Cisco vpnclient versions 4.6.02.0030 & 4.6.03.0190 fails on kernels Linux kutina 2.6.13-suspend2-r5-CrysBlade #1 Sun Oct 23 21:05:00 CEST 2005 i686 Mobile Intel(R) Pentium(R) 4 - M CPU 1.80GHz GenuineIntel GNU/Linux & 2.6.12-suspend2-r4-StarDust. I tried to find problem, but with no success. I discovered that not even single packet is sent. So propably the problem is on module/kernel core interface Reproducible: Always Steps to Reproduce: 1./etc/init.d/vpnclient 2.vpnclient connect <profile> 3. Actual Results: Cisco Systems VPN Client Version 4.6.02 (0030) Copyright (C) 1998-2004 Cisco Systems, Inc. All Rights Reserved. Client Type(s): Linux Running on: Linux 2.6.13-suspend2-r5-CrysBlade #1 Sun Oct 23 21:05:00 CEST 2005 i686 Config file directory: /etc/opt/cisco-vpnclient Enter Certificate password: Initializing the VPN connection. Secure VPN Connection terminated locally by the Client Reason: Bad Parameter. There are no new notification messages at this time. Expected Results: Start connection to defined address Cisco Systems VPN Client Version 4.6.02 (0030) Copyright (C) 1998-2004 Cisco Systems, Inc. All Rights Reserved. Client Type(s): Linux Running on: Linux 2.6.13-suspend2-r5-CrysBlade #1 Sun Oct 23 21:05:00 CEST 2005 i686 Config file directory: /etc/opt/cisco-vpnclient 1 01:11:01.417 10/24/2005 Sev=Warning/3 CLI/0x83900004 Unable to purge old log files. Function returned -1. 2 01:11:01.435 10/24/2005 Sev=Info/4 CVPND/0x4340001F Privilege Separation: restoring MTU on primary interface. 3 01:11:01.436 10/24/2005 Sev=Info/4 CVPND/0x4340000F Started cvpnd: Cisco Systems VPN Client Version 4.6.02 (0030) Copyright (C) 1998-2004 Cisco Systems, Inc. All Rights Reserved. Client Type(s): Linux Running on: Linux 2.6.13-suspend2-r5-CrysBlade #1 Sun Oct 23 21:05:00 CEST 2005 i686 4 01:11:02.422 10/24/2005 Sev=Info/4 IPSEC/0x43700014 Deleted all keys 5 01:11:02.422 10/24/2005 Sev=Info/4 IPSEC/0x43700008 IPSec driver successfully started 6 01:11:02.422 10/24/2005 Sev=Info/4 IPSEC/0x43700014 Deleted all keys 7 01:11:02.422 10/24/2005 Sev=Info/4 IPSEC/0x43700014 Deleted all keys 8 01:11:02.422 10/24/2005 Sev=Info/4 IPSEC/0x4370000A IPSec driver successfully stopped 9 01:11:02.422 10/24/2005 Sev=Info/4 CLI/0x43900002 Started vpnclient: Cisco Systems VPN Client Version 4.6.02 (0030) Copyright (C) 1998-2004 Cisco Systems, Inc. All Rights Reserved. Client Type(s): Linux Running on: Linux 2.6.13-suspend2-r5-CrysBlade #1 Sun Oct 23 21:05:00 CEST 2005 i686 10 01:11:02.895 10/24/2005 Sev=Info/4 CM/0x43100002 Begin connection process 11 01:11:02.895 10/24/2005 Sev=Warning/2 CVPND/0x83400011 Error -28 sending packet. Dst Addr: 0xC0A864FF, Src Addr: 0xC0A86463 (DRVIFACE:1200). 12 01:11:02.895 10/24/2005 Sev=Warning/2 CVPND/0x83400011 Error -28 sending packet. Dst Addr: 0xC0A8C8FF, Src Addr: 0xC0A8C801 (DRVIFACE:1200). 13 01:11:02.895 10/24/2005 Sev=Warning/2 CVPND/0x83400011 Error -28 sending packet. Dst Addr: 0xC0A897FF, Src Addr: 0xC0A89701 (DRVIFACE:1200). 14 01:11:02.895 10/24/2005 Sev=Warning/2 CVPND/0x83400011 Error -28 sending packet. Dst Addr: 0xC0A896FF, Src Addr: 0xC0A89601 (DRVIFACE:1200). 15 01:11:02.895 10/24/2005 Sev=Info/4 CM/0x43100004 Establish secure connection using Ethernet 16 01:11:02.895 10/24/2005 Sev=Info/5 CM/0x43100025 Initializing CVPNDrv 17 01:11:02.895 10/24/2005 Sev=Info/4 CVPND/0x4340001F Privilege Separation: restoring MTU on primary interface. 18 01:11:03.894 10/24/2005 Sev=Info/4 IPSEC/0x43700008 IPSec driver successfully started 19 01:11:03.894 10/24/2005 Sev=Info/4 IPSEC/0x43700014 Deleted all keys 20 01:11:03.894 10/24/2005 Sev=Info/4 IPSEC/0x43700014 Deleted all keys 21 01:11:03.894 10/24/2005 Sev=Info/4 IPSEC/0x43700014 Deleted all keys 22 01:11:03.894 10/24/2005 Sev=Info/4 IPSEC/0x4370000A IPSec driver successfully stopped 23 01:11:05.894 10/24/2005 Sev=Info/4 CVPND/0x4340000C Stopped service: 24 01:11:05.895 10/24/2005 Sev=Info/4 CVPND/0x4340001F Privilege Separation: restoring MTU on primary interface.
Can you try using vanilla-sources or gentoo-sources? I cannot support every random patchset out there.
(In reply to comment #1) > Can you try using vanilla-sources or gentoo-sources? I cannot support every > random patchset out there. I'm sorry but the computer I use is a notebook and suspend2 is very important for me. Please don't be confused by kernel name - it's standart 2.6.13-suspend2-r5 from portage. And the diference against gentoo-sources is only suspend2 (Software Suspend 2 + Gentoo patchset sources). I tried to compile the cisco vpnclient against standart gentoo-sources-2.4.28 which I use on my FW but it didnt even compile.
OK... the point is that you really should try to contact Cisco on this instead. If there is already a patch available for this (even from 3rd-party sources) then I have no problem adding the patch, but there isn't much I can really do to resolve this myself. One thing you cold try is upgrading the version of your client to the latest version.
I know it's been forever, but is this still an issue with newer kernels/client? You never really responded to that request, so I'm going to assume that it *is* fixed. If it is not, feel free to REOPEN this bug.