Cisco VPN client can not connect with Linux ubuntu 6.10 - firewall ?

Folks,
I've tried everything, and even reinstalled latest ubuntu completely to
see if I can resolve this issue.


root@mybox:/home/mybox# uname -a
Linux mybox 2.6.17-10-generic #2 SMP Fri Oct 13 18:45:35 UTC 2006 i686
GNU/Linux

I succussfully install cisco vpn client 4.8 without any problem. I can
use /etc/init.d/vpnclient_init start to load the kernel module. When I
try to connect using "vpnclient connect myprofile" it

cisco Systems VPN Client Version 4.8.00 (0490)
Copyright (C) 1998-2005 Cisco Systems, Inc. All Rights Reserved.
Client Type(s): Linux
Running on: Linux 2.6.17-10-generic #2 SMP Fri Oct 13 18:45:35 UTC 2006
i686
Config file directory: /etc/opt/cisco-vpnclient

Initializing the VPN connection.
Contacting the gateway at 69.64.223.4
Secure VPN Connection terminated locally by the Client
Reason: Remote peer is no longer responding.
There are no new notification messages at this time.


I have another Linux box that uses Cisco vpn client 4.6 (patched) that
works fine through my Linksys router. So I can't say that the router is
blocking it or my ISP is blocking it.

So I suspect that my Ubuntu install has some sort of firewall running
that blocks the handshake to my company VPN.

I don't what proces that would be but could you look at the below list
of processes and let me know if there is anything resembling a firewall
that might be getting in the way ?



