Pottmi
asked on
When Using Cisco VPN Client on Mac OSX Leopard I lose Internet connectivity.
This seems to be a commonly asked question, but not of the existing answers seem to fit my situation.
After connecting to the remote network using Cisco VPN Client 4.9.01 on my MacBook Pro I lose network connectivity. The connection to the remote network is fine, but I lose Browsing, timemachine, ping, ....
I was previously able to do this.
I called the helpdesk and they claim to have not changed any settings on the server side. Previously I used my own Internet connection and did not go through their proxy ( I do not even know if they have a proxy, even if they have a proxy I do not want to use it because their Internet connection is much slower than mine ).
In the properties of my client sw I have "allow local LAN Access" checked.
One other person had this same problem at the same time so this indicates that the help desk changed something; could just be a coincidence as yet another person is NOT having a problem.
What else can I change on my client end to try to fix this?
What can I look for in the log to see if server side is disabling my Internet access?
After connecting to the remote network using Cisco VPN Client 4.9.01 on my MacBook Pro I lose network connectivity. The connection to the remote network is fine, but I lose Browsing, timemachine, ping, ....
I was previously able to do this.
I called the helpdesk and they claim to have not changed any settings on the server side. Previously I used my own Internet connection and did not go through their proxy ( I do not even know if they have a proxy, even if they have a proxy I do not want to use it because their Internet connection is much slower than mine ).
In the properties of my client sw I have "allow local LAN Access" checked.
One other person had this same problem at the same time so this indicates that the help desk changed something; could just be a coincidence as yet another person is NOT having a problem.
What else can I change on my client end to try to fix this?
What can I look for in the log to see if server side is disabling my Internet access?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
1 of 2 things....
1) If you were sending company info through IPSEC and internet through your own connection, then your admin has to setup Split tunneling where only the traffric bound for the company lan is send via ipsec.
2) If your internet traffic is sent via IPSEC as well whenever VPN is conencted, then the vpn ip pool was removed from the outbound access list.
If your admins backup code on a schedule, then all they need to do is run a quick compare of the show run against a saved config for the changes....
1) If you were sending company info through IPSEC and internet through your own connection, then your admin has to setup Split tunneling where only the traffric bound for the company lan is send via ipsec.
2) If your internet traffic is sent via IPSEC as well whenever VPN is conencted, then the vpn ip pool was removed from the outbound access list.
If your admins backup code on a schedule, then all they need to do is run a quick compare of the show run against a saved config for the changes....
ASKER
Thanks,
I am confident that I was previously configured as your #1. I never checked, but I would have noticed a major slow down as my Internet is much faster than theirs.
I am sure they do backups, but I am not sure they will know what file to pull from backup in order to do the compare. Can you give me your best guess as to what/where that file is? I will pass that along to them.
I am confident that I was previously configured as your #1. I never checked, but I would have noticed a major slow down as my Internet is much faster than theirs.
I am sure they do backups, but I am not sure they will know what file to pull from backup in order to do the compare. Can you give me your best guess as to what/where that file is? I will pass that along to them.
I would have no way of knowing how the backups are done... there's a hundred ways of backing this up.
Using the built in write net, the ASDM backup command, or the dozens of 3rd party utils like CatTools. Some are manual, some can be automated. The file names and locations of the backups are all up to the admin.
Using the built in write net, the ASDM backup command, or the dozens of 3rd party utils like CatTools. Some are manual, some can be automated. The file names and locations of the backups are all up to the admin.
ASKER
The helpdesk did not respond to my request as to what they changed to get it to work, but I think it is safe to say they say changed something that broke it. Probably with good intentions.
ASKER
"Local Lan Routes" is empty
"Secured Routes" is 0.0.0.0 and 0.0.0.0 for Network and Subnet Mask.
I suspect that someone modified it without logging it in the help desk log.
I am not familiar with the server side. What can I tell them to look at to confirm the setting on their end?