• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2287
  • Last Modified:

Cisco VPN Client Has Never Successfully Connected via DSL

Ok, here's one for the experts. It is the generic "error 412 The peer is no longer responding" which is misleading becasue it has never successfully connected.
Windows 2000
Cisco VPN Client 5
Bellsouth ADSL connection using Westel modem

Transport shows:  IPSec/UDP
Enable Transport Tunneling is checked - IPSec over UDP (NAT/PAT)

This is the Connection Profile, followed by the Log
[main]
Description=
Host=65.196.179.244
AuthType=1
GroupName=VerizonESM
GroupPwd=
enc_GroupPwd=45FBF7DCE198BC1212C2D52FE12CBFEECE0ADB67F00603F8E08437953FDE1504DA306290B463C2609D1317CBCA08B17B
EnableISPConnect=0
ISPConnectType=0
ISPConnect=
ISPPhonebook=
ISPCommand=
Username=
SaveUserPassword=0
UserPassword=
enc_UserPassword=
NTDomain=
EnableBackup=0
BackupServer=
EnableMSLogon=1
MSLogonType=0
EnableNat=1
TunnelingMode=0
TcpTunnelingPort=10000
CertStore=0
CertName=
CertPath=
CertSubjectName=
CertSerialHash=00000000000000000000000000000000
SendCertChain=0
PeerTimeout=90
EnableLocalLAN=0


This is the log file:
Cisco Systems VPN Client Version 5.0.01.0600
Copyright (C) 1998-2007 Cisco Systems, Inc. All Rights Reserved.
Client Type(s): Windows, WinNT
Running on: 5.0.2195 Service Pack 4
Config file directory: C:\Program Files\Cisco Systems\VPN Client\

1      19:51:06.720  01/29/08  Sev=Info/6      CERT/0x63600026

Attempting to find a Certificate using Serial Hash.



2      19:51:06.720  01/29/08  Sev=Info/6      CERT/0x63600027

Found a Certificate using Serial Hash.



3      19:51:06.770  01/29/08  Sev=Info/6      CERT/0x63600026

Attempting to find a Certificate using Serial Hash.



4      19:51:06.770  01/29/08  Sev=Info/6      CERT/0x63600027

Found a Certificate using Serial Hash.



5      19:51:06.800  01/29/08  Sev=Info/6      CERT/0x63600026

Attempting to find a Certificate using Serial Hash.



6      19:51:06.800  01/29/08  Sev=Info/6      CERT/0x63600027

Found a Certificate using Serial Hash.



7      19:51:06.820  01/29/08  Sev=Info/6      GUI/0x63B00011

Reloaded the Certificates in all Certificate Stores successfully.



8      19:52:14.347  01/29/08  Sev=Info/4      CM/0x63100002

Begin connection process



9      19:52:14.377  01/29/08  Sev=Warning/2      CVPND/0xA3400011

Error -21 sending packet. Dst Addr: 0xC0A801FF, Src Addr: 0xC0A80161 (DRVIFACE:1201).



10     19:52:14.377  01/29/08  Sev=Info/4      CM/0x63100004

Establish secure connection



11     19:52:14.377  01/29/08  Sev=Info/4      CM/0x63100024

Attempt connection with server "66.193.233.226"



12     19:52:14.427  01/29/08  Sev=Warning/2      CVPND/0xA3400011

Error -21 sending packet. Dst Addr: 0x42C1E9E2, Src Addr: 0x00000000 (DRVIFACE:2424).



13     19:52:14.427  01/29/08  Sev=Info/4      CM/0x6310002E

Unable to reset TCP connection



14     19:52:14.427  01/29/08  Sev=Info/6      IKE/0x6300003B

Attempting to establish a connection with 66.193.233.226.



15     19:52:14.447  01/29/08  Sev=Info/4      IKE/0x63000013

SENDING >>> ISAKMP OAK AG (SA, KE, NON, ID, VID(Xauth), VID(dpd), VID(Frag), VID(Nat-T), VID(Unity)) to 66.193.233.226



16     19:52:14.447  01/29/08  Sev=Warning/3      IKE/0xE3000069

Failed to send 867 bytes to 66.193.233.226, error = 0xFFFFFFEB



17     19:52:14.567  01/29/08  Sev=Info/4      IPSEC/0x63700008

IPSec driver successfully started



18     19:52:14.567  01/29/08  Sev=Info/4      IPSEC/0x63700014

Deleted all keys



19     19:52:19.554  01/29/08  Sev=Info/4      IKE/0x63000021

Retransmitting last packet!