UID PID PPID C STIME TTY TIME CMD
root 1 0 0 18:38 ? 00:00:01 /sbin/init single
root 2 1 0 18:38 ? 00:00:00 [migration/0]
root 3 1 0 18:38 ? 00:00:00 [ksoftirqd/0]
root 4 1 0 18:38 ? 00:00:00 [watchdog/0]
root 5 1 0 18:38 ? 00:00:00 [migration/1]
root 6 1 0 18:38 ? 00:00:00 [ksoftirqd/1]
root 7 1 0 18:38 ? 00:00:00 [watchdog/1]
root 8 1 0 18:38 ? 00:00:00 [events/0]
root 9 1 0 18:38 ? 00:00:00 [events/1]
root 10 1 0 18:38 ? 00:00:00 [khelper]
root 11 1 0 18:38 ? 00:00:00 [kthread]
root 14 11 0 18:38 ? 00:00:00 [kblockd/0]
root 15 11 0 18:38 ? 00:00:00 [kblockd/1]
root 16 11 0 18:38 ? 00:00:00 [kacpid]
root 17 11 0 18:38 ? 00:00:00 [kacpi_notify]
root 134 11 0 18:38 ? 00:00:00 [kseriod]
root 175 11 0 18:38 ? 00:00:00 [pdflush]
root 176 11 0 18:38 ? 00:00:00 [pdflush]
root 177 1 0 18:38 ? 00:00:00 [kswapd0]
root 178 11 0 18:38 ? 00:00:00 [aio/0]
root 179 11 0 18:38 ? 00:00:00 [aio/1]
root 817 1 0 18:38 ? 00:00:00 [kirqd]
root 1725 11 0 18:38 ? 00:00:00 [ata/0]
root 1726 11 0 18:38 ? 00:00:00 [ata/1]
root 1731 11 0 18:38 ? 00:00:00 [scsi_eh_0]
root 1732 11 0 18:38 ? 00:00:00 [scsi_eh_1]
root 1733 11 0 18:38 ? 00:00:00 [scsi_eh_2]
root 1734 11 0 18:38 ? 00:00:00 [scsi_eh_3]
root 1831 11 0 18:38 ? 00:00:00 [khubd]
root 1941 11 0 18:38 ? 00:00:00 [kjournald]
root 2155 1 0 18:38 ? 00:00:00 /sbin/udevd --daemon
root 2918 11 0 18:38 ? 00:00:00 [shpchpd]
root 3005 11 0 18:38 ? 00:00:00 [kpsmoused]
root 3121 11 0 18:38 ? 00:00:00 [irda_sir_wq]
root 3163 1 0 18:38 ? 00:00:00 [pccardd]
root 3164 11 0 18:38 ? 00:00:00 [ipw3945/0]
root 3165 11 0 18:38 ? 00:00:00 [ipw3945/1]
root 3168 11 0 18:38 ? 00:00:00 [ipw3945/0]
root 3169 11 0 18:38 ? 00:00:00 [ipw3945/1]
root 3191 1 0 18:38 ? 00:00:00
/sbin/ipw3945d-2.6.17-10-generic --quiet
root 3459 11 0 18:38 ? 00:00:00 [kjournald]
root 3492 11 0 18:38 ? 00:00:00 [kjournald]
root 3494 11 0 18:38 ? 00:00:00 [kjournald]
root 3496 11 0 18:38 ? 00:00:00 [kjournald]
root 3499 11 0 18:38 ? 00:00:00 [kjournald]
dhcp 3542 1 0 18:38 ? 00:00:00 dhclient3 -pf
/var/run/dhclient.eth0.pid -lf /var/lib/dhcp3/dhclient.eth0.leases eth0
dhcp 3601 1 0 18:38 ? 00:00:00 dhclient3 -pf
/var/run/dhclient.eth1.pid -lf /var/lib/dhcp3/dhclient.eth1.leases eth1
root 3983 1 0 18:39 tty1 00:00:00 /sbin/getty 38400 tty1
root 3984 1 0 18:39 tty2 00:00:00 /sbin/getty 38400 tty2
root 3985 1 0 18:39 tty3 00:00:00 /sbin/getty 38400 tty3
root 3986 1 0 18:39 tty4 00:00:00 /sbin/getty 38400 tty4
root 3988 1 0 18:39 tty5 00:00:00 /sbin/getty 38400 tty5
root 3990 1 0 18:39 tty6 00:00:00 /sbin/getty 38400 tty6
root 4246 1 0 18:39 ? 00:00:00 /usr/sbin/acpid -c
/etc/acpi/events -s /var/run/acpid.socket
root 4349 1 0 18:39 ? 00:00:00 /sbin/syslogd
root 4381 1 0 18:39 ? 00:00:00 /bin/dd bs 1 if
/proc/kmsg of /var/run/klogd/kmsg
klog 4383 1 0 18:39 ? 00:00:00 /sbin/klogd -P
/var/run/klogd/kmsg
root 4411 1 0 18:39 ? 00:00:00 /usr/sbin/gdm
root 4412 4411 0 18:39 ? 00:00:00 /usr/sbin/gdm
root 4430 4412 8 18:39 tty7 00:01:21 /usr/X11R6/bin/X :0 -br
-audit 0 -auth /var/lib/gdm/:0.Xauth -nolisten tcp vt7
cupsys 4455 1 0 18:39 ? 00:00:00 /usr/sbin/cupsd
root 4478 1 0 18:39 ? 00:00:00 /usr/sbin/hpiod
hplip 4483 1 0 18:39 ? 00:00:00 python /usr/sbin/hpssd
103 4539 1 0 18:39 ? 00:00:00 /usr/bin/dbus-daemon
--system
106 4560 1 0 18:39 ? 00:00:01 /usr/sbin/hald
root 4561 4560 0 18:39 ? 00:00:00 hald-runner
106 4567 4561 0 18:39 ? 00:00:00
/usr/lib/hal/hald-addon-acpi
106 4569 4561 0 18:39 ? 00:00:00
/usr/lib/hal/hald-addon-keyboard
106 4608 4561 0 18:39 ? 00:00:00
/usr/lib/hal/hald-addon-storage
root 4628 1 0 18:39 ? 00:00:00 perl
/usr/share/system-tools-backends-2.0/scripts/SystemToolsBackends.pl
root 4661 1 0 18:39 ? 00:00:03 /usr/sbin/thinkpad-keys
root 4692 11 0 18:39 ? 00:00:00 [ondemand]
106 4704 4561 0 18:39 ? 00:00:00
/usr/lib/hal/hald-addon-keyboard
root 4725 1 0 18:39 ? 00:00:00 /usr/sbin/sshd
root 4771 1 0 18:39 ? 00:00:00 /usr/sbin/hcid -x
root 4775 1 0 18:39 ? 00:00:00 /usr/sbin/sdpd
root 4796 1 0 18:39 ? 00:00:00 [krfcommd]
daemon 4844 1 0 18:39 ? 00:00:00 /usr/sbin/atd
root 4863 1 0 18:39 ? 00:00:00 /usr/sbin/cron
myuserid 4976 4412 0 18:39 ? 00:00:00 x-session-manager
myuserid 5011 4976 0 18:39 ? 00:00:00 /usr/bin/ssh-agent
/usr/bin/dbus-launch --exit-with-session x-session-manager
myuserid 5014 1 0 18:39 ? 00:00:00 /usr/bin/dbus-launch
--exit-with-session x-session-manager
myuserid 5015 1 0 18:39 ? 00:00:00 /usr/bin/dbus-daemon
--fork --print-pid 8 --print-address 6 --session
myuserid 5017 1 0 18:39 ? 00:00:00
/usr/lib/libgconf2-4/gconfd-2 5
myuserid 5020 1 0 18:39 ? 00:00:00
/usr/bin/gnome-keyring-daemon
myuserid 5023 1 0 18:39 ? 00:00:00
/usr/lib/control-center/gnome-settings-daemon
myuserid 5032 1 0 18:39 ? 00:00:00 /bin/sh -c
/usr/bin/esd -terminate -nobeeps -as 1 -spawnfd 19
myuserid 5033 5032 0 18:39 ? 00:00:00 /usr/bin/esd
-terminate -nobeeps -as 1 -spawnfd 19
myuserid 5040 1 0 18:39 ? 00:00:02 /usr/bin/metacity
--sm-client-id=default0
myuserid 5045 1 0 18:39 ? 00:00:01 gnome-panel
--sm-client-id default1
myuserid 5047 1 0 18:40 ? 00:00:00 nautilus
--no-default-window --sm-client-id default2
myuserid 5051 1 0 18:40 ? 00:00:00
/usr/lib/bonobo-activation/bonobo-activation-server --ac-activate
--ior-output-fd=16
myuserid 5053 1 0 18:40 ? 00:00:00 gnome-volume-manager
--sm-client-id default4
myuserid 5060 1 0 18:40 ? 00:00:00
/usr/lib/gnome-vfs-2.0/gnome-vfs-daemon
myuserid 5066 1 0 18:40 ? 00:00:00 update-notifier
myuserid 5068 1 0 18:40 ? 00:00:00
/usr/lib/evolution/2.8/evolution-alarm-notify
myuserid 5079 1 0 18:40 ? 00:00:00 gnome-cups-icon
--sm-client-id default3
myuserid 5082 1 0 18:40 ? 00:00:00 gnome-power-manager
myuserid 5103 1 0 18:40 ? 00:00:00
/usr/lib/gnome-applets/trashapplet
--oaf-activate-iid=OAFIID:GNOME_Panel_TrashApplet_Factory
--oaf-ior-fd=21
myuserid 5123 1 0 18:40 ? 00:00:00
/usr/lib/nautilus-cd-burner/mapping-daemon
myuserid 5137 1 0 18:40 ? 00:00:00
/usr/lib/gnome-netstatus/gnome-netstatus-applet
--oaf-activate-iid=OAFIID:GNOME_NetstatusApplet_Factory --oaf-ior-fd=25
myuserid 5139 1 0 18:40 ? 00:00:00
/usr/lib/gnome-applets/mixer_applet2
--oaf-activate-iid=OAFIID:GNOME_MixerApplet_Factory --oaf-ior-fd=31
myuserid 5158 1 0 18:40 ? 00:00:00 gnome-screensaver
myuserid 5160 1 3 18:40 ? 00:00:29
/usr/lib/firefox/firefox-bin
myuserid 5305 1 0 18:45 ? 00:00:01 konsole
myuserid 5312 1 0 18:45 ? 00:00:00 kdeinit Running...
myuserid 5317 1 0 18:45 ? 00:00:00 dcopserver [kdeinit]
--nosid --suicide
myuserid 5320 5312 0 18:45 ? 00:00:00 klauncher [kdeinit]
myuserid 5322 1 0 18:45 ? 00:00:00 kded [kdeinit]
myuserid 5329 5305 0 18:45 pts/0 00:00:00 /bin/bash
myuserid 5372 1 0 18:46 ? 00:00:00 knotify [kdeinit]
myuserid 5380 1 0 18:46 ? 00:00:00 /usr/bin/artsd -F 10
-S 4096 -s 60 -m artsmessage -l 3 -f
root 5445 5329 0 18:47 pts/0 00:00:00 su
root 5448 5445 0 18:47 pts/0 00:00:00 bash
root 5656 5448 0 18:55 pts/0 00:00:00 ps -aef

