VPN again...

Similar Questions

• Migrate from tunnel vpn again ASA

  Hello

  Is it possible to migrate an existing sites (vpn) to a new ASA.

  We have more than 50 offices connected to our main office, we have installed a new Firewall ASA with a bigger pipe.

  I need a way to migrate the offices which saves time (go through each office) and silver (buying a new router and send it with the new configuration).

  I thought to add a new address of peers and kill the pre-shared on the old VPN.

  can someone help me please.

  Yes.

  I would like to do the following if I was responsible for this project.

  1. Configure the new ASA with all groups of tunnel for remote counterparts and the rest of the VPN configuration (cards crypto, ACLs, NAT, etc..)
  2. Connect on the ASAs remote through the external interface.  Most organizations allow SSH/https to their specific management firewall IPs to the main site.
     1. Create a tunnel-group for the period of INVESTIGATION by the ASA peers again.
     2. Change the existing crypto map peer IP to point to the new IP address.
  3. On your core network on the main site routing, change/add an IP route to local subnets pointing inside the site remote interface of the new ASA for your local network to reach remote sites correctly.

  This should be it.  Thank you.

• Windows 7 - VPN Error 711, 609 and error in the article «Phone and Modem»

  Hello

  I have the problem with my VPN from last auto Win update MAJOR - 16/10/2014

  My VPN worked fine until this update. Since then, I have a lot of different errors when I try to connect to this VPN again (from another PC with the same credentials is fine).

  When I now try to connecto to VPN I have Error 711 first and later of 609. I tried a lot of repairs, and none worked.

  VPN settings:
  http://i.imgur.com/cmADOeZ.PNG
  http://i.imgur.com/BaQiFtf.PNG
  http://i.imgur.com/kDL2xz1.PNG

  Services:

  • Plug-and-play - Works Fine - Set as automatic and the Service started successfully
  • Remote procedure call - Works Fine - set as automatic and Service started successfully
  • DCOM Server process Launcher - Works Fine - AutoPlay and the Service started successfully
  • Fax - Fax on the local computer and stop service. Some services stop automatically if they are not in use by other services or programs.
  • Remote access auto connection manager - Windows could not start the remote access auto connection service manager on the local computer. Error 0 x 80000048: 0 x 80000048
  • Remote access connection manager - automatic game and the Service started successfully
  • ICS - Internet connection sharing service on the local computer on the road and stop. Some services stop automatically if they are not in use by other services or programs.
  • Routing and remote access - auto play and the Service started successfully
  • Telephony - Works Fine - set as automatic and Service started successfully

  When I try to open "Phone and Modem" in the control panel:
  http://i.imgur.com/DIPZCRe.PNG
  "Phone and modem control panel can not be opened. You can have a problem starting telephony service.

  I tried:
  (1) Win Recovery - did not work

  (2) cmd sfc/scannow - did not work

  (3) uninstall and reinstall manualy miniports did not work
  Netcfg u MS_L2TP
  Netcfg u MS_PPTP
  Netcfg-l %windir%\inf\netrast.inf c - p-i MS_PPTP
  Netcfg-l %windir%\inf\netrast.inf c - p-i MS_L2TP
  http://i.imgur.com/VYHqQwn.PNG

  (4) Windows Network Diagnostics - Troubleshooting couldn't identify the problem - did not work

  (5) order the firewall and Antivirus protection - failed

  Can anyone please help me and fast? This was done by Win update and it made me a lot of trouble. I really need functional VPN to my client and I can't do it right now.

  THX and best regards,
  Matej Skarka

  -last edited on 20/10

  Hello

  I will recommend you to post this thread in Windows 7 IT Pro TechNet forums networking. This is the best forum for network problems.

  Please follow the link below to post this thread.

  https://social.technet.Microsoft.com/forums/Windows/en-us/home?Forum=w7itpronetworking

  Thank you.

• VPN client, lost connection

  Hello

  I pix506e here... and vpn clients connected.

  But suddenly lost connection vpn client 40 minutes and then try to reconnect again but fail. If the vpn client restarts their pc/notebook...yes it can connected to vpn again... but the interruption of the connection again... then restart... and so on... What is the cause of this problem?

