Caveats resolved in release 4.0.4.d – ISEKI CISCO SYSTEMS OL-5450-10 User Manual
Page 63
63
Release Notes for VPN Client, Release 4.0 through Release 4.0.5.D
OL-5450-10
Caveats Resolved in Release 4.0.4.D
The client should allow users to just enter the CertName field in the profile.
The VPN Client should not force the use of SubjectName, as it is long and
hard to enter in the profile. The CertName field for the above subject name
looks like:
CertName=Test1
•
CSCef17800
If you want the DNS suffix to be appended to the actual list, you will have to
add AppendOriginalSuffix=1 in the vpnclient.ini file. Otherwise the existing
DNS suffixes are overwritten by default. The purpose of this DDTS is to
change this default.
Caveats Resolved in Release 4.0.4.D
Release 4.0.4.D resolves the following issues:
•
CSCdv54087
When connected over a PPP connection using any of the Linux, Solaris, or
Mac VPN Clients, the Excluded networks do not allow traffic to the network
directly connected to the workstations ethernet adapters.
The EnableLocalLan keyword combined with the proper Concentrator Group
configuration should allow the client to pass traffic to the workstations local
ethernet network. An issue with the client prevents traffic only to the network
directly attached to the workstation. Other networks excluded from the
tunnel pass traffic normally.
•
CSCea65854
VPN Clients should exclude all local networks with wildcard push.
The VPN Client feature to push the 0.0.0.0/0.0.0.0 wildcard during the
excluded networks negotiation only excludes the network currently
connected to the VPN Concentrator. The client SHOULD be excluding ALL
local interfaces and networks.
If a user has Ethernet and PPP and dials in to connect to a group with a
wildcard exclude, they will only exclude their PPP interfaces network. The
Ethernet network is NOT excluded.