So, I installed Ubuntu 7.04 Feisty Fawn beta about 2 months ago. I installed it on my notebook and one of my workstations, both of which had Windows installed previously. I’m not dual booting on those machine, they’re 100% Ubuntu now.
After getting everything setup and running nicely, I realized I had no way of connecting to the Cisco PIX VPN we have at work. This is really important for me to be able to do, my job depends on it. I immediately went to Google and started searching. Turns out a nice fellow named Alexander Griesser has created a patch for the Cisco VPN client. The most recent CIsco VPN client for linux won’t compile with kernels 2.6.19 or newer. There’s really not much of a difference between his instructions and this how-to. However, I’m including more detailed instructions for those who may not be familiar with compiling software on Linux.
Here’s the steps I took to get the Cisco VPN Client to work under Unbutu 7.04 (Feisty Fawn). In all reality, this should work with any version of Ubuntu, not just 7.04. I used this same method to get the Cisco VPN Client working on Ubuntu 8.04. Note: A $ at the beginning of a line signifies a command to be run from the terminal.
- Download vpnclient-linux-4.8.00.0490-k9.tar.gz (mirror) to your home directory.
- Open a terminal window and untar the vpnclient with the following command:
$ tar xzf vpnclient-linux-4.8.00.0490-k9.tar.gz
This will create a new folder called vpnclient in your home directory. Leave the terminal window open, you’ll need it later. - Download the patch (mirror) and save it to the vpnclient folder that was created in step 2.
- Go back to your terminal window and move into the vpnclient folder:
$ cd vpnclient/ - Now patch the Cisco VPN source with this command:
$ patch < vpnclient-linux-2.6.22.diff - Next we actually build the Cisco VPN client, issue this command:
$ sudo ./vpn_install
Just hit enter for everything it asks you, the defaults are all OK. You may see lots of warnings, but those are OK. - The VPN client is installed, now we need to start it:
$ sudo /etc/init.d/vpnclient_init start - Place your .pcf configuration files in /etc/opt/cisco-vpnclient/Profiles/
- If your .pcf file is called myVPN.pcf, you’ll connect to the VPN with the following command:
$ sudo vpnclient connect myVPN
That’s it! You should now be able to connect to your Cisco VPN with the official Cisco VPN client on Linux. This will probably work on pretty much any linux setup, not just Ubuntu.
UPDATE (8/18/2007): Alexander Griesser released a new patch that works with kernel versions 2.6.22 and greater. The new patch is backwards compatible, so it also works with older kernels as well, such as 2.6.10 and 2.6.21. All the download links above point to the newest release of the patch. I’ll continue to update this how-to as he releases new patches.
UPDATE (10/04/2007): Cisco has finally released a new version of their vpn client for Linux. This new version compiles on all the new 2.6.xx kernels without the need for patching! You can download it from Alexander’s site or you can get it right here.
UPDATE (12/29/2007): Alexander Griesser has a new project page for his Cisco VPN client patches. It contains basic usage information and will most likely always have the latest and greatest patch available for download. In addition to that, Alexander has a new patch to make version 4.8.01.0640-k9 of the Cisco VPN Client compile on 64bit systems. Again, you can download the latest Cisco VPN Client for linux from the following link:
http://www.longren.org/downloads/vpnclient-linux-x86_64-4.8.01.0640-k9.tar.gz
(31 votes, average: 4.16 out of 5) 
Worked like a charm …first time …Ubuntu 7.10!
The last I tried I got bogged down and gave up… Thanks!
Hi,
I get following error when I try to install vpn
make[1]: Entering directory `/usr/src/linux-headers-2.6.24-16-generic’
CC [M] /home/rahuld/vpnclient/linuxcniapi.o
In file included from /home/rahuld/vpnclient/Cniapi.h:15,
from /home/rahuld/vpnclient/linuxcniapi.c:30:
/home/rahuld/vpnclient/GenDefs.h:113: error: conflicting types for ‘uintptr_t’
include/linux/types.h:40: error: previous declaration of ‘uintptr_t’ was here
make[2]: *** [/home/rahuld/vpnclient/linuxcniapi.o] Error 1
make[1]: *** [_module_/home/rahuld/vpnclient] Error 2
make[1]: Leaving directory `/usr/src/linux-headers-2.6.24-16-generic’
make: *** [default] Error 2
Failed to make module “cisco_ipsec.ko”.