20     19:52:19.554  01/29/08  Sev=Info/4      IKE/0x63000013

SENDING >>> ISAKMP OAK AG (Retransmission) to 66.193.233.226



21     19:52:19.554  01/29/08  Sev=Warning/3      IKE/0xE3000069

Failed to send 867 bytes to 66.193.233.226, error = 0xFFFFFFEB



22     19:52:24.562  01/29/08  Sev=Info/4      IKE/0x63000021

Retransmitting last packet!



23     19:52:24.562  01/29/08  Sev=Info/4      IKE/0x63000013

SENDING >>> ISAKMP OAK AG (Retransmission) to 66.193.233.226



24     19:52:24.562  01/29/08  Sev=Warning/3      IKE/0xE3000069

Failed to send 867 bytes to 66.193.233.226, error = 0xFFFFFFEB



25     19:52:29.569  01/29/08  Sev=Info/4      IKE/0x63000021

Retransmitting last packet!



26     19:52:29.569  01/29/08  Sev=Info/4      IKE/0x63000013

SENDING >>> ISAKMP OAK AG (Retransmission) to 66.193.233.226



27     19:52:29.569  01/29/08  Sev=Warning/3      IKE/0xE3000069

Failed to send 867 bytes to 66.193.233.226, error = 0xFFFFFFEB



28     19:52:34.576  01/29/08  Sev=Info/4      IKE/0x63000017

Marking IKE SA for deletion  (I_Cookie=D7BA770C60432D58 R_Cookie=0000000000000000) reason = DEL_REASON_PEER_NOT_RESPONDING



29     19:52:35.087  01/29/08  Sev=Info/4      IKE/0x6300004B

Discarding IKE SA negotiation (I_Cookie=D7BA770C60432D58 R_Cookie=0000000000000000) reason = DEL_REASON_PEER_NOT_RESPONDING



30     19:52:35.087  01/29/08  Sev=Info/4      CM/0x63100014

Unable to establish Phase 1 SA with server "66.193.233.226" because of "DEL_REASON_PEER_NOT_RESPONDING"



31     19:52:35.087  01/29/08  Sev=Info/5      CM/0x63100025

Initializing CVPNDrv



32     19:52:35.107  01/29/08  Sev=Info/6      CM/0x63100046

Set tunnel established flag in registry to 0.
33     19:52:35.107  01/29/08  Sev=Info/4      IKE/0x63000001
IKE received signal to terminate VPN connection

34     19:52:35.587  01/29/08  Sev=Info/4      IPSEC/0x63700014
Deleted all keys
35     19:52:35.587  01/29/08  Sev=Info/4      IPSEC/0x63700014
Deleted all keys
36     19:52:35.587  01/29/08  Sev=Info/4      IPSEC/0x63700014
Deleted all keys



37     19:52:35.587  01/29/08  Sev=Info/4      IPSEC/0x6370000A

IPSec driver successfully stopped



38     19:52:40.935  01/29/08  Sev=Info/4      CM/0x63100002

Begin connection process



39     19:52:40.945  01/29/08  Sev=Warning/2      CVPND/0xA3400011

Error -21 sending packet. Dst Addr: 0xC0A801FF, Src Addr: 0xC0A80161 (DRVIFACE:1201).



40     19:52:40.955  01/29/08  Sev=Info/4      CM/0x63100004

Establish secure connection



41     19:52:40.955  01/29/08  Sev=Info/4      CM/0x63100024

Attempt connection with server "65.196.179.244"



42     19:52:40.995  01/29/08  Sev=Warning/2      CVPND/0xA3400011

Error -21 sending packet. Dst Addr: 0x41C4B3F4, Src Addr: 0x00000000 (DRVIFACE:2424).



43     19:52:40.995  01/29/08  Sev=Info/4      CM/0x6310002E

Unable to reset TCP connection



44     19:52:40.995  01/29/08  Sev=Info/6      IKE/0x6300003B

Attempting to establish a connection with 65.196.179.244.



45     19:52:41.005  01/29/08  Sev=Info/4      IKE/0x63000013

SENDING >>> ISAKMP OAK AG (SA, KE, NON, ID, VID(Xauth), VID(dpd), VID(Frag), VID(Nat-T), VID(Unity)) to 65.196.179.244



46     19:52:41.005  01/29/08  Sev=Warning/3      IKE/0xE3000069

Failed to send 870 bytes to 65.196.179.244, error = 0xFFFFFFEB



47     19:52:41.095  01/29/08  Sev=Info/4      IPSEC/0x63700008

IPSec driver successfully started



48     19:52:41.095  01/29/08  Sev=Info/4      IPSEC/0x63700014

Deleted all keys



49     19:52:46.092  01/29/08  Sev=Info/4      IKE/0x63000021

Retransmitting last packet!