  Thanks for the help

  Tonny

  All remote VPN clients are having the same problem or is it limited to just a few. If the problem is seen with only a few, it is quiet possible that the problem is not with the PIX of the customer. In addition, the DPO is enabled or not. DPD will cause tips to know an IPSec connection over, where the SAs flusing, allowing new being negotiate quickly.

• Help, please! Connected to the VPN, but cannot access internal servers.

  Hi friends,

  I'm a newbie on vpn stuff, I set up a base on a Cisco ASA 5505 vpn by using ASDM, and I was able to connect to it.  However, I can't ssh or RDP to one of the servers in the House after that I connected to the vpn.  Here is the configuration.  Help, please!

  ASA Version 8.2 (5)

  !

  hostname sc - asa

  domain abc.com

  enable the encrypted password xxxxxxxxx

  xxxxxxxxx encrypted passwd

  names of

  !

  interface Ethernet0/0

  switchport access vlan 2

  !

  interface Ethernet0/1

  !

  interface Ethernet0/2

  !

  interface Ethernet0/3

  !

  interface Ethernet0/4

  !

  interface Ethernet0/5

  !

  interface Ethernet0/6

  !

  interface Ethernet0/7

  !

  interface Vlan1

  nameif inside

  security-level 100

  IP 192.168.1.1 255.255.255.0

  !

  interface Vlan2

  nameif outside

  security-level 0

  IP address dhcp setroute

  !

  passive FTP mode

  DNS server-group DefaultDNS

  domain OpenDNS.com

  sc-pool_splitTunnelAcl-list of allowed access standard 192.168.1.0 255.255.255.0

  inside_nat0_outbound to access ip 192.168.1.0 scope list allow 255.255.255.0 192.168.1.96 255.255.255.240

  pager lines 24

  Enable logging

  asdm of logging of information

  Within 1500 MTU

  Outside 1500 MTU

  IP local pool sc-192.168.1.100 - 192.168.1.110 mask 255.255.255.0

  ICMP unreachable rate-limit 1 burst-size 1

  don't allow no asdm history

  ARP timeout 14400

  Global 1 interface (outside)

  NAT (inside) 0-list of access inside_nat0_outbound

  NAT (inside) 1 0.0.0.0 0.0.0.0

  Timeout xlate 03:00

  Timeout conn 01:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02

  Sunrpc timeout 0:10:00 h323 0:05:00 h225 mgcp from 01:00 0:05:00 mgcp-pat 0:05:00

  Sip timeout 0:30:00 sip_media 0:02:00 prompt Protocol sip-0: 03:00 sip - disconnect 0:02:00

  Timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute

  timeout tcp-proxy-reassembly 0:01:00

  Floating conn timeout 0:00:00

  dynamic-access-policy-registration DfltAccessPolicy

  Enable http server

  http 192.168.1.0 255.255.255.0 inside

  No snmp server location

  No snmp Server contact

  Server enable SNMP traps snmp authentication linkup, linkdown cold start

  Crypto ipsec transform-set esp-SHA-ESP-3DES-3des esp-sha-hmac

  Crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac

  Crypto ipsec transform-set ESP-DES-SHA esp - esp-sha-hmac

  Crypto ipsec transform-set ESP-DES-MD5 esp - esp-md5-hmac

  Crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac

  Crypto ipsec transform-set ESP-3DES-MD5-esp-3des esp-md5-hmac

  Crypto ipsec transform-set ESP-AES-256-SHA 256 - aes - esp esp-sha-hmac

  Crypto ipsec transform-set ESP-AES-128-SHA aes - esp esp-sha-hmac

  Crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac

  Crypto ipsec transform-set ESP-AES-128-MD5-esp - aes esp-md5-hmac

  life crypto ipsec security association seconds 28800

  Crypto ipsec kilobytes of life - safety 4608000 association

  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 pfs Group1 set

  Crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 value transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA MD5-ESP-3DES ESP-DES-SHA ESP-DES-MD5

  outside_map card crypto 65535-isakmp dynamic ipsec SYSTEM_DEFAULT_CRYPTO_MAP

  outside_map interface card crypto outside

  crypto ISAKMP allow outside

  crypto ISAKMP policy 10

  preshared authentication

  3des encryption

  sha hash

  Group 2

  life 86400

  Telnet timeout 5

  SSH timeout 5

  Console timeout 0

  interface ID client DHCP-client to the outside

  dhcpd outside auto_config

  !

