Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 28 subscribers
  • Views 9945 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cisco VPN Client does not connect (XG115)

Philippe Endress

We need to use a Cisco VPN client to connect to a customer's Server, but since we installed the XG115 the connection does not work anymore.

Firewall rule is: accept any service from LAN(any host) to WAN(any host).

Any help will appreciated



This thread was automatically locked due to age.
Parents
  • 0

    Philippe,

    can you share the firewall rule? Check IPS and Firewall logs to understand what is blocked.

    Regards

  • 0 in reply to lferrara

    lferrara,

    I went through all of this with a Sophos Support agent (at least 12 hours + 3 days of trying work arrounds), and it did not help.

    The XG log did not show anything and even a Wireshark sniffing did not show the problem. Unfortunately the Cisco VPN Server log is not accessible to us, so we have only 1 side of the traffic log.

    I posted it on the forum hoping that maybe somebody else could have had the same problem.

    There must be a compatibility problem between the XG and Cisco, we will probably never know.

    My only option now is to "try again" each time I receive a firmware update to see if the problem still remains.

    Thanks for your help.

    Best regards

    Philippe

  • 0 in reply to Philippe Endress

    Hello 

    I'm working around the same problem 

    Did you find some solution ?

  • 0 in reply to rdebraga

    If using the iPhone/Mac, after setting up the CISCO VPN Client in the firewall, be sure to download and install/import/trust the profile or it won't work. After 17.1.3, I had to add/set a firewall rule with a custom IP Range for the Source Network that matched the VPN Client IP address range settings with the VPN Source Zone. Be sure to also set the Authentication->Services to use the preferred authentication method along with the Shared Secret/Certificate. I can vouch that it works well on the iPhone/Mac.

    Regards,

    Gary

Reply
  • 0 in reply to rdebraga

    If using the iPhone/Mac, after setting up the CISCO VPN Client in the firewall, be sure to download and install/import/trust the profile or it won't work. After 17.1.3, I had to add/set a firewall rule with a custom IP Range for the Source Network that matched the VPN Client IP address range settings with the VPN Source Zone. Be sure to also set the Authentication->Services to use the preferred authentication method along with the Shared Secret/Certificate. I can vouch that it works well on the iPhone/Mac.

    Regards,

    Gary

Children
No Data