Hi, got the cisco vpn installed on my Ubuntu Karmic machine with the help of http://ilapstech.blogspot.com/2009/09/cisco-vpn-client-on-karmic-koala.html#comment-form but now when I try to connect my computer freezes and the caps lock key blinks. Have to hard shutdown. This is all over wireless, when connected through ethernet, it seems to work find. Using kernel 2.6.31-12 and cisco vpn 4.8.01.0640. Anyone else have this problem or know of a solution?
Have the same problem, have a lenovo T400 laptop… anyone knows why this is happening?
The issue seems to be related to a kernel/cisco vpn issue. I get this as well on fedora 11. The vpn client worked well on ubuntu 9.04 but that has an older kernel. In my searching various forums, its definitely a kernel issue
This solution solved my issue: http://www.lamnk.com/blog/computer/cisco-vpn-client-freezes-system-with-dual-core-cpu/
thanks for the tips.
I’ve still got a problem, though: when I’m connected to the VPN I loose my internet connection
You may delete the default route and restore your previous default ISP route out. Then you can add your static routes:
#after connecting
ip route del default
ip route add 192.168.11.0/24 dev tun0 # for each subnet you need to access in the vpn ¿can I do this with network manager?
ip route add default via 192.168.1.1 # your gateway
Nice Article, I used VPN and it’s really user friendly!!
Hello,
I followed the instructions provided for 64bit Hardy Cisco VPN
by
http://forum.tuxx-home.at/viewtopic.php?f=15&t=543
and the installation gave no errors but when I tryed to start the program I got the following:
elina@FEMale:~/vpnclient$ sudo /etc/init.d/vpnclient_init start
Starting /opt/cisco-vpnclient/bin/vpnclient: insmod: error inserting ‘/lib/modules/2.6.22-16-generic/CiscoVPN/cisco_ipsec.ko’: -1999975736 Function not implemented
Failed (insmod)
And if I try to connect to VPN I have:
elina@FEMale:~/vpnclient$ sudo vpnclient connect sample
Cisco Systems VPN Client Version 4.8.01 (0640)
Copyright (C) 1998-2007 Cisco Systems, Inc. All Rights Reserved.
Client Type(s): Linux
Running on: Linux 2.6.22-16-generic #1 SMP Sun Jan 25 23:29:15 GMT 2009 x86_64
Config file directory: /etc/opt/cisco-vpnclient
Could not attach to driver. Is kernel module loaded?
The application was unable to communicate with the VPN sub-system.
Do you know how I can solve the problem??
thanks a lot
Upgraded to Jaunty and could not start the client, so I tried to reinstall, but failed. Here is the output:
lori@lori-laptop:~$ tar xfv vpnclient-linux-4.8.00.0490-k9.tar.gz
vpnclient/
vpnclient/libvpnapi.so
vpnclient/vpnapi.h
vpnclient/cisco_cert_mgr
vpnclient/vpnclient
vpnclient/ipseclog
vpnclient/cvpnd
vpnclient/vpn_install
vpnclient/vpnclient_init
vpnclient/vpn_uninstall
vpnclient/driver_build.sh
vpnclient/sample.pcf
vpnclient/vpnclient.ini
vpnclient/license.txt
vpnclient/license.rtf
vpnclient/interceptor.c
vpnclient/linuxcniapi.c
vpnclient/linuxcniapi.h
vpnclient/vpn_ioctl_linux.h
vpnclient/IPSecDrvOS_linux.c
vpnclient/linux_os.h
vpnclient/frag.h
vpnclient/frag.c
vpnclient/linuxkernelapi.c
vpnclient/GenDefs.h
vpnclient/mtu.h
vpnclient/IPSecDrvOSFunctions.h
vpnclient/IPSecDrvOS_linux.h
vpnclient/Cniapi.h
vpnclient/unixcniapi.h
vpnclient/unixkernelapi.h
vpnclient/config.h
vpnclient/libdriver.so
vpnclient/Makefile
lori@lori-laptop:~$ cp vpnclient-linux-2.6.22.diff vpnclient/
lori@lori-laptop:~$ cd vpnclient/
lori@lori-laptop:~/vpnclient$ patch < vpnclient-linux-2.6.22.diff
patching file frag.c
patching file interceptor.c
patching file IPSecDrvOS_linux.c
patching file linuxcniapi.c
patching file linux_os.h
lori@lori-laptop:~/vpnclient$ sudo ./vpn_install
Cisco Systems VPN Client Version 4.8.00 (0490) Linux Installer
Copyright (C) 1998-2005 Cisco Systems, Inc. All Rights Reserved.
