:11:00-05:00 <notice>charon: pam_krb5(s2s-vpn:auth): authentication failure; logname=mickncTest uid=0 euid=0 tty= ruser= rhost=
2021-05-20T13:11:00-05:00 <error>charon: pam_krb5(s2s-vpn:auth): (user mickncTest) parse_name failed: Configuration file does not specify default realm
2021-05-20T13:11:00-05:00 <alert>charon: pam_ldap: missing file /etc/ldap.conf
2021-05-20T13:11:00-05:00 <error>charon: pam_radius_auth: Could not open configuration file /etc/raddb/server: No such file or directory
2021-05-20T13:11:00-05:00 <error>charon: PAM _pam_init_handlers: no default config /etc/pam.d/other
2021-05-20T13:04:51-05:00 <notice>charon: pam_krb5(s2s-vpn:auth): authentication failure; logname=mickncTest uid=0 euid=0 tty= ruser= rhost=
2021-05-20T13:04:51-05:00 <error>charon: pam_krb5(s2s-vpn:auth): (user mickncTest) parse_name failed: Configuration file does not specify default realm
2021-05-20T13:04:51-05:00 <alert>charon: pam_ldap: missing file /etc/ldap.conf
2021-05-20T13:04:51-05:00 <error>charon: pam_radius_auth: Could not open configuration file /etc/raddb/server: No such file or directory
2021-05-20T13:04:51-05:00 <error>charon: PAM _pam_init_handlers: no default config /etc/pam.d/other
2021-05-20T13:00:10-05:00 <notice>charon: pam_krb5(s2s-vpn:auth): authentication failure; logname=micknc453 uid=0 euid=0 tty= ruser= rhost=
2021-05-20T13:00:10-05:00 <error>charon: pam_krb5(s2s-vpn:auth): (user micknc453) parse_name failed: Configuration file does not specify default realm
2021-05-20T13:00:10-05:00 <alert>charon: pam_ldap: missing file /etc/ldap.conf
2021-05-20T13:00:10-05:00 <error>charon: pam_radius_auth: Could not open configuration file /etc/raddb/server: No such file or directory
2021-05-20T13:00:10-05:00 <error>charon: PAM _pam_init_handlers: no default config /etc/pam.d/other
2021-05-20T12:59:56-05:00 <notice>charon: pam_krb5(s2s-vpn:auth): authentication failure; logname=micknc453 uid=0 euid=0 tty= ruser= rhost=
2021-05-20T12:59:56-05:00 <error>charon: pam_krb5(s2s-vpn:auth): (user micknc453) parse_name failed: Configuration file does not specify default realm
2021-05-20T12:59:56-05:00 <alert>charon: pam_ldap: missing file /etc/ldap.conf
2021-05-20T12:59:56-05:00 <error>charon: pam_radius_auth: Could not open configuration file /etc/raddb/server: No such file or directory
2021-05-20T12:59:56-05:00 <error>charon: PAM _pam_init_handlers: no default config /etc/pam.d/other
2021-05-20T12:40:12-05:00 <notice>charon: pam_krb5(s2s-vpn:auth): authentication failure; logname=p_Linville uid=0 euid=0 tty= ruser= rhost=
2021-05-20T12:40:12-05:00 <error>charon: pam_krb5(s2s-vpn:auth): (user p_Linville) parse_name failed: Configuration file does not specify default realm
2021-05-20T12:40:12-05:00 <alert>charon: pam_ldap: missing file /etc/ldap.conf
2021-05-20T12:40:12-05:00 <error>charon: pam_radius_auth: Could not open configuration file /etc/raddb/server: No such file or directory
2021-05-20T12:40:12-05:00 <error>charon: PAM _pam_init_handlers: no default config /etc/pam.d/other
2021-05-20T10:28:28-05:00 <notice>charon: pam_krb5(s2s-vpn:auth): authentication failure; logname=micknc453 uid=0 euid=0 tty= ruser= rhost=
2021-05-20T10:28:28-05:00 <error>charon: pam_krb5(s2s-vpn:auth): (user micknc453) parse_name failed: Configuration file does not specify default realm
2021-05-20T10:28:28-05:00 <alert>charon: pam_ldap: missing file /etc/ldap.conf
2021-05-20T10:28:28-05:00 <error>charon: pam_radius_auth: Could not open configuration file /etc/raddb/server: No such file or directory
2021-05-20T10:28:28-05:00 <error>charon: PAM _pam_init_handlers: no default config /etc/pam.d/other

