[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 863
  • Last Modified:

Cisco VPN Client preventing Remote Desktop, SMS, Group Policy, ICMP, and Antivirus administration?

I have been experiencing problems with what I've narrowed down to the Cisco VPN Client on my network.  I personally don't use the VPN client, but I administer the machines utilizing it.  When a Cisco VPN client is installed on a machine I suddenly lose that machine in SMS, my Parent AV server, and it stops receiving my group policy changes.  In addition, I cannot ping or remote desktop to the machine.  I've found an INI file in the root of the cisco vpn program directory that has a "Stateful firewall=1" option and changing that to 0 does not seem to make a difference.  Only when I uninstall the cisco vpn client do these problems stop happening and of course keeping it uninstalled is not an option.

Any hints or tips would be most appreciated.
0
dsavercool
Asked:
dsavercool
1 Solution
 
SysExpertCommented:
Contact Cicsco or check their support site.

Are there any other config settings on the Cisco VPN client ?

I hope this helps !
0
 
itquestionsCommented:
What version client are you using?  How about what device are you connecting to (concentrator or asa/pix)?

When the client is installed, the virtual NIC that is installed should be set to disabled automatically.  Check to see if that is the case.
0
 
dsavercoolAuthor Commented:
The Cisco VPN Client version at the moment is 5.0.01.0600, I upgraded from version 4.6 or 4.8 a few weeks ago, attempting to solve this same problem.  The problem occurs when the virtual adapter is disabled, so I'm not sure how relevant what the user is connecting to is in the situation.
0
 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

 
itquestionsCommented:
Do you have any network access at all after installing the vpn client?  I know you listed several things that do not work, but do others function properly?
0
 
dsavercoolAuthor Commented:
Yeah, internet access functions just fine along with things like AIM and email etc.  Essentially the end user can function just fine (hah!)  I just can't administer him remotely, it's like having a rebellious rogue PC on my network.
0
 
instillmotionCommented:
On the cisco vpn client go to options > unselect "stateful firewall always on"
0
 
dsavercoolAuthor Commented:
I've toiled a bit with the stateful firewall and affected machines still exhibit the same problems.  I could be wrong, but I think this is a bug in the cisco vpn client and likely turning the stateful firewall off should be the solution.
0

Featured Post

Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as the high-speed power of the cloud.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now