By installing this product you agree that you have read the
license.txt file (The VPN Client license) and will comply with
its terms.
Directory where binaries will be installed [/usr/local/bin]
Automatically start the VPN service at boot time [yes]no
In order to build the VPN kernel module, you must have the
kernel headers for the version of the kernel you are running.
Directory containing linux kernel source code [/lib/modules/2.6.28-11-generic/build]
* Binaries will be installed in “/usr/local/bin”.
* Modules will be installed in “/lib/modules/2.6.28-11-generic/CiscoVPN”.
* The VPN service will *NOT* be started automatically at boot time.
* Kernel source from “/lib/modules/2.6.28-11-generic/build” will be used to build the module.
Is the above correct [y]
Making module
make -C /lib/modules/2.6.28-11-generic/build SUBDIRS=/home/lori/vpnclient modules
make[1]: Entering directory `/usr/src/linux-headers-2.6.28-11-generic’
CC [M] /home/lori/vpnclient/linuxcniapi.o
In file included from /home/lori/vpnclient/Cniapi.h:15,
from /home/lori/vpnclient/linuxcniapi.c:30:
/home/lori/vpnclient/GenDefs.h:113: error: conflicting types for ‘uintptr_t’
include/linux/types.h:40: error: previous declaration of ‘uintptr_t’ was here
make[2]: *** [/home/lori/vpnclient/linuxcniapi.o] Error 1
make[1]: *** [_module_/home/lori/vpnclient] Error 2
make[1]: Leaving directory `/usr/src/linux-headers-2.6.28-11-generic’
make: *** [default] Error 2
Failed to make module “cisco_ipsec.ko”.
lori@lori-laptop:~/vpnclient$ ls /lib/modules/2.6.28-11-generic/build
arch drivers init lib Module.symvers security
block firmware ipc Makefile net sound
crypto fs Kbuild mm samples ubuntu
Documentation include kernel modules.order scripts usr
lori@lori-laptop:~/vpnclient$
Luckily my vmware is working and have it installed there.
Many thanks.
How can I fix this error:
Making module
make -C /lib/modules/2.6.27-11-generic/build SUBDIRS=/home/henry/vpnclient modules
make[1]: Entering directory `/usr/src/linux-headers-2.6.27-11-generic’
CC [M] /home/henry/vpnclient/linuxcniapi.o
In file included from /home/henry/vpnclient/Cniapi.h:15,
from /home/henry/vpnclient/linuxcniapi.c:31:
/home/henry/vpnclient/GenDefs.h:113: error: conflicting types for ‘uintptr_t’
include/linux/types.h:40: error: previous declaration of ‘uintptr_t’ was here
make[2]: *** [/home/henry/vpnclient/linuxcniapi.o] Error 1
make[1]: *** [_module_/home/henry/vpnclient] Error 2
make[1]: Leaving directory `/usr/src/linux-headers-2.6.27-11-generic’
make: *** [default] Error 2
Failed to make module “cisco_ipsec.ko”.
Thanks.
You need to install the patch, as is instructed in step 5.
patch < vpnclient-linux-2.6.22.diff
then run the install.
Got the same problem, same kernel, patch doesn’t work for me.
Tried this version: http://www.longren.org/downloads/vpnclient-linux-x86_64-4.8.01.0640-k9.tar.gz
very nice thanks
Such a nice post it is :) It helped a lot! Thanks
I had tried installing the vpn client with or without the patch, but it just doesn’t work (see) error messages below:
In order to build the VPN kernel module, you must have the
kernel headers for the version of the kernel you are running.
Directory containing linux kernel source code [/lib/modules/2.6.27-11-generic/build]
* Binaries will be installed in “/usr/local/bin”.
* Modules will be installed in “/lib/modules/2.6.27-11-generic/CiscoVPN”.
* The VPN service will be started AUTOMATICALLY at boot time.
* Kernel source from “/lib/modules/2.6.27-11-generic/build” will be used to build the module.
