ISEKI CISCO SYSTEMS OL-5450-10 User Manual

Page 41

Advertising
background image

41

Release Notes for VPN Client, Release 4.0 through Release 4.0.5.D

OL-5450-10

Open Caveats

CSCdu81905

When connecting to a VPN 3000 Concentrator over PPPoE using the
EnterNet 300 client software from Efficient Networks, Inc., if a firewall is
required by the VPN Concentrator, the following message might appear:

“The Client did not match any of the Concentrator's firewall configurations...”

If this message appears, click OK and then click Connect. The connection to
the VPN Concentrator then proceeds successfully.

CSCdu83054

If you make connections from the command line interface, the following
problem can occur. When a firewall is required to connect and the firewall
fails or is shut down, you do not see any message giving the reason for the
lost connection.

CSCdu86399

If you use the VPN Client with a Digital Certificate and your Client sits
behind a Cable/DSL router or some other NAT device, you might not be able
to connect to your VPN Gateway device (that is, the VPN 3000
Concentrator). The problem is not with the VPN Client or the Gateway; it is
with the Cable/DSL router. When the VPN Client uses a Digital Certificate,
it sends the Certificate to the VPN Gateway. Most of the time, the packet with
the Certificate is too big for a standard Ethernet frame (1500), so it is
fragmented. Many Cable/DSL routers do not transmit fragmented packets, so
the connection negotiation fails (IKE negotiation).

This problem might not occur if the Digital Certificate you are using is small
enough, but this is only in rare cases. This fragmentation problem happens
with the D-Link DI-704 and many other Cable/DSL routers on the market. We
have been in contact with a few of these vendors to try to resolve the issue.

Testing with the VPN Client Release 3.1 indicates that VPN Client
connections using Digital Certificates can be made using the following
Cable/DSL routers with the following firmware:

Linksys BEFSRxx v1.39 or v1.40.1

SMC 7004BR Barricade R1.93e

Nexland Pro400 V1 Rel 3M

NetGear RT314 V3.24(CA.0)

Asante FR3004 V2.15 or later

Advertising
Popular Brands
Popular manuals