  dhcpd address 192.168.1.5 - 192.168.1.36 inside

  dhcpd dns 208.67.222.222 208.67.220.220 interface inside

  rental contract interface 86400 dhcpd inside

  dhcpd abc.com domain inside interface

  dhcpd allow inside

  !

  a basic threat threat detection

  Statistics-list of access threat detection

  no statistical threat detection tcp-interception

  SSL encryption rc4 - md5, rc4-aes128-sha1 aes256-3des-sha1 sha1 sha1

  WebVPN

  abc group policy - sc internal

  attributes of the strategy of group abc - sc

  value of server DNS 208.67.222.222 192.168.1.3

  Protocol-tunnel-VPN IPSec

  Split-tunnel-policy tunnelspecified

  Split-tunnel-network-list value abc-sc_splitTunnelAcl

  field default value abc.com

  a001 xxxxxxxxxxx encrypted password username

  a002 xxxxxxxxxxx encrypted password username

  username a003 encrypted password privilege 0 xxxxxxxxxxx

  a003 username attributes

  Strategy Group-VPN-abc-sc

  a004 xxxxxxxxxxx encrypted password privilege 0 username

  a004 username attributes

  Strategy Group-VPN-abc-sc

  a005 xxxxxxxxxxx encrypted password username

  a006 xxxxxxxxxxx encrypted password username

  username privilege 15 encrypted password xxxxxxxxxxx a007

  remote access to tunnel-group abc - sc type

  attributes global-tunnel-group-abc - sc

  address sc-pool pool

  Group Policy - by default-abc-sc

  tunnel-group abc - sc ipsec-attributes

  pre-shared key *.

  !

  class-map inspection_default

  match default-inspection-traffic

  !

  !

  type of policy-card inspect dns preset_dns_map

  parameters

  maximum message length automatic of customer

  message-length maximum 512

  Policy-map global_policy

  class inspection_default

  inspect the preset_dns_map dns

  inspect the ftp

  inspect h323 h225

  inspect the h323 ras

  inspect the rsh

  inspect the rtsp

  inspect esmtp

  inspect sqlnet

  inspect the skinny

  inspect sunrpc

  inspect xdmcp

  inspect the sip

  inspect the netbios

  inspect the tftp

  Review the ip options

  !

  global service-policy global_policy

  context of prompt hostname

  no remote anonymous reporting call

  Cryptochecksum:e7df4fa4b60a252d806ca5222d48883b

  : end

  Hello

  I would suggest you start by changing the pool VPN to something else than the current LAN network and see if that helps

  These should be the configuration required to achieve this goal

  • First remove us pool setup VPN VPN
  • Then we delete the VPN Pool and create again with an another address space
  • When then attach this new Pool of VPN again to the VPN configuration
  • In the last step, we add a NAT0 / exempt for this new pool VPN NAT configuration and remove the old ACL line for the former group of VPN

  attributes global-tunnel-group-abc - sc

  no address-sc-swimming pool

  no ip local pool sc 192.168.1.100 - 192.168.1.110 mask 255.255.255.0

  IP local pool sc-192.168.100.100 - 192.168.100.110 mask 255.255.255.0

  attributes global-tunnel-group-abc - sc

  address sc-pool pool

  inside_nat0_outbound to access ip 192.168.1.0 scope list allow 255.255.255.0 192.168.100.0 255.255.255.0

  No inside_nat0_outbound access ip 192.168.1.0 scope list allow 255.255.255.0 192.168.1.96 255.255.255.240

  -Jouni

• user database handle is corrupt

  the system is 7 pro and it runs a program that needs to vpn to another computer, other automatic windows 10 updated and we used the do not install key. at this time, we tried to up the vpn again and it gives us an error message "user database handle is damaged" and there we do not allow to go further.

