Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 305
  • Last Modified:

Antha VPN for PALM OS and Cisco 3005 Concentrator Issue

Greetings,

I am trying to test Antha VPN for Palm OS 5 (Treo 650).  When I try to connect...the client reports the connection failed.  When I check the log on the concentrator...I see that it gets as far as phase 1 complete and then it trying to rekey and immediately after that it disconnects.  Please see the syslog output below.  If there is any other config you would like, please let me know.

May 12 09:25:48 egv3005.egv.fortdearborn.com 30049738 05/12/2006 09:25:47.900 SEV=4 IKE/52 RPT=12303 70.9.22.176  Group [mobiletest] User [kfrankovich] User (kfrankovich) authenticated.
May 12 09:25:48 egv3005.egv.fortdearborn.com 30049739 05/12/2006 09:25:47.900 SEV=9 IKEDBG/0 RPT=11318405 70.9.22.176  Group [mobiletest] User [kfrankovich] constructing blank hash
May 12 09:25:48 egv3005.egv.fortdearborn.com 30049740 05/12/2006 09:25:47.900 SEV=9 IKEDBG/0 RPT=11318406 70.9.22.176  Group [mobiletest] User [kfrankovich] constructing qm hash
May 12 09:25:48 egv3005.egv.fortdearborn.com 30049744 05/12/2006 09:25:47.900 SEV=7 IKEDBG/22 RPT=12246 70.9.22.176  Group [mobiletest] User [kfrankovich] Resume Quick Mode processing, Cert/Trans Exch/RM DSID completed
May 12 09:25:48 egv3005.egv.fortdearborn.com 30049746 05/12/2006 09:25:47.900 SEV=4 IKE/119 RPT=19753 70.9.22.176  Group [mobiletest] User [kfrankovich] PHASE 1 COMPLETED
May 12 09:25:48 egv3005.egv.fortdearborn.com 30049748 05/12/2006 09:25:47.900 SEV=7 IKEDBG/82 RPT=19753 70.9.22.176  Group [mobiletest] User [kfrankovich] Starting phase 1 rekey timer: 450000 (ms)
May 12 09:25:48 egv3005.egv.fortdearborn.com 30049750 05/12/2006 09:25:47.900 SEV=9 IKEDBG/0 RPT=11318407 70.9.22.176  Group [mobiletest] User [kfrankovich] IKE SA AM:cefa80be rcv'd Terminate: state AM_ACTIVE flags 0x00010041, refcnt 1, tuncnt 1
May 12 09:25:48 egv3005.egv.fortdearborn.com 30049753 05/12/2006 09:25:47.900 SEV=6 IKE/1 RPT=13000 70.9.22.176  Group [mobiletest] User [kfrankovich] Removing peer from correlator table failed, no match!
May 12 09:25:48 egv3005.egv.fortdearborn.com 30049755 05/12/2006 09:25:47.900 SEV=9 IKEDBG/0 RPT=11318409 70.9.22.176  Group [mobiletest] User [kfrankovich] IKE SA AM:cefa80be terminating: flags 0x01010001, refcnt 0, tuncnt 0
May 12 09:25:48 egv3005.egv.fortdearborn.com 30049758 05/12/2006 09:25:47.910 SEV=9 IKEDBG/0 RPT=11318411 70.9.22.176  Group [mobiletest] User [kfrankovich] constructing blank hash
May 12 09:25:48 egv3005.egv.fortdearborn.com 30049760 05/12/2006 09:25:47.910 SEV=9 IKEDBG/0 RPT=11318413 70.9.22.176  Group [mobiletest] User [kfrankovich] constructing qm hash

The client config is very simple and I am 99% sure that both my IKE and IPSec settings match.

0
kfrankovich
Asked:
kfrankovich
1 Solution
 
r_naren22atyahooCommented:
Check what encription you are using???

Palm OS supported alogorithms are
SHA1, MD5, DES - CBC, 3DES-CBC

http://www.worldnet21.com/pdf/AnthaVPN_Datashet_040105.pdf

regards
Naren
0
 
kfrankovichAuthor Commented:
Sorry...forgot about this question...the actual solution was to use a different setting for the VPN concentrator type.  Antha VPN has pre-defined settings for certain VPN concentrators and the settings for the Cisco 3000 series VPN concentrators doesn't actually work well for the 3005.  I found by finally getting a response from Antha themselves that I should use the Cisco Unified Client settings instead and that worked.

If you read this post...please note that the answer was forced accepted due to me forgetting about posting this question...the accepted answer IS NOT a solution.  Please see THIS POSTING for the real solution.

Thank you to r_naren22atyahoo for responding initially.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now