Is the above correct [y]
Making module
make -C /lib/modules/2.6.27-11-generic/build SUBDIRS=/home/nightcrawler/Download/vpnclient modules
make[1]: Entering directory `/usr/src/linux-headers-2.6.27-11-generic’
CC [M] /home/nightcrawler/Download/vpnclient/linuxcniapi.o
In file included from /home/nightcrawler/Download/vpnclient/Cniapi.h:15,
from /home/nightcrawler/Download/vpnclient/linuxcniapi.c:31:
/home/nightcrawler/Download/vpnclient/GenDefs.h:113: error: conflicting types for ‘uintptr_t’
include/linux/types.h:40: error: previous declaration of ‘uintptr_t’ was here
make[2]: *** [/home/nightcrawler/Download/vpnclient/linuxcniapi.o] Error 1
make[1]: *** [_module_/home/nightcrawler/Download/vpnclient] Error 2
make[1]: Leaving directory `/usr/src/linux-headers-2.6.27-11-generic’
make: *** [default] Error 2
Failed to make module “cisco_ipsec.ko”.
Any suggestions?
I have the same problem.
Did you solve it?
Do you have any suggestions?
Thanks.
I was able to get the Cisco VPN client configured and installed on Ubuntu 8.10. I used this package – http://www.longren.org/downloads/vpnclient-linux-x86_64-4.8.01.0640-k9.tar.gz, and applied the patch from here : http://tuxx-home.at/projects/cisco-vpnclient/vpnclient-linux-2.6.22.diff and just followed the steps above. Creating the PCF / Profile was probably the hardest part. I’d probably recommend copying a working PCF from another system first.
It works fine from the CLI.
I also decided to look for a GUI, so I installed the KVpnc application which uses the vpnc package. I am also able to use it, but I simply imported the working PCF file that I used above. Seems pretty nice.
Thanks a lot!!!
Have you tried asking your network admins for the group password? I had the same problem, and just ended up asking them. They told me without hesitation. Of course, we use unique RSA logins for each connection, so it may be different where you’re at.
Thanks Rev. Dr., I ended up using KVpnc instead of the network manager. I would rather use the network manager as it is very simple and part of the standard network connection menu, but i don’t have the group key for my company as it is encrypted in the .pcf file, thus can’t get it working. If there is a work around please voice it. KVpnc is easy to set up, simply import the .pcf, put add the domain name on the configuration page, and you should be good to go….
I’ve been told that Hardy has the built-in GUI VPN stuff just like Intrepid.
# apt-get install network-manager-vpnc
Then just click on the network manager icon, go to VPN and configure away…
I’ve been trying to get a GUI app to work with this client, tried a few of them, does anyone use one, if please explain how to configure it. I’d like to use network manager if possible (running Hardy). Thanks in advance.
I’ve successfully installed Cisco VPN on my 64-bit machine running Ubuntu. I have the latest version of VPN (4.8.02). The patch was obtained from http://birdman.dynalias.org/CiscoVPN.
When I try to run it (e.g. sudo vpnclient connect myVPN, or just sudo vpnclient) I get a /usr/local/bin/vpnclient: No such file or directory. However, /usr/local/bin/vpnclient contains a link to /opt/cisco-vpnclient/bin/vpnclient. And this also exists. It seems as if something simple is not correct. ANy suggestions?
of course, I’m using intrepid. upgrade already, noobs :)
# apt-get install network-manager-vpnc
Network Manager -> VPN Connections -> Configure VPN
Point and click your way to productivity.
To disconnect, just hit +c in the terminal window where you ran the “sudo vpnclient” command.
I have just written a VPN installation script. It worked fine for me.
http://ubuntuforums.org/showthread.php?p=5725544&posted=1#post5725544
Chat
I followed all the instructions for the patch here and the installations seems to have been done without problems. But I get the following message when trying to connect:
faraz@hussain-machine:/etc/opt/cisco-vpnclient/Profiles$ sudo vpnclient connect ucf
Cisco Systems VPN Client Version 4.8.01 (0640)
Copyright (C) 1998-2007 Cisco Systems, Inc. All Rights Reserved.
Client Type(s): Linux
Running on: Linux 2.6.24-19-generic #1 SMP Fri Jul 11 23:41:49 UTC 2008 i686
Config file directory: /etc/opt/cisco-vpnclient
Initializing the VPN connection.
Secure VPN Connection terminated locally by the Client
Reason: Failed to establish a VPN connection.
There are no new notification messages at this time.
Any ideas?
Thanks.
Cisco recently released the new VPN Client that does not require patch and works under latest kernel. I have Ubuntu Hardy 8.04 and after installing the new client it works well.