  Hello

  I realize counts the inconvenience you encounter in obtaining VPN. I suggest you to report your query in our TechNet forums as it better this problem.

  Please visit the below mentioned link to validate your request:

  https://social.technet.Microsoft.com/forums/en-us/home?category=windows10itpro

  Hope this information helps.

  Please get back to us with an update on the issue, we will be happy to help you.

• If I config ISAKMP (phase 1) duration shorter than the life expectancy of IPsec (phase 2). What's going to happen.

  Since I couldn't find any document from Cisco (Cisco produces only that, the longer life ISAKMP, safer) of the directive.

  I was wondering if I config life ISAKMP (phase 1) shorter than the life expectancy of IPsec (phase 2). What happens when I still have the traffic through the VPN, the ISAKMP his timeout reachs tunnel. Phase 2 would also got laid off, and turn all the negotiation of Phase 1 VPN again?

  Any help will be appreciated.

  -Angela

  Angela:

  We probably need to consider the context of your use of the term "session".

  If you had to define an ACL crypto that consisted of a single access control entry (example: 192.168.1.0 ip allow 0.0.0.255 192.168.2.0 0.0.0.255), which would be generally * lead to the creation of an ISAKMP security association unique and two IPSec security associations. Lets call it a "session encryption.

  As you said, the implementation of the session "encryption" was triggered by a "session" (for example: TCP) between two hosts (each behind their respective ends of the tunnel). Additional meetings (for example: TCP) between different hosts on two sites, do not need other IPSec security associations. Security associations previously established IPSec supports all traffic defined by the ACE in the ACL crypto.

  For each extra ACE in your ACL crypto, you would see the creation of a pair of IPSec security associations (assuming traffic defined by the ACE triggers it) extra.

  If you need to set the layer 4 criteria (e.g.: TCP port 80) in an ACL crypto, that would be horrible. IPSec security associations are negotiated for each combination of source/target port used by a host. For example: A single host visiting a single web site (by the crypto tunnel), would open in general multiple TCP sessions (each with a different source port), and IPSec security associations are negotiated for each TCP session. This would quickly deplete resources on the cryptographic endpoints.

  We generally use P2P GRE or love with IPSec to swap info dynamic routing between sites. Because the traffic between sites is encapsulated in GRE, only a single proxy is needed.

  edg01 #show crypto ipsec his

  Interface: Tunnel0
  Tag crypto map: addr Tunnel0-head-0, local

  protégé of the vrf: (none)
  local ident (addr, mask, prot, port): (/ 255.255.255.255/47/0)
  Remote ident (addr, mask, prot, port): (/ 255.255.255.255/47/0)

  In this case, a single proxy is used. IP addresses are external physical IP addresses of crypto tunnel endpoints. Mode of transportation (where the 255.255.255.255 masks). The '47' is the GRE protocol.

  * Note: Sometimes, each cryptographic peer begins negotiations with the other, causing two bidirectional redundant ISAKMP SAs.

  Best regards

  Mike

• AnyConnect iPad/iPhone - cannot verify the identity of...

  Hello

  When I connect to the VPN from iPad/iPhone using certificates, I always get the message:

  No reliable VPN server! AnyConnect is unable to verify the identity of XXXX. Do you want to continue?

  After the confirmation message, I am connected, but the server certificate is not stored to the certification AnyConnect store and message always appears when I connect to the VPN again. I would like to get rid of this message.

  More information:

  I had the installed Cisco AnyConnect Secure Mobility Client 3.0.0.9231 on iPad/iPhone version and activated authentication via certificates. I got the certificate installed on the client side and also on SAA and configured with authentication metod certificate profile. I installed the CA certificate that issued the certificate of the ASA in my iPad/iPhone.

  Any advice?

  Thank you

  Marek.

  Hi Marek,

  I understand your question. Unfortunately at this point it is not possible, as the ASA does not support this feature. A software bug was opened to solve, but it is not ETA for the fix.

  Here is the info of DDT.

  CSCso70867 ASA does not support SAN attributes for the application

  Symptom:

  ASA currently does not support SAN (subject alternative name) for the application.