(E-Mail Removed) wrote:
> Linux mybox 2.6.17-10-generic #2 SMP Fri Oct 13 18:45:35 UTC 2006 i686
> GNU/Linux

> I succussfully install cisco vpn client 4.8 without any problem.
> [...But...]

> Initializing the VPN connection.
> Contacting the gateway at 69.64.223.4
> Secure VPN Connection terminated locally by the Client
> Reason: Remote peer is no longer responding.
> There are no new notification messages at this time.

I abandoned the CISCO client way back when I upgraded to a 2.4 kernel.
Since then I've been happily using the third-party alternative "vpnc".
Might that help you?

$ uname -a
Linux zzz 2.6.17.6-zzz #1 PREEMPT Mon Jul 24 12:11:26 BST 2006 i686 GNU/Linux

Chris

Chris Davies wrote:
> (E-Mail Removed) wrote:
>> Linux mybox 2.6.17-10-generic #2 SMP Fri Oct 13 18:45:35 UTC 2006 i686
>> GNU/Linux
>
>> I succussfully install cisco vpn client 4.8 without any problem.
>> [...But...]
>
>> Initializing the VPN connection.
>> Contacting the gateway at 69.64.223.4
>> Secure VPN Connection terminated locally by the Client
>> Reason: Remote peer is no longer responding.
>> There are no new notification messages at this time.
>
> I abandoned the CISCO client way back when I upgraded to a 2.4 kernel.
> Since then I've been happily using the third-party alternative "vpnc".
> Might that help you?
>
> $ uname -a
> Linux zzz 2.6.17.6-zzz #1 PREEMPT Mon Jul 24 12:11:26 BST 2006 i686 GNU/Linux
>
> Chris

I am also using vpnc-0.3.3-13.fc6 (actually came with my distro fc6),
and have no problems connecting to our Cisco environment.

Good Luck,
Rick