A problem with connnection on LINUX platform occured Fedora 8:
vpnclient-linux-x86_64-4.8.00.0490-k9.tar.gz
unpacking tar and installing
./vpn_install
*Below is configuration connection profile:*
[main]
Description=connection profile
Host=xxx.xxx.xxx.xxx < -IP gateway here
AuthType=3
GroupName=
GroupPwd=
enc_GroupPwd=
EnableISPConnect=0
ISPConnectType=0
ISPConnect=
ISPPhonebook=
ISPCommand=
Username=login
SaveUserPassword=0
UserPassword=
enc_UserPassword=
NTDomain=
EnableBackup=0
BackupServer=
EnableMSLogon=1
MSLogonType=0
EnableNat=0
TunnelingMode=0
TcpTunnelingPort=10000
CertStore=1
CertName=Name Surname-cert.p12
CertPath=/etc/opt/cisco-vpnclient/Certificates
CertSubjectName=cn=Name Surname,ou=firmy zewnetrzne,o=Jakas firma SA,l=MiastoX,st=wojewodztwo,c=PL
SendCertChain=0
PeerTimeout=90
EnableLocalLAN=1
*1. starting VPN*
# /etc/init.d/vpnclient_init start
Starting /opt/cisco-vpnclient/bin/vpnclient: Done
*2. connection attempt*
# vpnclient connect connection
Cisco Systems VPN Client Version 4.8.01 (0640)
Copyright (C) 1998-2007 Cisco Systems, Inc. All Rights Reserved.
Client Type(s): Linux
Running on: Linux 2.6.23.1-42.fc8 #1 SMP Tue Oct 30 13:55:12 EDT 2007 i686
Config file directory: /etc/opt/cisco-vpnclient
Enter Certificate password: < certificate password here that I received from VPN administrator
Initializing the VPN connection.
Secure VPN Connection terminated locally by the Client
Reason: The Connection Manager was unable to read the connection entry, or the connection entry has missing or incorrect information.
There are no new notification messages at this time.
3. The same configuration file is working but on Windows platform without any errors, My questions is why does it not work on LINUX ??? I have read in docs. that profiles are moveable between platforms, option specific to Windows are simply ignored in Linux.
Firewall is disconnected FULL ACCEPT
Selinux has permissive mode
Question: Why does it not work in Linux. but it works in Windows.
I am running LINUX Fedora 8.
IPSec, certificates are located in Certificates directory.
Any idea ??