  Conditions:

  Workaround solution:

  The solution would be to use OpenSSL to generate the CSR and the keys. Once received the certificate of the certification authority, it must be combined with the key in OpenSSL to create the pkcs12 file. Once the file is created, it must be imported in ASA.

  I hope that I have answered your question. Please don't forget to rate the answer if it helped you solve your problem.

  Kind regards

  Itzcoatl

• VPN Wizard using said 'try again' after entering credentials.

  Hello

  I think that my network settings or the registry is corrupted. I used to connect to my VPN fine work. Then, I got a nasty that virus sneaked in by e-mail and had to use malwarebytes etc. to clear it took off.
  My work internet connection very well but the VPN disappeared. Now, if I try and set up in network and sharing Center (win 7 64 bit) I get the wizard, no probs. I can then right up to the bit where I get the ip address of the VPN. After clicking on ok immediately it says Try Again. As in less than a second, as if not even tried to connect. So I click try again, and he stays right on the next attempt to connect screen for centuries and never does anything else.
  I tried sfc/scannow or anything like it either can't quite remember to try to repair the files but no luck.
  Any ideas on how to fix this or maybe fix it?
  Thank you

  Hi Varkanoid,

  The question you posted would be better suited in the TechNet Forums.

  I would recommend posting your query in the link below.

  Windows 7 networking:

  http://social.technet.Microsoft.com/forums/en-us/w7itpronetworking/threads

  I hope that the information above helps you.

• VPN works with Sierra?

  I understand that the VPN does not yet, with the Sierra

  Is this a Bug? or, if this possibility has been deleted?

  Can we expect support once again with one of the 10.12. # updates?

  This is a very important feature to my office with it, we will not update for Sierra.

  Thank you

  VPNS work very well in Sierra as long as they don't use PPTP. Support for PPTP has been removed because it is not safe. By using a PPTP based VPN is useless. Your data is not safe.

• Settings lost VPN - iOS 10.0.2

  I had stored in my iPad VPN settings. VPN connections worked well until the latest iOS update. Now ALL my VPN connections disappeared. To make it even worse-, I am unable to put once again, because there are new mandatory fields: VPN type and shared key. I don't have the slightest idea how to fill them because I never need them when connecting to the VPN through my iMac - please see the screenshot.

  It drives me crazy. I welcome any suggestion.

  Prepare for removal of PPTP VPN before upgrade you to iOS 10 and macOS Sierra

  Preparation for iOS system administrators 10 and macOS Sierra should stop using PPTP VPN connections. Learn about alternatives, you can use to protect your data.

  If you have configured a PPTP VPN server, 10 iOS and macOS users Sierra will not be able to connect to it. iOS 10 and macOS Sierra will remove any profile VPN PPTP connections when a user upgrades from their device.

  Even if the PPTP protocol is always available on iOS 9 or an earlier version or OS X El Capitan and earlier, we do not recommend that you use it for secure, private communication.

  Alternatives for PPTP VPN connections

  Try one of these other VPN protocols for authentication by user that are safer:

  • L2TP/IPSec
  • IKEv2/IPSec
  • Cisco IPSec
  • VPN SSL clients on the App Store, such as those of AirWatch, Aruba, Check Point, Cisco, F5 Networks, MobileIron, NetMotion, Open VPN, Palo Alto Networks, Pulse Secure and SonicWall

• Not ios10 blocking VPN PPTP connections through personal hotspot?

  I use an iPhone 6 + and was upgraded to ios10, two days ago.

  While I don't have a configuration of the VPN connection on the phone, I connect my computer laptop personal hotspot of the iPhone to use internet and sometimes connect to a VPN.

  Before my upgrade to ios10, my laptop could still connect to the VPN while connected to the hotspot from my iPhone.

  After that I updated to ios10, my laptop does not connect to the VPN I connect to.

  I see reports that Apple has abandoned the use of the connection for PPTP VPN connections on ios10.

  But most of the people having problems seem to be people who connect to their phones directly to the VPN in the iPhone settings.

  In my case, my phone is just acting under the guidance of the internet on my laptop but it seems that it does not obstruct my laptop to connect to a pptp even connection if that should have no impact on the phone itself.

