--begin ciscomoderator note-- The following post has been edited to remove potentially confidential information. Please refrain from posting confidential information on the site to reduce security risks to your network. -- end ciscomoderator note --
I'm trying to set up VPN Client access for traveling users into our network through a 3660 router running IOS 12.2 (16a). This is the specific image: c3660-jk9o3s-mz.122-16a
I've tried more setups than I care to think of and nothing is working. I get this error every time: "Secure VPN Connection terminated locally by the client. Reason: The remote peer is no longer responding."
I've never setup VPN Client before and about the only thing I can find on the site are a few hundred docs showing how to set up the Client with a RADIUS or TACACS server and VPN Concentrator 3000 series. I haven't found anything useful in the VPN Client setup documentation either (HTML stuff on the site), so I figured I'd turn here.
Anyway here is my current config on the router...if you see anything wrong please let me know.
logging queue-limit 100
logging rate-limit 1000
aaa authentication login userauthen enable
aaa authentication login userauthen local
aaa authorization network userauthor local
enable password 7 xxxxxxxxxxxxxxxxxxxxx
username ** privilege 15 password 7 xxxxxxxxxxx
username ** privilege 0 password 7 xxxxxxxxxxx
no ip source-route
ip icmp rate-limit unreachable 5000
ip domain-list xxxxxxxxxxxxxx.com
ip domain-name xxxxxxxxxxxxxx.com
ip name-server 126.96.36.199
ip name-server 188.8.131.52
ip inspect audit-trail
ip inspect max-incomplete low 300
ip inspect max-incomplete high 400
ip inspect one-minute high 2000
ip inspect one-minute low 1800
ip inspect udp idle-time 600
ip inspect dns-timeout 10
ip inspect tcp idle-time 600
ip inspect name inbound udp alert on timeout 600
ip inspect name inbound realaudio timeout 600
ip inspect name inbound tcp alert on timeout 600
ip inspect name inbound ftp timeout 600
ip inspect name inbound http timeout 600
ip inspect name inbound rcmd timeout 600
ip inspect name inbound rtsp timeout 600
ip inspect name inbound tftp timeout 600
ip inspect name inbound netshow timeout 600
ip inspect name inbound streamworks timeout 600
ip inspect name inbound vdolive timeout 600
ip inspect name inbound cuseeme timeout 600
ip inspect name inbound h323 timeout 600
ip audit notify log
ip audit po max-events 100
ip dhcp-server 184.108.40.206
crypto isakmp policy 1
crypto isakmp policy 2
crypto isakmp key * address xxx.xx.xxx.231
crypto isakmp key * address xxx.xx.xxx.130
crypto isakmp key * address xxx.xx.xxx.76
crypto isakmp key * address xxx.xx.xxx.89
crypto isakmp key * address xxx.xx.xxx.26
crypto isakmp key * address xxx.xx.xxx.24
crypto isakmp key * address xxx.xx.xxx.43
crypto isakmp key * address xxx.xx.xxx.217
crypto isakmp key * address xxx.xx.xxx.109
crypto isakmp key * address xxx.xx.xxx.106
crypto isakmp key * address xxx.xx.xxx.193
crypto isakmp key * address xxx.xx.xxx5.187
crypto isakmp key * address xxx.xx.xxx.4
crypto isakmp client configuration address-pool local testpool
On which platform are you running the VPN client? Some issues like this one have been seen over Windows ME and old Client versions. Please ensure that you are using the latest version of the VPN client. Also check the key and make sure that you are using the right key. This should resolve the issue.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...