1. Download the new client from Cisco’s website. You need an account to download that file.
http://www.cisco.com/pcgi-bin/tablebuild.pl?topic=270636499
There is an option to register on the page.
2. Untar the new file:
tar xvfz vpnclient-linux-x86_64-4.8.02.0030-k9.tar.gz
3. Open the new folder:
cd vpnclient/
4. Run the installer:
sudo ./vpn_install
5. Choose all of the default options.
6. Installation creates a service that will start upon reboot. The first time it needs to be started manually :
/etc/init.d/vpnclient_init start
7. Copy the .pcf profile file to:
/etc/opt/cisco-vpnclient/profiles
8. Connect to VPN from terminal window:
vpnclient connect “your profile name”
Following the instructions above worked for me perfectly and only took a couple of minutes. Good luck !
thanks for info… GOOOD.
Nope.
I have 2.6.24.19
downloaded and untared vpnclient-linux-4.8.00.0490-k9.tar.gz
ran patch <../vpnclient-linux-2.6.24.diff
and I get:
patching file GenDefs.h
patching file interceptor.c
Hunk #1 succeeded at 24 (offset -4 lines).
Hunk #2 succeeded at 75 (offset -4 lines).
Hunk #3 FAILED at 134.
Hunk #4 succeeded at 150 (offset -23 lines).
Hunk #5 succeeded at 321 (offset -23 lines).
Hunk #6 FAILED at 388.
Hunk #7 succeeded at 887 (offset -86 lines).
Hunk #8 succeeded at 929 (offset -86 lines).
2 out of 8 hunks FAILED — saving rejects to file interceptor.c.rej
tried running vpn_install anyway, and I get:
make -C /usr/src/linux-headers-2.6.24-19-generic/ SUBDIRS=/home/thomas/vpnclient modules
make[1]: Entering directory `/usr/src/linux-headers-2.6.24-19-generic’
CC [M] /home/thomas/vpnclient/linuxcniapi.o
/home/thomas/vpnclient/linuxcniapi.c:12:26: error: linux/config.h: No such file or directory
/home/thomas/vpnclient/linuxcniapi.c: In function ‘CniInjectReceive’:
/home/thomas/vpnclient/linuxcniapi.c:297: error: implicit declaration of function ‘skb_set_timestamp’
/home/thomas/vpnclient/linuxcniapi.c:331: error: ‘struct sk_buff’ has no member named ‘nh’
/home/thomas/vpnclient/linuxcniapi.c:332: error: ‘struct sk_buff’ has no member named ‘mac’
/home/thomas/vpnclient/linuxcniapi.c: In function ‘CniInjectSend’:
/home/thomas/vpnclient/linuxcniapi.c:454: error: ‘struct sk_buff’ has no member named ‘mac’
/home/thomas/vpnclient/linuxcniapi.c:455: error: ‘struct sk_buff’ has no member named ‘nh’
/home/thomas/vpnclient/linuxcniapi.c:458: error: ‘struct sk_buff’ has no member named ‘h’
/home/thomas/vpnclient/linuxcniapi.c:458: error: ‘struct sk_buff’ has no member named ‘nh’
make[2]: *** [/home/thomas/vpnclient/linuxcniapi.o] Error 1
make[1]: *** [_module_/home/thomas/vpnclient] Error 2
make[1]: Leaving directory `/usr/src/linux-headers-2.6.24-19-generic’
make: *** [default] Error 2
Failed to make module “cisco_ipsec.ko”.
The 4.8.01 release is for 64 usage only, isn’t it?
If you have build problems like Tom above – he gets stuff like this
Making module
make -C /lib/modules/2.6.20-16-generic/build SUBDIRS=/home/tmloos/programs/cisco vpn client/vpnclient modules
make[1]: Entering directory `/usr/src/linux-headers-2.6.20-16-generic’
make[1]: *** No rule to make target `vpn’. Stop.
make[1]: Leaving directory `/usr/src/linux-headers-2.6.20-16-generic’
make: *** [default] Error 2
Failed to make module “cisco_ipsec.ko”.
tmloos@frogger:~/programs/cisco vpn client/vpnclient$
tmloos@frogger:~/programs/cisco vpn client/vpnclient$ *** No rule to make target `vpn’. Stop.
Then you need a patch.