  I went down to ios9 and my laptop can connect again to the VPN.

  But now my Apple Watch does not work with my phone because I improved the watch to os3.

  Any ideas if there is a work around for the connection for pptp connections using the hotspon on ios10?

  Apple mentions alternative - Prepare for the removal of PPTP VPN before you upgraded to iOS 10 and macOS Sierra - Apple Support

• I use a VPN in AirPort Express. I've updated firmware for 7.7.7 and DNS assigned by my VPN does not work anymore. Upon entry, the icon 'internet' in utility Airpot turns brown, and the internet stops completely. Anyone have any idea?

  Why my internet connection dies? I use a VPN to my internet at home. I put the DNS numbers supplied by the company VPN in my airPort extreme, which, in turn, provides wireless for home. It worked perfectly until I updated to firmware 7.7.7. Suddenly the green light next to the 'internet' in airport Utility icon went Brown, and it is therefore most all internet. I put numbers in DNS to my ISP, and internet provider is displayed again. All the other numbers in DNS, whether it's Google, OpenDNS or VPN to stop the dead from the internet. Anyone has an idea about this?

  Airport base stations, are at best, a VPN-well past that device. It is a server or a VPN client. Upgrade to the latest firmware does not change this fact.

  To create a VPN tunnel using the AirPort Express Terminal, your computer must be running a VPN client that connects to a VPN server somewhere on the Internet. What DNS servers you use should make no difference with VPN.

  If the ISP-supplied DNS servers do not work, I would say that you contact your ISP to find out why they don't allow you to use them.

  What we need to study is more why you lose Internet connectivity when changing the DNS servers of your ISP. Please check with them and to report back, then we can try to help.

• VPN connection: An unexpected error has occurred.

  I am suddenly unable to get my built-in VPN connection works on my iMac with OS X 10.11.5.  I get the VPN connection message: an unexpected error has occurred.  I have been using this VPN configuration to connect to work for several months with success.

  But last week (and I do not know if it had nothing to do with it), I went on vacation and used a free wi - fi setup of Tim Hortons.  I had a LOT of trouble getting the next login page, and I checked all playing with different settings of network without success.  When a change did not work, I put it to its original setting.  Finally, I learned to use Safari to access the free WiFi connection page of Tim.  Then once connected, everything was OK.

  But when I returned a week later and if necessary, to start my VPN connection to access the work, it wouldn't start.  I checked and recheck all my settings preferably of different network, but did not find those who were wrong.  I even deleted and re-entered my VPN service definition without solving the problem.

  Thinking that the problem could be the newly installed ISP of Bell equipment (we went from Rogers while I was away), I used my BlackBerry smartphone (issued by my employer) to create a wi - fi hotspot and accessed to the internet using this connection which completely ignored my home ISP equipment.  But still, I was unable to establish a VPN connection.

  I then tried my iPad VPN connection, and it worked!  Then, I defined a VPN service on the iMac to my wife and the iMac to my daughter and was able to successfully establish a VPN connection to my work very well, using exactly the same VPN configuration.  This led me to the conclusion, it was a problem on my iMac (and not with my new ISP or VPN system of my work that had none of the changes you made), but I still can't find what is "broken".  I run Onyx for my iMac OS X 10.11.5 and repaired permissions and clean the cache and all the rest she is doing to "solve" problems.  But the problem persisted.

  Is there a preference file corrupted somewhere (scan option is no longer on the current version of the Onyx for a reason any)?

  I still have a network setting wrong somewhere I need to go back to the system is correct value?

