Hi,
My company uses a Cisco VPN concentrator. To access their network I have to use a Cisco VPN client. For my Astaro firewall at home I use the Windows XP build-in VPN client to setup VPN tunnels.
I travel a lot and like to connect to my home based astaro. The problem is that a lot of locations don't allow PPTP's GRE through or they use NAT. For this reason I like to use IPSec with NAT traversal. So I tried to install SSH sentinel only to find that it cannot be installed on the same machine as the Cisco VPN client. Since the Cisco VPN client cannot connect to Astaro I decided to remove it and try to use SSH sentinel to connect to my company's Cisco VPN 3000 concentrator and also for connecting to Astaro. I got it connecting to Astaro now, but I can't get it to connect to the Cisco VPN 3000 concentrator.
My company uses pre-shared keys (the groupname/password combo in Cisco VPN client I assumed), denies split tunneling and NAT-T. I get a succesfull phase 1 IKE negotiation, but after that SSH sentinel says that it cannot find the pre-shared key (which I made and linked to the VPN connection), I don't get a IP-address, and sentinel says it that the phase 2 failed (IPSec proposal).
Any ideas?
This thread was automatically locked due to age.
