Cisco VPN :: ASA 5510 Ssl - Connection To Server Failed
Jul 5, 2011
i have an ASA 5510, i configured a ssl portal acces for my company. it used to work. now, it's still half working : 1/ i can connect to the web ssl portal page with the AAA acces (login and psw) 2/ but after, it's no more possible to access at corporate web pages, like intranet, always the same message : "connexion failed - serveur xxx not available". See the attachement.
i watched logs, my packets are dropped but i don't know why.
View 0 Replies
ADVERTISEMENT
Jun 5, 2011
I have a little problem with my ASA 5510 version 8.2(1) with a IAS server RADIUS for strong authentication.
I have configured a double authentication for my client to access SSL portal:
First authentication: AD serverSecondary authentication: IAS for my token SAFENET ALADDIN The server IAS is declared on a W2K3 and it's standard.
The problem I have is that after more than 24hours of unutilization, when i try to log in, my authentication failed the first time and then the other tries work fine as long as I use it in a period of 24hours.
I first thought about the timeout so i tried to put a "timeout" of 15seconds for AD and IAS servers and a "retry intervall" of 3 seconds, it doesn't change much.
Is there a tool/option in the ASA to check connectivity with the radius every 1h for example.
View 4 Replies
View Related
Aug 26, 2007
I tried to authenticate and authorized Nokia/checkpoint Nortel/AD3 and Nortel 5510 platform using an 4.1 for windows ACS. the ACCESS-REQUEST is well processed bi the radius server wich send ACCESS-ACCEPT to the AAA Client (ie NORTEL or NOKIA), but i'have got privilege access denied on the Client side. RADIUS IETF Dictionnary is used for every device. all others Cisco Devices authenticate and are well authorized.
View 3 Replies
View Related
Oct 11, 2011
I've got some problem with my Mail Server since I've migrated to an ASA5510.Actually the server is in a DMZ with a private Ip ( 10.x.x.2) and it is translated to a Public IP ( 194.x.x.65).I use these configuration :
static (DMZ,LAN) 194.x.x.65 10.x.x.2 netmask 255.255.255.255 static (DMZ,LAN) 194.x.x.66 10.x.x.3 netmask 255.255.255.255 static (DMZ,WAN) 194.x.x.65 10.x.x.2 netmask 255.255.255.255 static (DMZ,WAN) 194.x.x.66 10.x.x.3 netmask 255.255.255.255 static (LAN,DMZ) 192.168.0.0 192.168.0.0 netmask 255.255.248.0
Some Users received in there mailbox a system administer error message :
Object : Impossible to deliver : test Your message could not be deliver to one or more of its recipients: 421 SMTP connection went away!
When they try to re sent it some times later, message is sent without problem.
View 4 Replies
View Related
Sep 26, 2012
I have been locked out of using my VPN over the past week because of the error "Failed to Load Preferences". Whenever I open the cisco anyconnect and select the current selection or enter in a new connection I get that error. I have tried reinstalling, deleting out the cisco folder from my user account, and running cisco through the web that gives me the error "Web-based installation was unsuccessful. If you wish to install the CIsco Anyconnect VPN Client, you may download an installer package."
View 5 Replies
View Related
Jun 23, 2012
Router: ASA 5510
We have changed the ISP, so therefore new wan ip-addresses.
Internet works, and site-to-site vpn works, but I'm failing to localice why the remote access vpn won't work.
View 10 Replies
View Related
Jan 12, 2012
i have a problem with a Failover Pair of 5510. The Boxes run with the software version 8.2.5.
If the Active ASA goes down, the Standby ASA switch to Active.
If i switch on the old Active ASA, both ASA are Active. This problem don't solved with the command 'no failover active' on the Standby box. This problem only solved with the command 'no failover' and then 'failover' on the Standby box.
View 4 Replies
View Related
Jul 22, 2012
having a bit of trouble setting up our 5510. None of us have ever played with a firewall before. We've got most of the basics covered. I was able to get to the outside world to do a software update to the box, but my laptop that sits in the inside can't see the outside. We only have the default access rules in place at the moment. Our old ISA firewall rules don't really translate all that well to this new box.
View 2 Replies
View Related
Jul 25, 2012
I have the problem, that when I want to connect to the VPN Gateway (ASA 5510) with the AnyConnect Client 3.0 I will get the error "Failed to load preferences" when I try to connect via the SSL Portal of the ASA, everthing works fine... I have tried to reinstall the Client - without any success.
View 3 Replies
View Related
Mar 9, 2011
I have ASA 5510 with 8.3 version and using multi context. I created a new context ABC and tryed to add routes in the context for the ABC networks it would not work. There was an error in the log stating, “failed to locate egress interface”. I changed the metric on the static routes from 1 to 2 and it started working. Is it normal in a multi context?
View 4 Replies
View Related
Jul 24, 2011
I'am using ASA 5510 and I try to understand how PAT is working.I want to add a Mail Server in the LAN and a webmail using port 3000 on the server. ( webmail must be reachable from the WAN)This is my Configuration :actually LAN users access internet using NAT with one global IP ( 194.x.x.69) which is the ASA WAN interface.
WAN ----- ISP Router ---------- FW ---------- LAN -------- Mail Server + Webmail
| (25) | (3000)
194.x.x.69 192.168.1.254 192.168.1.6
I need to forward port 3000 and port 25 from outside to inside.For example, from the WAN : [URL] must be redirect toward 192.168.1.6:3000 . What is the Correct Configuration ? And what about the Inside/Outside Traffic,Is there any configuration to add ?
View 2 Replies
View Related
Dec 20, 2011
I have a Windows XP laptop and a Windows 7 desktop. The desktop has no wifi support, I had built it myself. To get internet on my desktop (used for games), I had connected my laptop to the pc, and the laptop picked up wifi from my AT&T gateway in another part of the house. ( I can't move the gateway currently) I have been wanting to connect the desktop to a router/repeater/bridge that would pick up my gateway signal, therefore eliminating the use of the laptop. I also have an Xbox right next to the pc, so I din't want to get an adapter because then I would have to purchase two, so I picked up a a wireless n router with 4 ethernet ports. ( then I could connect both systems using 2 ethernet cables) [URL] I knew when purchasing the router that it had repeater/bridge support. Currently, I have it configured as a wifi bridge. I can connect to it via my laptop, on the wireless networks page, it shows my gateway signal, and the bridge/router, so I connect to the router. It says I have excellent connection, but I can't connect to the internet? Using Google Chrome, it says DNS lookup failed. I can't get on any website, only the router's config page, which is 192.168.1.1. I also connected the router to my pc, and when troubleshooting it says DNS server not responding, may be non existant or incorrect?
View 4 Replies
View Related
Feb 23, 2012
Trying to set up remote access to webcam. Signed up with dyndns.org for Hostname, but when I try to set up the DDNS Service Settings in the webcam firmware it continually gives 'Bad reply from server' and I'm pretty clueless when it comes to networking! As far as I can see it requires a User name and Password plus the newly acquired Hostname as shown [URL]
View 7 Replies
View Related
Nov 17, 2012
My wireless internet at uni is showing up with two errors, when its connected it will come up saying that there is an ip address conflict then it will work for a short time then show this message when I try to load a webpage:The server at Google can't be found because the DNS look-up failed. DNS is the network service that translates a website's name to its Internet address. This error is most often caused by having no connection to the Internet or a misconfigured network. It can also be caused by an unresponsive DNS server or a firewall preventing*Google Chrome*from accessing the network.
View 13 Replies
View Related
May 8, 2012
I have one server-A(windows 2008) installed one application called"host front" which gives athentication to connect Linux(mainframe console)server(SERVER B). These 2 servers are bihind the firewall.If one internal user who has the athentication to logine server-B ,tried to login server A,will get the" username and password"screen and once they enter the username and password ,will get the server-B screen.But if somebody try to connet via MPLS(we need to test MPLS site customers) from outside via ASA 5540 ,to server-A will get the "username password" screen and once enter the credentials,after 1 minitue will get error"http server faild to send datas to the server" and will not move to server -B screen.Where do you think is the problem?
View 3 Replies
View Related
May 17, 2012
I've configured in an UC520 a SSL VPN.I can access properly and I can see the labels, but I only can access urls which are http, not https:I can access the default ip of the uc520 (192.168.1.10) but When I try to get access to a secure url I get the msg: Failed to validate server certificate I'm trying to access a Cisco Digital Media Manager, whose url is URL Does the certificate of both hardware has to be the same?
View 7 Replies
View Related
Apr 21, 2011
Kerio Control with AD, DNS."Failed to send DNS query to server 127.0.0.1: 10049".
View 1 Replies
View Related
May 22, 2013
We are experiencing a lot of these RADIUS failed to respond messages on our WLC's leading to a lot of RADIUS server hopping within the WLC.We are using Cisco 5508's, 1142 AP's and a Microsoft NPS RADIUS backend. SSID is WPA2+802.1xThe first workaround to this problem was to disable aggressive failover on the WLC. But this is only a temporary fix, because in the end, there will be more than 3 consequetive clients, failing to authenticate to the WLAN network. As a result, the WLC will swap to the 2nd RADIUS server configured.When we dived into this a little bit more we saw the following messages being logged on the RADIUS backend at the time we saw the RADIUS messages on the WL:Event ID: 6274: Network Policy Server discarded the request for a user.
View 16 Replies
View Related
Mar 15, 2010
I've been configured my device 6506-9 with TACACS+ server authentication: [code]
but when I tried to access the device only uses authentication local but not uses TACACs (with username/password defined) it can be an error in configuration? in the other devices of network this works properly, only it's wrong in Cat6506-E
View 6 Replies
View Related
Jan 28, 2013
I connects to the wireless box and has full signal but an exclamation mark is present.I have run some tests and the IPv4 and IPv6 say they have no internet access.I also run a full test and everything passed except the ping test which failed and it said: no response:default gateway response: dhcp server it suggested disabling security firewall but i'm not sure if that's the correct thing to do or even how to do that!
View 7 Replies
View Related
May 7, 2012
I have one server-A(windows 2008) installed one application called"host front" which gives athentication to connect Linux(mainframe console) server (SERVER B).These 2 servers are bihind the firewall.If one internal user who has the athentication to logine server-B ,tried to login server A,will get the" username and password"screen and once they enter the username and password ,will get the server-B screen.But if somebody try to connet via MPLS(we need to test MPLS site customers) from outside via ASA 5540 ,to server-A will get the "username password" screen and once enter the credentials, after 1 minitue will get error"http server faild to send datas to the server" and will not move to server -B screen.
View 1 Replies
View Related
Jul 29, 2011
dhcp server failed while running network diagnostic test for windows xp
View 1 Replies
View Related
Feb 20, 2013
2 days ago, my laptop was connected to my router and working fine. But it then randomly disconnected and haven't been able to connect back since. I am using an ethernet cable to access the internet, and have tried many ways to try and resolve the issue but nothing is working.
I have a Dell L501x (Win 7 64-bit) with the Intel Centrino 1000 BGN wifi card. I have restarted the router and modem and disconnected all devices and tried reconnecting, but to no avail. I have tried updating the drivers, system restoring and using safe mode (with network) but nothing works. The modem and router are working fine as other devices connect and access the internet, it is just my laptop that cannot.
I am sure it is not a hardware issue as the card detects all the surrounding networks. The troubleshooter only says "An administrator profile failed to obtain an IP address from the DHCP server.
View 10 Replies
View Related
Aug 29, 2011
For quite some time now, we have been experiencing an issue with the Cisco VPN client that will make the client completely unusable. I have noticed that when a specific feature of Symantec Endpoint Protection is enabled, it will (about 25% of the time) cause the following errors to appear when attempting to connect anywhere with the Cisco VPN client. Once this error happens once, the VPN client then becomes useless.
Error #1
Reason 414: Failed to establish a TCP connection
Error #2
Reason 440: Driver Failure
Error #3
Reason 442: Failed to enable virtual adapter
It seems that fixing one error will cause the other error to come up.I have tried reinstalling the client with the same version and older versions and the issue still comes up. All users in the company are using Windows 7 64-bit with SP1 installed.The oddest thing about this is that all employees in the company have the same antivirus with the same features enabled, however, it only happens to a small percentage of employees.
View 3 Replies
View Related
Jun 24, 2011
I have problem with my system. my system is Windows 7 STARTER. When i am using internet, every time the message is showing "Link to Broad Band connection failed - reconnect pending............" like that message is comming.
View 2 Replies
View Related
Mar 25, 2011
I manually disabled my wireless network connection and now when I click on enable it says "connection failed"i have windows xp.
