Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
341
Views
0
Helpful
2
Replies

Help with EasyVPN

mvsheik123
Level 7
Level 7

‎12-26-2007 08:38 AM - edited ‎03-09-2019 07:43 PM

Hi all,

I have created easy VPN with ASA5505 at BO and 3000 concentrator at HQ. Everything works great, but when the BO ASA reboots, it looses the 'Vpnclient enable' command (even after write mem) and adds the below commands:

nat (INSIDE1) 0 _vpnc_nwp_acl

aaa authentication listener http INSIDE1 port www redirect

aaa authentication listener https INSIDE1 port 1443 redirect

Unless I remove all these commands (see below) , Iam unable to enable 'vpnclient enable' command.

****************************************

HOMETEST(config)# vpnclient enable

* Remove "nat (INSIDE1) 0 _vpnc_nwp_acl"

* Remove 'aaa authentication listener' configuration

*****************************************

The ASA5505 has a Base license.

Please advise.

Thank you

MS

Labels:
0 Helpful
2 Replies 2

mvsheik123
Level 7
Level 7

‎12-26-2007 11:18 AM

Hi All,

I just found the reason for "aaa authentication listener' commands. This is bug in the sw. Bug ID: CSCsh75977.

Need to upgrade/dopwngrade software, then have to check on other thing {nat (INSIDE1) 0 _vpnc_nwp_acl }

Thank you

MS

0 Helpful

tonymurphy30
Level 1
Level 1

‎05-01-2008 03:15 AM

It's a known bug in 7.2

http://www.cisco.com/cgi-bin/Support/Bugtool/onebug.pl?bugid=CSCsh75977

I upgraded to v8 and all is well.

Tony

0 Helpful
Customers Also Viewed These Support Documents