Ciao a tutti
sul mio pc con alice adsl e soho 77 ho installato il VPN client in oggetto.
In remoto ho un 1841 con la conf che vi posto di seguito, se provo a cannettermi con il vpn client ho questi errori:
13 14:27:42.140 01/15/06 Sev=Warning/3 IKE/0xE3000056
The received HASH payload cannot be verified
14 14:27:42.140 01/15/06 Sev=Warning/2 IKE/0xE300007D
Hash verification failed... may be configured with invalid group password.
15 14:27:42.140 01/15/06 Sev=Warning/2 IKE/0xE3000099
Failed to authenticate peer (Navigator:904)
16 14:27:42.140 01/15/06 Sev=Warning/2 IKE/0xE30000A5
Unexpected SW error occurred while processing Aggressive Mode negotiator:(Navigator:2202)
la configurazione sul 1841 è la seguente:
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname IRV-CentroStella
!
boot-start-marker
boot-end-marker
!
no logging buffered
enable secret 5 $1$CnGw$D3sVBQZiKbuyYXstDPJiL0
!
aaa new-model
!
!
aaa authentication login userauthen local
aaa authorization network groupauthor local
!
aaa session-id common
!
resource policy
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip subnet-zero
ip cef
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 10.0.11.1 10.0.11.10
ip dhcp excluded-address 10.0.11.61 10.0.11.62
!
ip dhcp pool IRV-CentroStella
network 10.0.11.0 255.255.255.192
default-router 10.0.11.1
dns-server 151.99.125.1 151.99.125.2
lease infinite
!
!
ip domain name interbusiness.it
ip name-server 151.99.125.1
ip name-server 151.99.125.2
!
!
!
!
username XXX privilege 15 view root secret 5 $1$Ga47$ZoRLk26lnFaCSVWk5WwtR.
username service secret 5 $1$FrE8$tdTzxf2hsMCYxmQ7uodNx/
username prova privilege 15 secret 5 $1$9jja$Z58mQflpwJEQpHWFckeZQ1
username pippo password 0 pippo
username cisco password 0 cisco
!
!
!
crypto isakmp policy 3
encr 3des
authentication pre-share
group 2
!
crypto isakmp client configuration group 3000client
key pippo
dns 151.99.125.1
domain interbusiness.it
pool ippool
acl 108
!
!
crypto ipsec transform-set myset esp-3des esp-sha-hmac
!
crypto dynamic-map dynmap 10
set transform-set myset
!
!
crypto map clientmap client authentication list userauthen
crypto map clientmap isakmp authorization list groupauthor
crypto map clientmap client configuration address respond
crypto map clientmap 10 ipsec-isakmp dynamic dynmap
!
!
!
interface Tunnel0
description Tunnel Verso IRV-Rossano
ip address 172.16.11.1 255.255.255.0
tunnel source 82.185.XXX.XX
tunnel destination 82.189.XXX.XX
!
interface FastEthernet0/0
ip address 10.0.11.1 255.255.255.192
ip nat inside
ip virtual-reassembly
duplex auto
speed auto
hold-queue 100 out
!
interface FastEthernet0/1
no ip address
shutdown
duplex auto
speed auto
!
interface ATM0/0/0
no ip address
no atm ilmi-keepalive
dsl operating-mode auto
!
interface ATM0/0/0.1 point-to-point
description CENTRO STELLA
bandwidth 1280
ip address 82.185.XXX.XX 255.255.255.248 secondary
ip address 88.33.XXX.XX 255.255.255.252
ip access-group 104 in
ip access-group 103 out
ip nat outside
ip virtual-reassembly
crypto map clientmap
pvc 8/35
!
!
router rip
version 2
network 10.0.0.0
network 172.16.0.0
!
ip local pool ippool 10.0.12.1 10.0.12.10
ip classless
ip route 0.0.0.0 0.0.0.0 ATM0/0/0.1
ip route 10.0.15.0 255.255.255.192 Tunnel0
!
!
ip http server
no ip http secure-server
ip nat inside source list 1 interface ATM0/0/0.1 overload
!
access-list 1 permit 10.0.0.0 0.0.0.255
access-list 1 permit 10.0.11.0 0.0.0.255
access-list 1 permit 10.0.15.0 0.0.0.255
access-list 108 permit ip 0.0.0.0 255.255.255.192 10.0.12.0 0.0.0.255
!
!
control-plane
!
!
line con 0
line aux 0
line vty 0 4
transport input telnet ssh
transport output telnet ssh
line vty 5 15
privilege level 15
transport input telnet ssh
!
end
VPN Client 4.6.00.0045 non si autentica!
Moderatore: Federico.Lagni
-
spooke
- Cisco enlightened user
- Messaggi: 136
- Iscritto il: sab 05 mar , 2005 10:18 pm
- Località: Milano
- Contatta:
-
spooke
- Cisco enlightened user
- Messaggi: 136
- Iscritto il: sab 05 mar , 2005 10:18 pm
- Località: Milano
- Contatta:
Eh eh avevo sbagliato il nome del gruppo nel von client.
ok, adesso mi collego ma succede una cosa strana.
lancio la connessione, il vpn client mi ciede la password e contestetualmente sul log window mi da questo errore:
43 14:40:44.625 01/15/06 Sev=Warning/2 IKE/0xA3000062
Attempted incoming connection from 82.185.XXX.XX. Inbound connections are not allowed.
dopodicche' qualsiasi password inserisca mi dice not connected
suggerimenti?
ok, adesso mi collego ma succede una cosa strana.
lancio la connessione, il vpn client mi ciede la password e contestetualmente sul log window mi da questo errore:
43 14:40:44.625 01/15/06 Sev=Warning/2 IKE/0xA3000062
Attempted incoming connection from 82.185.XXX.XX. Inbound connections are not allowed.
dopodicche' qualsiasi password inserisca mi dice not connected
suggerimenti?
