Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
372
Views
0
Helpful
2
Replies

VPN3000 LAN/WAN ACCESS TROUBLE

s.sima
Level 1
Level 1

‎11-02-2007 07:39 PM - edited ‎02-21-2020 01:45 AM

I received a panicky call from a client saying they've "lost" PRIVILEGED access to their VPN3000 from inside LAN and outside WAN HTTPS connections.

connectivity and logon are ok. They can admin the hardware but, I'm told, everything under the ADMINISTRATION tree is being prohibited.

For example, ADMINISTRATION > ACCESS RIGHTS, results in "You do not have sufficient authorization to access the specified page." being displayed.

They had inside-only and were trying for inside and outside both.

I suspect, though am not sure, they added networks n.n.n.n/m.m.m.m to the workstation manager settings screen and something is incorrect and, consequently, they can connect/login BUT CANNOT ACCESS THE ADMIN areas.

Since admin/privileged http/https access appears pooched, I tried ssh and it is similarly not exposing the admin/mgmt commands.

Please ... What is the recovery procedure.

Console access and then from console go into admin/mgmt, or is something more required?

We don't normally do the vpn3000's so this is new territory for us.

All help appreciated (concise steps most helpful owing to our vpn3000-noob status).

Thanks...!

0 Helpful
2 Replies 2

Not applicable

‎11-07-2007 02:25 PM

The common issue with the inability to connect to the serial interface of the concentrator is either the cable being used is wrong or faulty, or the terminal software is not set correctly. Please make sure you are using the cable provided with the concentrator when you first got the box, otherwise you can use a db9 adaptor with a straight through serial cable, and connect that to your

pc's serial port. Set the terminal software for 9600, 8, n, 1, hardware. If you believe you meet the above setup, try using a different pc, and or terminal software like secure CRT.

http://www.cisco.com/univercd/cc/td/doc/product/vpn/vpn3000/3_5/getting/gs2inst.htm#xtocid14

0 Helpful

s.sima
Level 1
Level 1
In response to

‎11-09-2007 06:19 PM

I posted, "...I received a panicky call from a client saying they've "lost" PRIVILEGED access to their VPN3000 from inside LAN and outside WAN HTTPS connections."

REPEAT: "from the inside LAN and the outside WAN."

There's no problem with console access other then remoteness and distance; it's a workstation manager's setting problem, not a db9 cable issue.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card