gnicholas
asked on
Using Windows 2000 with Cisco VPN Client
I am having trouble connecting my laptop with Windows 2000 through a Cisco PIX to our VPN server.
Depending on my connection (often, a hotel) it seems to work fine. However, from home I cannot connect.
What is odd is I get the VPN log in and I get the padlock in the corner, showing a successful connection.
My Local Area Connection 3 lights up with the VPN IP address and DNS in the properties. IPCONFIG /ALL confirms it.
When I start Outlook, it prompts for my username and password, just like I'm connected at work. It usually times out once, whan I hit retry it connects (when it's working properly) However, from home, it sits there and continues to time out.
I cannot ping the server, either by name or by IP address. When I look at my active ports program, I notice the UDP ports 137, 138, 139 show my VPN address but no path. Port 4500 is listed, but has 0.0.0.0 for the address.
MY I.T. guy and I were trying to troubleshoot today. His laptop has XP Pro and it connects up like a champ. The only thing I have not tried is to try his laptop at my home connection.
Does this sound like a Win2000 thing, a configuration/firewall problem at home, or is there anything that the VPN server has to be configured for, in order for Win2000 to operate reliably, different than a a client with XP?
It's as if I am connected but cannot resolve anything. Do I just need to bite the bullet and give Bill more $$ for XP?
Thanks in advance!
George Nicholas
Depending on my connection (often, a hotel) it seems to work fine. However, from home I cannot connect.
What is odd is I get the VPN log in and I get the padlock in the corner, showing a successful connection.
My Local Area Connection 3 lights up with the VPN IP address and DNS in the properties. IPCONFIG /ALL confirms it.
When I start Outlook, it prompts for my username and password, just like I'm connected at work. It usually times out once, whan I hit retry it connects (when it's working properly) However, from home, it sits there and continues to time out.
I cannot ping the server, either by name or by IP address. When I look at my active ports program, I notice the UDP ports 137, 138, 139 show my VPN address but no path. Port 4500 is listed, but has 0.0.0.0 for the address.
MY I.T. guy and I were trying to troubleshoot today. His laptop has XP Pro and it connects up like a champ. The only thing I have not tried is to try his laptop at my home connection.
Does this sound like a Win2000 thing, a configuration/firewall problem at home, or is there anything that the VPN server has to be configured for, in order for Win2000 to operate reliably, different than a a client with XP?
It's as if I am connected but cannot resolve anything. Do I just need to bite the bullet and give Bill more $$ for XP?
Thanks in advance!
George Nicholas
ASKER
Rob -
I have a Cisco 675 DSL modem with Qwest, and chances are the needed port(s) are not open. I am saying that up front because I know incoming VNC (server) doesn't work, although I can use Ultra VNC viewer just fine. The Cisco feeds a LinkSys wireless router and I believe the security is set to pass through. I -can- get into the server from home using RDC. Today, as part of our test, we walked outside with our laptops (both Dell Latitude) and got on someone's unsecure wireless connection. The XP computer connected fine, mine did not. This symptom acts like a firewall is enabled, but my 2000 machine does not use any firewalls that I am aware of. We've disabled NAV and tried it again.
Any idea what ports Cisco VPN Client uses? Also, speaking of the client, is there a compatibility problem with version 4.7.00.0533 and Win2K?
gn
I have a Cisco 675 DSL modem with Qwest, and chances are the needed port(s) are not open. I am saying that up front because I know incoming VNC (server) doesn't work, although I can use Ultra VNC viewer just fine. The Cisco feeds a LinkSys wireless router and I believe the security is set to pass through. I -can- get into the server from home using RDC. Today, as part of our test, we walked outside with our laptops (both Dell Latitude) and got on someone's unsecure wireless connection. The XP computer connected fine, mine did not. This symptom acts like a firewall is enabled, but my 2000 machine does not use any firewalls that I am aware of. We've disabled NAV and tried it again.
Any idea what ports Cisco VPN Client uses? Also, speaking of the client, is there a compatibility problem with version 4.7.00.0533 and Win2K?
gn
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Rob - My setup at home is internet=>Cisco 675=>Linksys wireless=>Laptop.
Just for grins, I moved my laptop to the front of the house and logged into my neighbor's wireless connection. I know about theirs because we are good friends and I helped them set it up. They have a cable connection feeding a Linksys wireless. The firewall says it's on, but the VPN passthrough is enabled. Anyway, no workee through theirs, either. I'm beginning to wonder if it's something in my account on the server.
As to the subnets, mine at home is 192.168.1.1XX and the office VPN is 10.10.90.XX.
I'll try disabling the worm blocking.
I'll check on the IPSec.
Thanks Rob, I'll report back.
Best!
George Nicholas
Just for grins, I moved my laptop to the front of the house and logged into my neighbor's wireless connection. I know about theirs because we are good friends and I helped them set it up. They have a cable connection feeding a Linksys wireless. The firewall says it's on, but the VPN passthrough is enabled. Anyway, no workee through theirs, either. I'm beginning to wonder if it's something in my account on the server.
As to the subnets, mine at home is 192.168.1.1XX and the office VPN is 10.10.90.XX.
I'll try disabling the worm blocking.
I'll check on the IPSec.
Thanks Rob, I'll report back.
Best!
George Nicholas
-George if you are good friends with the neighbor, see if you can connect by wire to his router. I have had a few issues from time to time with VPN's and wireless. Though it usually works, it seems like there is a conflict on occasion between the VPN encryption and the wireless encryption. That being said I have never had that problem with the Cisco client, only others.
-As for 2 NAT devices mentioned earlier, I just clued in, the Cisco 675 is a DSL modem not a typical network router, so that should not be an issue.
-Are your Windows patches/update up to date as mentioned earlier?
Let me know how you make out.
Cheers.
-As for 2 NAT devices mentioned earlier, I just clued in, the Cisco 675 is a DSL modem not a typical network router, so that should not be an issue.
-Are your Windows patches/update up to date as mentioned earlier?
Let me know how you make out.
Cheers.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Thanks gnicholas,
--Rob
--Rob
http://support.microsoft.com/kb/818043
One other thought, what make and model router and or modem do you have at home ? If an option, you might want to enable "IPSec pass-through". Also some older routers do not support IPSec VPN traffic, though I would be surprised you would get the "lock" if this were the case.
--Rob