cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3427
Views
0
Helpful
20
Replies

[RV345] Client-to-site VPN auth error after 1.0.03.24 firmware upgrade

adamwood
Level 1
Level 1

Since receiving an automated firmware upgrade to 1.0.03.24 this week, all client-to-site VPN connection are failing on our RV345. The relevant parts of the logs (more can be provided if needed) appear to be:

info vpn charon: 10[IKE] PAM authentication has received the connection name 'c2s_vpn'
error vpn charon: PAM no modules loaded for `s2s-vpn' service
info vpn charon: 10[IKE] XAuth pam_authenticate for 'vpntest' failed: Permission denied

This occurs both with our Radius authenticated user group as well as a local user setup (per logs) to rule out a Radius issue. The obvious error is regarding a missing module for the 's2s-vpn' service, yet this is a 'c2s-vpn' tunnel. I can't find any reference to this error in search results or community posts, nor anything relevant in the release notes for this release, so any help would be appreciated.

20 Replies 20

Hi,

 

My name is Nikola Butlev and I'm Cisco Engineer.

As Cisco routers have to work on the latest firmware version please upgrade your device to 1.0.03.27 which was recently released.

You can get it from here:

https://software.cisco.com/download/home/286287791/type/282465789/release/1.0.03.27

 

Thank you,

 

Hi,

in my case, after upgraded device to 1.0.03.27, issue persist.

All configuration was present but router doesn't authenticate remote vpn user, also after a complete user account remove/reinsert test.

 

I've done a complete factory reset and reload task (keeping this latest version).

After this I've done all needed reconfig from scratch. Now it works fine....obviously.

 

I hope that, from this version, this is the last time that a similar issue occours on .....

By.

ceoff
Level 1
Level 1

Firmware 1.0.03.24 and 1.0.03.26 both have some sort of bug that breaks VPN for these routers....my sslvpn client to site also breaks with both of these firmware updates. I can't open a case as I do not have a current "service contract"?

Has anyone heard from Cisco engineers for a fix yet...seems they would have figured this out the second time around???

They're working on a beta firmware based on firm 1.0.03.26

It's amazing that the Cisco firmware update that broke the core functionality of the device is still not fixed, almost after a year. Almost inconceivable. Cisco, care to explain why?

 

        https://www.cisco.com/c/en/us/support/web/tsd-cisco-small-business-support-center-contacts.html

 M.



-- ' 'Good body every evening' ' this sentence was once spotted on a logo at the entrance of a Weight Watchers Club !
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: