Tuesday, March 6, 2012

CISCO VPN Client Log Collection Guide

Follow this blog which will help you to collect logs from CISCO VPN Client.








Common Errors
Common Error Messages for VPN 3000
Error Type: Invalid Server Name
Used "vpnx.llnl.gov", which does not exist in the server list, to generate this error
User Authentication Prompt?: No
Client Response:
Secure VPN Connection terminated locally by the Client.
Reason 403: Unable to contact the secure gateway.
Log Excerpt:
Unable to resolve server address "vpnx.llnl.gov"
Error Type: Incorrect Server Name
Used "vpn1.llnl.gov", which is a VPN 5000 server, to generate this error
User Authentication Prompt?: No
Client Response:
Secure VPN Connection terminated locally by the Client.
Reason 412: The remote peer is no longer responding.
Log Excerpt:
DEL_REASON_PEER_NOT_RESPONDING
Error Type: IPSec pass-through protocol disabled
Disabled IPSec pass-trhough protocol in the Linksys WRT54G router (Security tab > VPN) to generate this error
User Authentication Prompt?: No
Client Response:
Secure VPN Connection terminated locally by the Client.
Reason 412: The remote peer is no longer responding.
Log Excerpt:
DEL_REASON_PEER_NOT_RESPONDING
Error Type: Invalid Group Name
Used "groupb", which does not exist in the group list, to generate this error
User Authentication Prompt?: No
Client Response:
Secure VPN Connection terminated locally by the Client.
Reason 412: The remote peer is no longer responding.
Log Excerpt:
DEL_REASON_PEER_NOT_RESPONDING
Error Type: Incorrect Group Name
Used "vpn-llnlc", which is the VPN-C group name, with a VPN account to generate this error
User Authentication Prompt?: Yes
Client Response:
Secure VPN Connection terminated locally by the Client.
Reason 413: User authentication failed.
Log Excerpt:
DEL_REASON_WE_FAILED_AUTH
Error Type: Incorrect Group Password
Used "notagood", which is not a valid password for the llnl-vpn group, to generate this error
User Authentication Prompt?: No
Client Response:
Secure VPN Connection terminated locally by the Client.
Reason 403: Unable to contact the secure gateway.
Log Excerpt:
Sev=Warning/3 IKE/0xC3000056
The received HASH payload cannot be verified

Sev=Warning/2 IKE/0xC300007D
Hash verification failed... may be configured with invalid group password.

Sev=Warning/2 IKE/0xC3000099
Failed to authenticate peer (Navigator:899)

DEL_REASON_IKE_NEG_FAILED
Error Type: Incorrect Username
Used "smith99@llnl.gov", which is not an OUN, to generate this error
User Authentication Prompt?:
Yes. User is prompted 3 times to enter username and password and receives this error after the third failure.
Client Response:
Secure VPN Connection terminated locally by the Client.
Reason 413: User authentication failed.
Log Excerpt:
Sev=Info/4 CM/0x43100015
Launch xAuth application

Sev=Info/4 CM/0x43100017
xAuth application returned

DEL_REASON_WE_FAILED_AUTH
Error Type: Incorrect User Password
Used an invalid PIN and a valid token code to generate this error
User Authentication Prompt?:
Yes. User is prompted 3 times to enter username and password and receives this error after the third failure.
Client Response:
Secure VPN Connection terminated locally by the Client.
Reason 413: User authentication failed.
Log Excerpt:
Sev=Info/4 CM/0x43100015
Launch xAuth application

Sev=Info/4 CM/0x43100017
xAuth application returned

DEL_REASON_WE_FAILED_AUTH


3 comments:

  1. This post might be useful to you all since cisco do not provide this information online.

    ReplyDelete
  2. Thanks.Very useful post.Check this link.
    top10-bestvpn.com

    ReplyDelete
  3. Thank you.Good solution for VPN client.Connection works fine.
    http://10webhostingservice.com/

    ReplyDelete