[vpn-help] Problem with

David A. Esquivel dae at qcapital.com
Thu Sep 27 08:51:53 CDT 2012 

I have had this issue with several different Windows versions.  Try disabling any third party firewalls on the client.  Native Windows Firewall seems to work ok but the one that comes with Mcafee is bad.  You mentioned that you have unblocked specific ports.  I would recommend that for a short period you disable the firewall completely, just to establish whether or not that is causing the problem.

 

Also, in the Shrewsoft client settings, try disabling NET Traversal.  This feature is generally not needed anyway unless you are trying to NAT to a network more than one level deep and some Windows installations that I have seen do not work well with it enabled. (Acces Manager =>  Right click desired profile => Properties => Client Tab => NAT Traversal = "disabled")

 

David

 

From: vpn-help-bounces at lists.shrew.net [mailto:vpn-help-bounces at lists.shrew.net] On Behalf Of martin.angst at atos.net
Sent: Thursday, September 27, 2012 7:08 AM
To: vpn-help at lists.shrew.net
Subject: [vpn-help] Problem with

 

Hello all,

 

We have a Problem concerning Shrew soft VPN Client running on Windows 2008 Server SP1.

 

Setting:

 

Virtual Windows Server 2008 R2 Standard Service Pack 1 running on VMware ESX Server.

Our Firewall allows Traffic (Port 500, 4500) from/to this Server

Shrew Soft VPN Client (Version 2.1.7) was delivered from customer including several Profiles.

Shrew Soft VPN Client was installed without Error messages on that server.

Profiles from Customer had been imported without error.

Starting the client leads to the following messages

 

config loaded for site 'Atos3-TSK'

configuring client settings ...

attached to key daemon ...

peer configured

iskamp proposal configured

esp proposal configured

client configured

local id configured

pre-shared key configured

bringing up tunnel ...

negotiation timout occurred

tunnel disabled

detached from key daemon ...

 

The client does not work reporting:  "negotiation timeout" 

We sniffed the packages send from (received by) the server and noticed, that the client sends packages for IKE Phase1to the customers Firewall and the customers Firewall answers, but...

It seems that the client could not catch the packages send from customers firewall, because it sends the first request several times...

 

We Installed the client on several laptops running XP or WIN 7 and the client works properly (each test machine has been connected to the internet using the wireless LAN Adapter).

Additionally the Client works properly when it was installed on a virtual Win 2008 Server running with VMware Player on a WIN 7 Machine.

 

My question is: 

Why is it not possible for Shrew Soft VPN Client to establish the VPN Tunnel ?

Thanks in advance for help and 

Best regards

 

 

Martin Angst

Consulting & System Integration

Sector Energy & Services

Telefon     +49 (0) 221 8299 263

Mobile:     +49 (0) 157 7253 2680

Fax:         +49 (0) 221 8299 777

pers. Fax: +49 (0) 221 8299 9263

Martin.Angst at atos.net

Atos Information Technology GmbH

Franz Geuer Straße 10

50823 Köln

www.atos.net

 

 

 

__________________________________________________________________________________________________________________________________________
Atos Information Technology GmbH, Luxemburger Strasse 3, D-45131 Essen, Postfach 100 123, D-45001 Essen
Telefon: +49 201 4305 0, Fax: +49 201 4305 689095, www.de.atos.net
ING Bank AG, Frankfurt/Main: Konto 001 014 0937, BLZ 500 210 00, Swift / BIC INGBDEFF, IBAN DE74 5002 1000 0010 1409 37
Geschäftsführer: Winfried Holz, Vorsitzender des Aufsichtsrats: Peter Hollfelder, Handelsregister Essen HRB 19354, Ust.-ID.-Nr.: DE147861238
___________________________________________________________________________________________________________________________________________

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.shrew.net/pipermail/vpn-help/attachments/20120927/68bcced6/attachment-0002.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 170 bytes
Desc: image001.png
URL: <https://lists.shrew.net/pipermail/vpn-help/attachments/20120927/68bcced6/attachment-0002.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.jpg
Type: image/jpeg
Size: 1985 bytes
Desc: image002.jpg
URL: <https://lists.shrew.net/pipermail/vpn-help/attachments/20120927/68bcced6/attachment-0002.jpg>

More information about the vpn-help mailing list