Go to this link
http://www.lamnk.com/blog/vpn/with-kernel-2624-you-will-need-a-patch-to-install-cisco-vpn-client/
for those of you having build problems like
/usr/src/vpnclient/GenDefs.h:113: error: conflicting types for ‘uintptr_t’
include/linux/types.h:40: error: previous declaration of ‘uintptr_t’ was here
See this link. You need a patch.
http://www.lamnk.com/blog/vpn/with-kernel-2624-you-will-need-a-patch-to-install-cisco-vpn-client/
Vedanta.
If you’re using ubuntu 8.04 64bit version.
you need to patch vpnclient-linux-2.6.24-final.diff in addition to this, cisco_skbuff_offset.patch.
this is an implied procedure for 64 bit system, though not clearly mentioned in the official blog. Anyway, this solves my problem.
regards
Hi,
I get following error when I try to install vpn
make[1]: Entering directory `/usr/src/linux-headers-2.6.24-16-generic’
CC [M] /home/rahuld/vpnclient/linuxcniapi.o
In file included from /home/rahuld/vpnclient/Cniapi.h:15,
from /home/rahuld/vpnclient/linuxcniapi.c:30:
/home/rahuld/vpnclient/GenDefs.h:113: error: conflicting types for ‘uintptr_t’
include/linux/types.h:40: error: previous declaration of ‘uintptr_t’ was here
make[2]: *** [/home/rahuld/vpnclient/linuxcniapi.o] Error 1
make[1]: *** [_module_/home/rahuld/vpnclient] Error 2
make[1]: Leaving directory `/usr/src/linux-headers-2.6.24-16-generic’
make: *** [default] Error 2
Failed to make module “cisco_ipsec.ko”.
make[1]: Entering directory `/usr/src/linux-headers-2.6.24-16-generic’
CC [M] /home/rahuld/vpnclient/linuxcniapi.o
In file included from /home/rahuld/vpnclient/Cniapi.h:15,
from /home/rahuld/vpnclient/linuxcniapi.c:30:
/home/rahuld/vpnclient/GenDefs.h:113: error: conflicting types for ‘uintptr_t’
include/linux/types.h:40: error: previous declaration of ‘uintptr_t’ was here
make[2]: *** [/home/rahuld/vpnclient/linuxcniapi.o] Error 1
make[1]: *** [_module_/home/rahuld/vpnclient] Error 2
make[1]: Leaving directory `/usr/src/linux-headers-2.6.24-16-generic’
make: *** [default] Error 2
Failed to make module “cisco_ipsec.ko”.
UbuntuHappy -
thanks for asking. as a matter of fact, i was working on this problem when i saw your comment.
i am able to compile after following the instructions on this page: http://forum.tuxx-home.at/viewtopic.php?f=15&t=543. i’m up to lib modules 2.6.24-19-generic.
now i can not establish a connection and receive this error on start up:
Cisco Systems VPN Client Version 4.8.01 (0640)
Copyright (C) 1998-2007 Cisco Systems, Inc. All Rights Reserved.
Client Type(s): Linux
Running on: Linux 2.6.24-19-generic #1 SMP Wed Jun 4 15:10:52 UTC 2008 x86_64
Config file directory: /etc/opt/cisco-vpnclient
WARNING:
Using the “pwd” option may allow other users
on this computer to see your password.
Initializing the VPN connection.
Secure VPN Connection terminated locally by the Client
Reason: Failed to establish a VPN connection.
There are no new notification messages at this time.
lsmod does show the ‘cisco_ipsec’ module has loaded.
i’m pretty much at a dead end. i’m not sure if there are any logs to review and the web has been clueless.
any help from anyone would be useful.
regards to all!
Yusuf,
Did you ever get Hardy working? I am running 64-bit Hardy and can not get the client loaded. Same error as you show above..
Nice shoot guys .. it fix the problem.
i’ll try the vpnc for now.
cheers
Oh thnak man..
Thanks good. I like it.
Thanks much!
I Updated my Ubuntu 6.10 to 7.04 and the VPN is Not connecting ,
How can i solve this
Starting /opt/cisco-vpnclient/bin/vpnclient: insmod: error inserting ‘/lib/modules/2.6.20-15-generic/CiscoVPN/cisco_ipsec.ko’: -1 Invalid module format
Failed (insmod)
john@john-desktop:/etc/opt/cisco-vpnclient/Profiles$
Regards
Varghese John
Chennai
tenkssss
HI, i followed directions for 8.04 and installed successfully, now im having an issue with computer crashing after about 10-15 min of use of vpn connect + rdesktop.
anyone else experiencing this issue?
