I have a SA 520W running firmware version 1.1.65, and a 64-bit Windows 7 machine running the Cisco QuickVPN Client, version 18.104.22.168. The Windows 7 machine is on a separate Internet connection than the SA 520W. Windows Firewall is running with the default configuration. No other software firewalls are in place.
I am unable to establish a VPN connection between the QuickVPN client and the SA 520W. When I try to connect using the QuickVPN program, it fails at the "Connecting..." phase.
I have a single IPSec user defined in the SA under VPN > IPSec > IPSec Users, with the "Remote Peer Type" set to "Cisco QuickVPN". I have no IKE Policies or VPN policies defined, as I understand they aren't necessary for QuickVPN access.
In the SA IPSec VPN logs, there is one line similar to the following for each individual failed connect attempt with the QuickVPN, and nothing else.
2010-10-21 10:54:20: ERROR: Failed to load the configuration
In the QuickVPN program folder, the log.txt shows output similar to the following for each individual failed connect attempt.
2010/10/21 10:36:51 [STATUS]OS Version: Windows 7 2010/10/21 10:36:51 [STATUS]Windows Firewall Domain Profile Settings: ON 2010/10/21 10:36:51 [STATUS]Windows Firewall Private Profile Settings: ON 2010/10/21 10:36:51 [STATUS]Windows Firewall Private Profile Settings: ON 2010/10/21 10:36:51 [STATUS]One network interface detected with IP address 192.168.1.100 2010/10/21 10:36:51 [STATUS]Connecting... 2010/10/21 10:36:51 [DEBUG]Input VPN Server Address = xxxxxxxxx.xxxxxx.org 2010/10/21 10:36:52 [STATUS]Connecting to remote gateway with IP address: xx.xxx.xx.x 2010/10/21 10:36:52 [WARNING]Server's certificate doesn't exist on your local computer. 2010/10/21 10:36:54 [STATUS]Remote gateway was reached by https ... 2010/10/21 10:36:54 [WARNING]Remote gateway wasn't reached... 2010/10/21 10:36:54 [WARNING]Failed to connect. 2010/10/21 10:37:04 [WARNING]Remote gateway wasn't reached... 2010/10/21 10:37:04 [WARNING]Failed to connect. 2010/10/21 10:37:04 [WARNING]Failed to connect!
Yesterday, I was able to successfully connect the two using a temporary test IPSec user, and everything worked as expected. I then deleted the test IPSec user before disconnecting it from the VPN and created a "real" IPSec user. I have been unable to connect to the VPN since then. Judging from this and the "Failed to load the configuration" entries in the SA logs, I am wondering if deleting the test user while it was in-use may have permanently corrupted the SA's IPSec VPN configuration?
Article ID:3091 Reboot and Factory Default Reset on ISA500 Series
Integrated Security Appliances Objective Reboot or restart of the
network device is made when certain changes in the settings need reboot
or if the device is frozen. The configuration setti...
Article ID:3403 WAN Quality of Service (QoS) Policy Profiles Settings on
ISA500 Series Integrated Security Appliances Objective Wide Area Network
(WAN) Quality of Service (QoS) policy profiles manage traffic through
classed-based profiles. These profiles ...
Article ID:2922 Cisco QuickVPN Installation Tips for Windows Operating
Systems For a video showing installation tips on Quick VPN, visit
http://youtu.be/hHu2z6A78N8 Objective Cisco QuickVPN is a free software
designed for remote access to a network. It is...