50     19:52:46.092  01/29/08  Sev=Info/4      IKE/0x63000013

SENDING >>> ISAKMP OAK AG (Retransmission) to 65.196.179.244



51     19:52:46.092  01/29/08  Sev=Warning/3      IKE/0xE3000069

Failed to send 870 bytes to 65.196.179.244, error = 0xFFFFFFEB



52     19:52:51.100  01/29/08  Sev=Info/4      IKE/0x63000021

Retransmitting last packet!



53     19:52:51.100  01/29/08  Sev=Info/4      IKE/0x63000013

SENDING >>> ISAKMP OAK AG (Retransmission) to 65.196.179.244



54     19:52:51.100  01/29/08  Sev=Warning/3      IKE/0xE3000069

Failed to send 870 bytes to 65.196.179.244, error = 0xFFFFFFEB



55     19:52:56.107  01/29/08  Sev=Info/4      IKE/0x63000021

Retransmitting last packet!



56     19:52:56.107  01/29/08  Sev=Info/4      IKE/0x63000013

SENDING >>> ISAKMP OAK AG (Retransmission) to 65.196.179.244



57     19:52:56.107  01/29/08  Sev=Warning/3      IKE/0xE3000069

Failed to send 870 bytes to 65.196.179.244, error = 0xFFFFFFEB



58     19:53:01.114  01/29/08  Sev=Info/4      IKE/0x63000017

Marking IKE SA for deletion  (I_Cookie=4293D9C717144F5E R_Cookie=0000000000000000) reason = DEL_REASON_PEER_NOT_RESPONDING



59     19:53:01.615  01/29/08  Sev=Info/4      IKE/0x6300004B

Discarding IKE SA negotiation (I_Cookie=4293D9C717144F5E R_Cookie=0000000000000000) reason = DEL_REASON_PEER_NOT_RESPONDING



60     19:53:01.615  01/29/08  Sev=Info/4      CM/0x63100014

Unable to establish Phase 1 SA with server "65.196.179.244" because of "DEL_REASON_PEER_NOT_RESPONDING"



61     19:53:01.625  01/29/08  Sev=Info/5      CM/0x63100025

Initializing CVPNDrv



62     19:53:01.675  01/29/08  Sev=Info/6      CM/0x63100046

Set tunnel established flag in registry to 0.



63     19:53:01.675  01/29/08  Sev=Info/4      IKE/0x63000001

IKE received signal to terminate VPN connection



64     19:53:02.136  01/29/08  Sev=Info/4      IPSEC/0x63700014

Deleted all keys



65     19:53:02.136  01/29/08  Sev=Info/4      IPSEC/0x63700014

Deleted all keys



66     19:53:02.136  01/29/08  Sev=Info/4      IPSEC/0x63700014

Deleted all keys

67     19:53:02.136  01/29/08  Sev=Info/4      IPSEC/0x6370000A
IPSec driver successfully stopped

Thanks for any help. John


0
jbates99
Asked:
jbates99
  • 6
  • 5
1 Solution
 
batry_boyCommented:
What type of VPN device are you trying to connect to?  Is there a setting for IPSEC pass through on your Westell modem?
0
 
jbates99Author Commented:
Thanks batry_boy.

I really dont know how to see the settings for the Westell modem.

And I've asked our Tech support team at the office what type of VPN device we connect to - they don't seem to know.

I CAN tell you this: Several other employees are using Cisco VPN client to connect from home successfully. And at least 1 person uses BellSouth and the Westell modem as I do.

How can I find the modem settings?

Thanks, John
0
 
jbates99Author Commented:
... I found out today that we are trying to connect to a Cisco ASA device at my office. As I said, everyone else is able to connect (dozens of people).

Thanks for your ideas. John
0
Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

 
batry_boyCommented:
I would try uninstalling version 5 and installing version 4.8.02.0010.  This is a stable version for Windows XP...I've seen some flaky behavior with version 5.  Also, it looks like you may have some software issues here judging from the following lines from your VPN logs above:

38     19:52:40.935  01/29/08  Sev=Info/4      CM/0x63100002

Begin connection process

39     19:52:40.945  01/29/08  Sev=Warning/2      CVPND/0xA3400011

Error -21 sending packet. Dst Addr: 0xC0A801FF, Src Addr: 0xC0A80161 (DRVIFACE:1201).

40     19:52:40.955  01/29/08  Sev=Info/4      CM/0x63100004

Establish secure connection

41     19:52:40.955  01/29/08  Sev=Info/4      CM/0x63100024

Attempt connection with server "65.196.179.244"

42     19:52:40.995  01/29/08  Sev=Warning/2      CVPND/0xA3400011

Error -21 sending packet. Dst Addr: 0x41C4B3F4, Src Addr: 0x00000000 (DRVIFACE:2424).

