Snow Leopard and built-in CISCO VPN access

same here. stuck with UDP not TCP.

I'd like to keep this thread alive. I was very disappointed when the built-in Cisco VPN client wouldn't connect to my office network, but we're also using IPSec over UDP. The standalone Cisco client works great though. Come on Apple, surely you spent enough time with the Cisco clients to know that there's more than IPSec over TCP.

I have the same need. IPSec over UDP... please add it Apple.

I have the same need. Have to use old client until IPSec over UDP is supported. Bit of a let down. Hoping for an update soon.

This forum is User-to-User and except for some forum admin staff is not monitored by Apple decision makers.

I encourage you to send Feedback to Apple via:
<http://www.apple.com/feedback

same problems here, very disappointing

Why is it that my iPhone can connect to my Exchange 2003 server, and my Cisco VPN, but my macs can't?

Loving a lot of the other SL tweaks though.

\half? a golf clap for Apple

BobHarris wrote:
This forum is User-to-User and except for some forum admin staff is not monitored by Apple decision makers.

I encourage you to send Feedback to Apple via:
< http://www.apple.com/feedback

True, but my guess is if enough folks post here a need, the thread will get noticed.

And +1 for me, my company also uses IPSec over UDP so the new support SL is no good for me. 😟

PDA Guy wrote:

BobHarris wrote:
This forum is User-to-User and except for some forum admin staff is not monitored by Apple decision makers.

I encourage you to send Feedback to Apple via:
< http://www.apple.com/feedback

True, but my guess is if enough folks post here a need, the thread will get noticed.

And +1 for me, my company also uses IPSec over UDP so the new support SL is no good for me. 😟

Posting here is like watching TV and wishing for a cold drink vs going to the kitchen and getting one. The very easy to use Feedback web page will be more effective.

Meanwhile, the latest version of the Cisco VPN Utility seems to work just fine on SL, it's just the SL install replaces the bits of Mac OS X the Cisco install replaces.

Ask your IT department for a copy (due to encryption regulations, it's illegal for Cisco to post a copy directly to the Internet.)

I just noticed that my Cisco VPN Client doesn't work with Snow Leopard. It complains about not being able to communicate with the VPN Subsystem.

I hadn't heard that Snow Leopard included a VPN client.

There is something wrong with it, as it doesn't accept our shared-secret (it says it's incorrect).

And even WORSE (for me), the ASDM connection to my Cisco ASA is crashing, so I can't connect and watch the syslog. Just lovely.

Most IPSec tunnels use UDP, with TCP being optional (as I understand).

Message was edited by: Forrest

Try reinstalling your Cisco client. I had the same error and a reinstall did the trick.

I first contacted Cisco, who responded saying that computer-to-ipsec was being deprecated in favor of the new AnyConnect code. FYI.

Reinstalling the Cisco VPN Client did indeed work (thank you!).

The Cisco VPN connector that is provided with Snow Leopard doesn't work -- it says my shared-secret is incorrect. From this error I'm going to guess that Apple assumed that the IKE proposals and/or encryption would be standardized (if so, bad assumption).

Ideally, we should be able to go in to an advanced configuration area of the connection and tweak these settings accordingly.

Perhaps we should file a bug report with Apple.

I'm getting the following exception when trying to start ASDM -- it's looking for apple.laf.ScreenMenuBar:

----------------------------------------------------
ASDM Application Logging Started at Sun Aug 30 16:19:38 PDT 2009
---------------------------------------------
Local Launcher Version = 1.5.30
Local Launcher Version Display = 1.5(30)
OK button clicked
Trying for ASDM Version file; url = https://xx.xx.xx.xx/admin/
Server Version = 6.1(1)
Server Launcher Version = 1.5.30, size = 319488 bytes
invoking SGZ Loader..
Cache location = /Users/xxxxxx/.asdm/cache
Exception in thread "SGZ Loader: launchSgzApplet" java.lang.NoClassDefFoundError: apple/laf/ScreenMenuBar
at java.lang.Class.getDeclaredMethods0(Native Method)
at java.lang.Class.privateGetDeclaredMethods(Class.java:2427)
at java.lang.Class.getMethod0(Class.java:2670)
at java.lang.Class.getMethod(Class.java:1603)
at javax.swing.UIDefaults.getUI(UIDefaults.java:748)
at javax.swing.UIManager.getUI(UIManager.java:1025)
at d9.updateUI(Unknown Source)
at javax.swing.JMenuBar.<init>(JMenuBar.java:95)
at eb.<init>(Unknown Source)
at d9.<init>(Unknown Source)
at d9.<init>(Unknown Source)
at d9.<init>(Unknown Source)
at ti.<init>(Unknown Source)
at th.<init>(DashoA10*..:355)
at l0.a(DashoA10*..:320)
at l0.<init>(DashoA10*..:271)
at com.cisco.pdm.PDMApplet.start(DashoA10*..:159)
at com.cisco.nm.dice.loader.r.run(DashoA19*..:410)
Caused by: java.lang.ClassNotFoundException: apple.laf.ScreenMenuBar
at com.cisco.nm.dice.loader.l.loadClass(DashoA19*..:246)
at java.lang.ClassLoader.loadClass(ClassLoader.java:254)
at java.lang.ClassLoader.loadClassInternal(ClassLoader.java:399)
... 18 more

I also have this problem and would like to know the best way to have it fixed. I am able to connect no problem thru the VPN (the built-into-Snow-Leopard-one) but when I try loading up the ASDM it just hangs and the log shows the same problem.

Has anyone been able to fix the problem?

While the Cisco VPN supports IPSEC over UDP and TCP, the default connection is over UDP. The Snow Leopard must be using IPSEC over UDP as my connections are all IPSEC over UDP. Tcpdump shows UDP connections while connected. Snow Leopard does not support IPSEC over TCP. The Official Apple Support doc is here.
http://manuals.info.apple.com/enUS/NetworkSvcsv10.6.pdf


In any case, if anyone still needs the Mac VPN Client, they can get it here.
http://www.mowie.com/pub/vpnclient-darwin-4.9.01.0180-universal-k9.dmg