1 person had this problem
Labels:
0 Helpful
4 Replies 4

PaulG-SATX
Level 1
Level 1

‎05-24-2022 09:17 PM

I spent a few hours troubleshooting this today.. RV160W with clients connecting using OPENVPN from Windows 10..

Symptoms: Client connects, authenticates and receives IP, connection is active, can ping remote devices, and even open shares or remote desktop, after 30 seconds the client stops receiving data... 30 seconds later the client drops and reconnects.. auth succeeds again.. and everything just repeats..

Troubleshooting Steps I've Taken
I tried connecting from Windows, Android, Via Wifi, Cell, and Hardwired. Ran firmware updates on the router, updates on the OpenConnect software, also rebooted the router soft/hard and the modem hard power. Opened a ping remotely once connected, and then viewed it after reconnecting (after the connection failed) and the remote side never lost internet connectivity.. So its definitely something within the router causing the issue. Ive eliminated it being the client hardware/software or internet connection, and eliminated the remote internet connection being the issue..

At this point I enabled logging, and now Im seeing a few errors and warnings.. Next step is to go to the remote site and factory reset the device, reconfigure it, and see if that fixes the issue, which is a PITA because I will have to reattach the certs ect.. Not sure what else to try at this point..

Heres the Errors Im seeing..

2022-May-24, 21:56:29 CSTnoticeuseropenvpn: pam_krb5(openvpn:auth): authentication failure; logname=xxxxxxx uid=0 euid=0 tty= ruser= rhost=
2022-May-24, 21:56:29 CSTerroruseropenvpn: pam_krb5(openvpn:auth): (user xxxxxxx) parse_name failed: Configuration file does not specify default realm
2022-May-24, 21:56:29 CSTalertuseropenvpn: pam_ldap: missing file /etc/ldap.conf
2022-May-24, 21:56:29 CSTerroruseropenvpn: pam_radius_auth: Could not open configuration file /etc/raddb/server: No such file or directory
2022-May-24, 21:56:29 CSTerroropen-vpnopenvpn: PAM _pam_init_handlers: no default config /etc/pam.d/other



0 Helpful

PaulG-SATX
Level 1
Level 1
In response to PaulG-SATX

‎05-26-2022 06:17 AM

After a few hours troubleshooting I bypassed the VPN and just opened direct Remote Desktop so I could get some software installed.. I installed the software and then disabled the port forward.. just about this time a storm came thru and knocked out power in several places across the city.. When the power came back on at my location, I went to VPN back in, and the VPN was now working properly.. I have to assume all the equipment on the remote side probably rebooted, machines were powered off.. so I have no idea now what was causing the problem.. just that its working normally again. Doubt adding and removing the port forward fixed it.. its possible. but again, no way to know.

0 Helpful

PaulG-SATX
Level 1
Level 1
In response to PaulG-SATX

‎06-03-2022 04:08 AM

Well its been a few days, and the problem is back.. disconnects and times out after 15-30 seconds again.. reconnects and works another 30 seconds.. super annoying.. not sure what is causing this issue..

0 Helpful

nbutlev
Cisco Employee
Cisco Employee

‎07-22-2022 01:04 PM

Hi there,

 

Can you try with unortodox  solution:

 

configure Static NAT

 

Regards,

0 Helpful
Customers Also Viewed These Support Documents