  Here is the attempt to VPN from the file system.log (with some hidden values in the case where they display my work VPN access):

  26 June at 16:13:48 Myrons-iMac nesessionmanager [439]: NESMLegacySession [VPN works: 295091E5-xxxx-4B6A-xxxx-F7A7xxxxxxAA]: received an order to start SystemUIServer [257]

  26 June at 16:13:48 Myrons-iMac nesessionmanager [439]: NESMLegacySession [VPN works: 295091E5-xxxx-4B6A-xxxx-F7A7xxxxxxAA]: changed to connecting status

  26 June at 16:13:48 Myrons-iMac nesessionmanager [439]: IPSec connection to server nnn.nnn.n.n

  26 June at 16:13:48 Myrons-iMac nesessionmanager [439]: phase 1 of the IPSec from.

  26 June at 16:13:48 Myrons-iMac raccoon [520]: agreed to the takeover of vpn connection.

  26 June at 16:13:48 - last message repeated 1 time-

  26 June at 16:13:48 Myrons-iMac raccoon [520]: IPSec connection to server nnn.nnn.n.n

  26 June at 16:13:48 - last message repeated 1 time-

  26 June at 16:13:48 Myrons-iMac raccoon [520]: connection.

  26 June at 16:13:48 Myrons-iMac raccoon [520]: IPSec Phase 1 started (initiated by me).

  26 June at 16:13:48 - last message repeated 1 time-

  26 June at 16:13:48 Myrons-iMac raccoon [520]: bind 1 (cannot assign requested address)

  26 June at 16:13:48 - last message repeated 1 time-

  26 June at 16:13:48 Myrons-iMac raccoon [520]: sendfromto failed

  26 June at 16:13:48 - last message repeated 1 time-

  26 June at 16:13:48 Myrons-iMac raccoon [520]: Phase 1 negotiation failed due to the error of sending. 94437eb7d5b1b6e8:0000000000000000

  26 June at 16:13:48 - last message repeated 1 time-

  26 June at 16:13:48 Myrons-iMac raccoon [520]: can not send packets

  26 June at 16:13:48 - last message repeated 1 time-

  26 June at 16:13:48 Myrons-iMac raccoon [520]: IKE Packet: send failed. (Initiator, aggressive Mode 1 Message).

  26 June at 16:13:48 Myrons-iMac nesessionmanager [439]: Controller IPSec: IKE FAILED. Phase 1, assert 0

  26 June at 16:13:48 Myrons-iMac nesessionmanager [439]: NESMLegacySession [VPN works: 295091E5-xxxx-4B6A-xxxx-F7A7xxxxxxAA]: status changed by disconnecting

  26 June at 16:13:48 Myrons-iMac nesessionmanager [439]: IPSec disconnection from the server 142.201.5.6

  26 June at 16:13:48 Myrons-iMac raccoon [520]: IPSec disconnection from the server nnn.nnn.n.n

  26 June at 16:13:48 - last message repeated 3 times-

  26 June at 16:13:48 Myrons-iMac nesessionmanager [439]: NESMLegacySession [VPN works: 295091E5-xxxx-4B6A-xxxx-F7A7xxxxxxAA]: status changed to offline, terminus right no

  Any help or insight would be more useful and appreciated... so that I can work from home again.

  Thank you

  Myron VanderLaan

  I finally found my VPN problem.

  There is a 'racoon' file that is generated when I connect to the VPN to my work site.

  I have created a modified version of this file so that my connection does not expire in 3600 seconds (changed in 24 hours).

  Apparently, there are some slightly different settings (such as certain IP addresses other than VPN IP of my work) in this file under our new ISP Bell from the former FAI Rogers.

  And if I connect to the WiFi Hotspot from my BlackBerry, it does not once again because these settings in the file are different again.  I must return the file generated instead of my modified file.

  Bad luck!

• Drive mapping shared with VPN access

  I'm the only person in our company (small) with a Mac and I work remotely. I consulted my company using Network Connect VPN successfully.

  I'm now trying to map the shared drive.

  Under "OK" > "Connect to Server" I entered the address of the server ("smb: / /...") (' etc.) because it has been given to me. When I click on connect I get an error "there was a problem connecting to the server '[server address]'. The server may not exist or it is not available at this time. Check the server name or IP address, check your network connection and then try again. »

  I tried a number of variations of the server address - none worked.

  In the Finder, under the heading "Shared Disks", all I can see is an empty folder "servers".

  When I'm on wifi office internal society, we were able to map the drive. But nothing has worked so far not remotely, remotely.

  Can anyone suggest a solution?

  I solved my problem. I needed to use the IP address of the server, not the full smb: / / URL etc.