View 3 Replies
View Related
Jun 7, 2011
We saw this syslog on ASA5585 with version 8.4(1). I have two HA firewall pairs (contains 4 ASA5585, active/standby), and I saw this message on the standby ones.
Jun 7 07:36:26 10.99.96.32 last message repeated 4 times
Jun 7 07:36:26 10.99.96.32 :Jun 07 07:36:26 HKST: %ASA-ha-3-210005: LU allocate connection failed
[Code]....
View 4 Replies
View Related
Feb 17, 2013
Customer is running ASA 5550 with software 8.2.5 version.
They continously get the below messages
%ASA-3-210005: LU allocate connection failed
%ASA-3-210007: LU allocate xlate failed
I have already searched in the forums and also BUG toolkit, These issue has either been resolved in prior relases or in 8.4 .x train. I didnt find any bug which says that it has been found in 8.2.5 release.
I have also run "show conn count" and "show xlate count" I see these is difference in count output.
From Standby
COGINBLRMBPB1INTF1# show conn count
6097 in use, 17220 most used
COGINBLRMBPB1INTF1# sh xlate count
[Code].....
View 2 Replies
View Related
Jan 14, 2013
Problems connecting to different services and an online game. Examples:
1.) "Connection timed out" in Teamspeak 2. (debug log not really yielding much useful information).
2.) Torchlight 2 reported "Connection failed - Firewall errors detected."
- almost all other online applications work just fine (including voice over ip and games) What I've tried (without any success):
1.) I could connect in either case using my old laptop! Thus it works on a different computer, from the same network, at the same/similar time. Thus I concluded it must be somehow related to this laptop (its a new laptop).
2.) The TS2 server & entered information is 100% working, same applies to torchlight2 - also latest updates installed and of course the game is totally legal.
3.) Windows firewall: all the mentioned programs are on the allowed list. Also check whether its correctly set to "home network". Futhermore I also tried disabling the windows firewall entirely.
4.) No other firewall program in use.
5.) Check all programs I know of which might be related to network traffic (e.g. Qualcomm Atheros Killer Network Manager - disabled it).
6.) Tried both, wireless and ethernet cable connection.
7.) I even tried running the game, torchlight 2, via Tunngle (explained in a layman's words: a program that simulates Lan over the internet).
Some Information about my system:Its a new laptop. Network card is labled as "Killer e2200 PCI-E Gigabit Ethernet Controller.Runs Windows 7 and did start out empty: i.e. I installed every single program running on the machine and as far as I know none of them should have anything to do with network. Virus scanner is the lastest version of AVG free (no firewall included).
View 8 Replies
View Related
Jan 19, 2012
I am having Cisco 3845 series router with c3900-universalk9-mz.SPA.151-4.M2.bin IOS . I want to install new Licence on it for DATA. When i am trying to install licence on it i am facing the error "% Error: License installation failed with error: XML parsing failed".
View 4 Replies
View Related
Feb 13, 2011
I have a Aspire 5315-2153 Laptop with windows Vista Home.I cannot connect to my wireless anymore. When tries it says Connecting to 2wire296 please wait -- Then it says Conection to WLAN Failed.I am able to connect with my ethernet wire connection just not wireless.I did IPCONFIG/ALL and here what came up.
Microsoft Windows [Version 6.0.6002]
Copyright (c) 2006 Microsoft Corporation. All rights reserved.
C:Windowssystem32>ipconfig/all[code].....
View 4 Replies
View Related
Dec 14, 2012
I have a Compaq Evo N610c with XP Professional version 2002 SP3 that cannot connect to my internet connection. Has error that failed to query TCP/IP of the connections setting.
View 1 Replies
View Related
Sep 12, 2011
Currently I have Verizon DSL and which supplied me with a Westell 7500 modem/wireless router. I am also connecting a Linksys WRT54GS (firmware Version: 7.2.08) to the Westell 7500.
When I connect via cable or wireless to Linksys WRT54GS I am not able to establish VPN connection. I get the error “Error 619: A connection to the remote computer could not be established. So the port used for this connection was closed”.
However, when I connect via cable or wireless to Westell 7500 I am able to connect to VPN.
I tried resetting the Linksys WRT54GS to factory settings and reconfigured but no success to VPN.
At work we have a Windows 2003 setup with VPN Role on it and on my laptop I am using the built in VPN connection within Windows 7.
View 3 Replies
View Related
