Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
347
Views
0
Helpful
1
Replies

ASA Device IPSEC Clients dont work on Windows 7

pflemming
Level 1
Level 1

‎11-13-2014 12:09 AM - edited ‎02-21-2020 07:55 PM

Hi @ all,

 

i have a question about my ASA Device 5510. We have configured an IPSec VPN. The last Version of the IPSec VPN Client works on Windows XP very good but on Windows 7 and Windows 8 we have great problems.

 

We have on the Client the Winfix and the DNE Update installed. After this both programs we have re-installed the Cisco VPN Client. The connect is successfully but we cant start an remote Access (RDP 3389) to the server.

On an Windows XP Client works this successfully.

This is the logfile from the asa device

 

5|Nov 13 2014 09:00:23|713120: Group = TEST, Username = (xxxxx), IP = 93.212.xxx.yyy, PHASE 2 COMPLETED (msgid=dfdeac22)
6|Nov 13 2014 09:00:23|713905: Group = TEST, Username = (xxxxx), IP = 93.212.xxx.yyy, Starting P2 Rekey timer to expire in 1368 seconds
6|Nov 13 2014 09:00:23|602303: IPSEC: An inbound remote access SA (SPI= 0x5A76F2F6) between 145.xxx.xxx.xxx and 93.212.xxx.yyy (user= (xxxxx)) has been created.
5|Nov 13 2014 09:00:23|713049: Group = TEST, Username = (xxxxx), IP = 93.212.xxx.yyy, Security negotiation complete for User ((xxxxx))  Responder, Inbound SPI = 0x5a76f2f6, Outbound SPI = 0xff58818f
6|Nov 13 2014 09:00:23|602303: IPSEC: An outbound remote access SA (SPI= 0xFF58818F) between 145.xxx.xxx.xxx and 93.212.xxx.yyy (user= (xxxxx)) has been created.
5|Nov 13 2014 09:00:23|713119: Group = TEST, Username = (xxxxx), IP = 93.212.xxx.yyy, PHASE 1 COMPLETED
6|Nov 13 2014 09:00:23|302014: Teardown TCP connection 7329316 for outside:195.30.fff.eee/110 to inside:192.168.uu.ee/50541 duration 0:00:01 bytes 206 TCP FINs
6|Nov 13 2014 09:00:22|302013: Built outbound TCP connection 7329317 for outside:195.30.fff.eee/110 (195.30.fff.eee/110) to inside:192.168.uu.ee/50542 (145.253.xxx.xx/4744)
6|Nov 13 2014 09:00:22|305011: Built dynamic TCP translation from inside:192.168.uu.ee/50542 to outside:145.xxx.xxx.xx/4744
6|Nov 13 2014 09:00:22|713228: Group = TEST, Username = (xxxxx), IP = 93.212.xxx.yyy, Assigned private IP address 192.168.11.999 to remote user
5|Nov 13 2014 09:00:22|713131: Group = TEST, Username = (xxxxx), IP = 93.212.xxx.yyy, Received unknown transaction mode attribute: 20005
5|Nov 13 2014 09:00:22|713131: Group = TEST, Username = (xxxxx), IP = 93.212.xxx.yyy, Received unknown transaction mode attribute: 20004
5|Nov 13 2014 09:00:22|713131: Group = TEST, Username = (xxxxx), IP = 93.212.xxx.yyy, Received unknown transaction mode attribute: 20003
5|Nov 13 2014 09:00:22|713131: Group = TEST, Username = (xxxxx), IP = 93.212.xxx.yyy, Received unknown transaction mode attribute: 20006
5|Nov 13 2014 09:00:22|713131: Group = TEST, Username = (xxxxx), IP = 93.212.xxx.yyy, Received unknown transaction mode attribute: 20002
6|Nov 13 2014 09:00:22|713184: Group = TEST, Username = (xxxxx), IP = 93.212.xxx.yyy, Client Type: WinNT  Client Application Version: 5.0.03.0560
6|Nov 13 2014 09:00:22|305012: Teardown dynamic TCP translation from inside:192.168.uu.ee/50515 to outside:145.xxx.xxx.xx/4717 duration 0:00:30
6|Nov 13 2014 09:00:21|302014: Teardown TCP connection 7329314 for outside:195.30.fff.eee/110 to inside:192.168.uu.ee/50540 duration 0:00:01 bytes 205 TCP FINs
6|Nov 13 2014 09:00:21|302013: Built outbound TCP connection 7329316 for outside:195.30.fff.eee/110 (195.30.fff.eee/110) to inside:192.168.uu.ee/50541 (145.xxx.xxx.xx/4743)
6|Nov 13 2014 09:00:21|305011: Built dynamic TCP translation from inside:192.168.uu.ee/50541 to outside:145.xxx.xxx.xx/4743
6|Nov 13 2014 09:00:21|305012: Teardown dynamic TCP translation from inside:192.168.uu.ee/50514 to outside:145.xxx.xxx.xx/4716 duration 0:00:30
6|Nov 13 2014 09:00:21|113008: AAA transaction status ACCEPT : user = (xxxxx)
6|Nov 13 2014 09:00:21|113009: AAA retrieved default group policy (TEST) for user = (xxxxx)
6|Nov 13 2014 09:00:21|113011: AAA retrieved user specific group policy (TEST) for user = (xxxxx)
6|Nov 13 2014 09:00:21|113003: AAA group policy for user (xxxxx) is being set to TEST
6|Nov 13 2014 09:00:21|113012: AAA user authentication Successful : local database : user = (xxxxx)

 

Do you have any ideas for me?

 

Thanks

 

Peter

Labels:
0 Helpful
1 Reply 1

David Johan Castro Fernandez
Level 3
Level 3

‎11-15-2014 10:25 AM

Hello Peter,

 

I see that phase 1 and phase 2 are being completed with no problems, Could you please do and provide with the following information:

 

- Cisco VPN client is not supported on Windows 8 clients

- Do you have the Firewall enabled on the Windows 7 computers?

- Can you ping the server that you are trying to do the RDP ?

- Could you get the logs of the client?

- Please do this capture after accessing the server

 

  *capture CAP interface inside match tcp host <server_IP> host <VPN_Client_IP_Address>

take the --> show capture CAP

 

Attach all of that information here, 

 

Please don´t forget to rate and mark the helpful Post!

 

David Castro,

 

Regards,

0 Helpful
Customers Also Viewed These Support Documents