43     19:52:40.995  01/29/08  Sev=Info/4      CM/0x6310002E

Unable to reset TCP connection
0
 
jbates99Author Commented:
I will uninstall and install 4.6 soon....

Thanks, John
0
 
jbates99Author Commented:
batry_boy:

I uninstalled 5.0 and installed Client 4.8 today.
Get the same error message "error 412 The peer is no longer responding"

This is the log:

Cisco Systems VPN Client Version 4.8.01.0300
Copyright (C) 1998-2005 Cisco Systems, Inc. All Rights Reserved.
Client Type(s): Windows, WinNT
Running on: 5.0.2195 Service Pack 4
Config file directory: C:\Program Files\Cisco Systems\VPN Client\

1      21:01:46.790  02/14/08  Sev=Warning/2      CVPND/0xA3400011
Error -21 sending packet. Dst Addr: 0xC0A801FF, Src Addr: 0xC0A80161 (DRVIFACE:1158).

2      21:01:46.831  02/14/08  Sev=Warning/2      CVPND/0xA3400011
Error -21 sending packet. Dst Addr: 0x42C1E9E2, Src Addr: 0x00000000 (DRVIFACE:2384).

3      21:01:46.841  02/14/08  Sev=Warning/3      IKE/0xE3000069
Failed to send 867 bytes to 66.193.233.226, error = 0xFFFFFFEB

4      21:01:52.178  02/14/08  Sev=Warning/3      IKE/0xE3000069
Failed to send 867 bytes to 66.193.233.226, error = 0xFFFFFFEB

5      21:01:57.185  02/14/08  Sev=Warning/3      IKE/0xE3000069
Failed to send 867 bytes to 66.193.233.226, error = 0xFFFFFFEB

6      21:02:02.193  02/14/08  Sev=Warning/3      IKE/0xE3000069
Failed to send 867 bytes to 66.193.233.226, error = 0xFFFFFFEB

Any ideas? Thanks, John

0
 
batry_boyCommented:
I personally think this is a client side issue, but it's hard to prove given the information presented thus far.  Could you post the sanitized ASA configuration so we can rule that out as a possible problem?  You can almost rule that out already since you state that other people can connect just fine, but at this point we're just trying to cover all the bases.  :)
0
 
jbates99Author Commented:
I agree that it is probably an issue on my PC or my DSL connection. Getting the ASA configuration may not be possible. The IT staff seems to assume it is my PC causing the problem so they have not been any help.

I have a question. Which port does VPN Client 5.0 use? How can I see whether that port is open? How can I force it to open?

I've made no progress on this in over a month.

As a reminder, the pc is Win 2000 and an ADSL connection to the Internet. Norton Personal Firewall and Norton Antivirus are installed on the pc. Even when I stop all the Norton/Symantec services I still cannot connect and get the same error.

Thanks very much for your time and suggestions thus far......

John Memphis TN USA

 
0
 
batry_boyCommented:
You can rule out (or rule in, as the case may be) that the problem is your PC by getting another PC (laptop, perhaps) to install the same VPN client software on, transfer the profile over to it, and then try connecting from that PC behind your DSL modem connection.  If it still doesn't work, then it points to your DSL connection as the problem...if it does work, then it points to your PC being the problem.

>>I  have a question. Which port does VPN Client 5.0 use?

It uses UDP 500 and UDP 4500 for tunnel setup, unless your profile is set to use IPSEC over TCP, in which case it most probably uses TCP 10000 which is the default for that...it can be changed however, so you'll need to look at your VPN client configuration.  See screenshot below.

>>How can I see whether that port is open? How can I force it to open?

Are you talking about on your PC or somewhere else?  You don't need to worry about it being open on your PC since you are initiating the connection from your PC, it shouldn't be listening on this port because it's not the device receiving the VPN connection.

Now, having said that, I would probably do all my testing with the Norton software disabled, since I've seen that software cause major headaches in the past regarding VPN connectivity.  Pain in the rear, that software.




vpnclient.png
0
 
jbates99Author Commented:
batry_boy,
It has been awhile and I owe you a reply.
Unfortunately (or fortunately), my PC has died with a hard drive failure.
I accepted your last solution because I cant move forward.
I'm hoping and praying the new pc will be able to connect.
Thanks for your suggestions! John
0
 
batry_boyCommented:
What a way to potentially fix a problem!  Good luck!
0

Featured Post

[Webinar] Kill tickets & tabs using PowerShell

Are you tired of cycling through the same browser tabs everyday to close the same repetitive tickets? In this webinar JumpCloud will show how you can leverage RESTful APIs to build your own PowerShell modules to kill tickets & tabs using the PowerShell command Invoke-RestMethod.

  • 6
  • 5
Tackle projects and never again get stuck behind a technical roadblock.
Join Now