Re: Cisco VPN / hostap incompatibility?


From: Cyrus Behroozi (behroozi_at_fas.harvard.edu)
Date: 2002-06-16 01:21:49 UTC



On Wed, 2002-06-12 at 16:43, Colin Palmer wrote:
> On 12 Jun 2002, Cyrus Behroozi wrote:
>
> > Negotiating security policies.
> > Securing communication channel.
> > Remote peer terminated connection.
> > Any ideas?
>
> Does it work if you try to connect to the VPN concentrator without using
> the wireless card?
>
> I've seen the same problem with the Linux client and it was actually due
> to the concentrator having a mandantory firewall policy and terminating
> the connection when the Linux VPN client reported it couldn't apply that.
> Creating a new login group on the Cisco that didn't have the firewall
> policy worked. Also, I'm using IPSEC-over-IP tunnel mode right now
> because there's a NAT gateway between my wireless network and the
> internet.
>

Yes, it works if I use my wired ethernet interface instead. If there were a firewall problem, it would also show up with the wired interface, right?

By the way, I tried going back the 2002-04-21 release without any luck.

--Cyrus



This archive was generated by hypermail 2.1.4.