I have tried all the above steps, But similar to others i am getting the error
Initializing the VPN connection.
Contacting the gateway at x.x.x.x
Contacting the gateway at x.x.x.x
Contacting the gateway at x.x.x.x
Secure VPN Connection terminated locally by the Client
Reason: Failed to establish a VPN connection.
Its trying for 3 servers. I have even enable the outgoing port for iptables. Still doesn’t work
Then i tried the vpnc client it did import the .pcf file successfully but when i connect it asks me first the user name/password which i enter and then it asks me for the password to open the certificate. My vpn profiles come with another folder “Certificates” with a couple of files.
I was not given any certificate password by the IT dept. Using the same password for the user name/password doesn’t help either.
Any help would be nice :)
i had this client working flawlessly on ubuntu 7.10. i think i made a bad mistake upgrading to ubuntu 8.04 because i can not recompile the source under the new libs.
please take a look at this snippet & let me know what you think:
Directory containing linux kernel source code [/lib/modules/2.6.24-16-generic/build]
* Binaries will be installed in “/usr/local/bin”.
* Modules will be installed in “/lib/modules/2.6.24-16-generic/CiscoVPN”.
* The VPN service will be started AUTOMATICALLY at boot time.
* Kernel source from “/lib/modules/2.6.24-16-generic/build” will be used to build the module.
Is the above correct [y]
Shutting down /opt/cisco-vpnclient/bin/vpnclient: module cisco_ipsec is not running.
Stopped: /etc/init.d/vpnclient_init (VPN init script)
Making module
make -C /lib/modules/2.6.24-16-generic/build SUBDIRS=/home/yusufg/vpn/distro/vpnclient modules
make[1]: Entering directory `/usr/src/linux-headers-2.6.24-16-generic’
scripts/Makefile.build:46: *** CFLAGS was changed in “/home/yusufg/vpn/distro/vpnclient/Makefile”. Fix it to use EXTRA_CFLAGS. Stop.
make[1]: *** [_module_/home/yusufg/vpn/distro/vpnclient] Error 2
make[1]: Leaving directory `/usr/src/linux-headers-2.6.24-16-generic’
make: *** [default] Error 2
Failed to make module “cisco_ipsec.ko”.
tia,
-y
thankyou
Sorry, it was a problem with the certificate. The tutorial rocks!!!
Thanks for the nice article and very helpful posts. I was able to get the cisco vpn client installed. (after applying the patch). However I am not able to connect. I get the following messages that several others reported:
Initializing the VPN connection.
Contacting the gateway at ******
Contacting the gateway at ******
Contacting the gateway at ******
Secure VPN Connection terminated locally by the Client
Reason: Failed to establish a VPN connection.
There are no new notification messages at this time.
After looking at the other posts, I tried to disable the ethernet interface.
>> sudo ifdown eth0
I get the following output:
ifdown: interface eth0 not configured
I am not able to get past this. Please help.
PS: I am linux newbe. I am establish a wireless connection. I have bluetooth adapter installed too. Could that be the cause of this problem? If yes, how can I disable it?
“Initializing the VPN connection.
Secure VPN Connection terminated locally by the Client
Reason: Failed to establish a VPN connection.
I am only connected via wifi, so I ran “sudo ifdown eth0″ and now I can connect.” – have a same thing :(
oh its just waht I need guys!
thanks for the tips.
I’ve still got a problem, though: when I’m connected to the VPN I loose my internet connection. “EnableLocalLAN=1″ in my *.pcf file does not work
Same problem using vpnc :(
thanks for the good post!
well good post dude! I liked it quite much. it helped me save hard work and time. therefore thanks quite a lot.
nice thank you
wery nice thanks
THANK YOU !! I have been trying to do this for quite some time, and today you just helped me make a gigantic leap away from M$ for good! Now if I can only convince the wife ;)
Worked like a charm …first time …Ubuntu 7.10!
The last I tried I got bogged down and gave up… Thanks!
If your VPN Client is behind a NATing firewall then try adding the following two options to your /etc/vpnc/default.conf (or other) config file:
NAT Traversal Mode cisco-udp
Cisco UDP Encapsulation Port 0
It worked for me when previously I got a VPN connection which passed no traffic. Now I’m using UDP NAT-T it works a treat!