Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Unable to connect to VPN via G3

Posted on 2006-06-27
7
Medium Priority
?
418 Views
Last Modified: 2012-05-05
I am trying to connect to our corporate VPN using Cisco VPN Dialer on a laptop with a Vodafone Mobile Connect G3 Card.  The connection works fine when using a normal broadband connection, however when using the G3 connection I can’t connect    

The connection history reads as follows

“initializing connection
Contacting the gateway at (ip address)    (this lasts for about a minute)
Remote Peer is no longer responding”

Does anyone know if we need to have a GPRS Inspection License on the Pix for this to work? or does anyone have any other ideas that the problem might be?

Many thanks for any assistance
0
Comment
Question by:Birdsemple
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 4

Expert Comment

by:johanvz1
ID: 16994730
Hi,

Dont know about your country. But in my country I have to phone my cellular service provider tell them that I want vpn to be opened on that 3g card and you will have to give them your number and details. By default they have VPN blocked on the network side. Contact them and let me know.

Kind Regads,

Johan Van Zyl
0
 
LVL 10

Expert Comment

by:snerkel
ID: 16997051
Check the IP address being assigned to the 3G card when connected to the Internet, you may find it starts 10.x.x.x if it does then check the network you are trying to VPN to, if it too starts 10.x.x.x then that may well be the problem.

Only answer if they do match is to change one of the subnets, esentially this would mean changing the network you are VPNing too.
0
 

Author Comment

by:Birdsemple
ID: 17007537
I will check with Vodafone, however their G3 card does say it supports VPN so I assume this should be opened by default.  

The network I am trying to connect to starts 62.x.x.x I will check to see what IP address the card has but don't think that is the problem.  Checking the logs on the Pix it doesn't even look as though the card is trying to connect, although the internet works fine.  
0
Manage your data center from practically anywhere

The KN8164V features HD resolution of 1920 x 1200, FIPS 140-2 with level 1 security standards and virtual media transmissions at twice the speed. Built for reliability, the KN series provides local console and remote over IP access, ensuring 24/7 availability to all servers.

 

Author Comment

by:Birdsemple
ID: 17008018
Thanks for your suggestions.  As it turns out our Pix Software will need to be updated before we can use the 3G Card to connect to it.
0
 

Author Comment

by:Birdsemple
ID: 17008039
Just in case anyone else has the same problem I thought it might be helpful to post this advice from Cisco/Vodafone


Cisco PIX VPN Configuration Guide

Cisco advises the following PIX configuration for use with data cards.
A couple of points to note:
> Upgrade Client – Client version should be 4.01 (or above)
> Upgrade PIX – PIX version should be 6.3 (or above)
> Use MyLAN APN – Internet APN has some difficulty with the PIX.
Procedure:
STOP All VPN’s going to the server, then add the following settings in order. Finally, restart everything back
up.
NOTE: Downside is the VPN server note being able to allow clients during procedure.
On the PIX config. set the following:
> NO VPDN ENABLE INSIDE
> NO CRYPTO MAP (CRYPTO MAP NAME) INTERFACE OUTSIDE ********
(Do this if you have crypto maps enabled – these commands will disable VPN connections).
> ISAKMP NAT-TRAVERSAL
> CRYPTO MAP (CRYPTO MAP NAME) INTERFACE OUTSIDE ********
(Do this if you have crypto maps enabled)
> ISAKMP ENABLE OUTSIDE
On the client:
> UPGRADE TO 4.01

Anyone trying to use a G3 Datacard will also need to have a Firewall and client that supports UDP/TCP encapsulation as well as Nat-Traversal. The firewall will also need ports 500 and protocol 50 & 51 open.
0
 
LVL 1

Accepted Solution

by:
GhostMod earned 0 total points
ID: 17047161
Closed, 500 points refunded.

GhostMod
Community Support Moderator
0

Featured Post

Flash Sale! Good things come in big bundles

Save over 50% on our fully managed dedicated server bundle for Labor Day. Plus FREE Guardian Backups, FREE Advanced DDoS Protection and FREE Plesk Onyx Web Pro Edition.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
Make the most of your online learning experience.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Suggested Courses

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question