From owner-freebsd-net@FreeBSD.ORG  Thu Oct 16 23:57:37 2003
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 98C4A16A4B3
	for <net@freebsd.org>; Thu, 16 Oct 2003 23:57:37 -0700 (PDT)
Received: from mail.a-quadrat.at (mail.a-quadrat.at [81.223.141.10])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7B53143F3F
	for <net@freebsd.org>; Thu, 16 Oct 2003 23:57:34 -0700 (PDT)
	(envelope-from mbretter@a-quadrat.at)
Received: from BRUTUS.a-quadrat.at (brutus.a-quadrat.at [192.168.90.60])
	by files.a-quadrat.at (Postfix) with ESMTP
	id AD8455C05D; Fri, 17 Oct 2003 08:58:32 +0200 (CEST)
Date: Fri, 17 Oct 2003 08:57:30 +0200
	(=?ISO-8859-15?Q?Westeurop=E4ische_Sommerzeit?=)
From: Michael Bretterklieber <mbretter@a-quadrat.at>
To: Brett Glass <brett@lariat.org>
In-Reply-To: <6.0.0.22.2.20031016160155.038eca38@localhost>
Message-ID: <Pine.WNT.4.58.0310170849560.2664@BRUTUS>
References: <6.0.0.22.2.20031016160155.038eca38@localhost>
X-X-Sender: mbretter@mail
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
cc: net@freebsd.org
Subject: Re: Connecting to Cisco VPN concentrator
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Oct 2003 06:57:37 -0000

Hi,

On Thu, 16 Oct 2003, Brett Glass wrote:
> Trouble is, as soon as the Cisco VPN client fires up on his Windows
> machine, it blocks the PPTP or PPPoE connection. In short, it strangles
> itself by cutting off the link over which it must connect. With the
> machine no longer able to reach the Internet, the VPN connection can't
> work, and everything falls apart.
>
maybe the Cisco client is disabling IP-Forwarding on the Windows machine,
I've seen this with a similar client software from Checkpoint (it refuses
the installation if IP-Fowarding is enabled).

One of my customers is using such client software from cisco, but there
were no problems, I just had to open UDP port 500 (isakmp), but this
customer has a leased line with a router and no PPTP/PPPoE connection must
be established when connecting to the internet.

sorry,
bye,
--
------------------------------- ----------------------------------
Michael Bretterklieber          - http://www.bretterklieber.com
A-Quadrat Automation GmbH       - http://www.a-quadrat.at
Tel: ++43-(0)3172-41679         - GSM: ++43-(0)699 12861847
------------------------------- ----------------------------------
"...the number of UNIX installations has grown to 10, with more
expected..." - Dennis Ritchie and Ken Thompson, June 1972