Built-in Cisco VPN on Lion still doesn't work - and now neither does the Cisco Client :-(

Mac OS X's VPN has always been flaky, and getting it to work is more luck than science. I have to connect to a /12, which involved several false starts, and I have no idea how I managed to get it to eventually work. But FYI, mine's working fine on Lion with a 64-bit kernel, so that's not the problem. One other thing: There are some daemons involved in the VPN, and they can crash. If it worked and then a few minutes later stops working, a reboot will fix it (or you can figure out how to restart the service from a terminal). In fact, the service will crash after some configuration changes, meaning that no matter what you do after that point, it will always fail.

Tom,

If you are willing, I can ping you offline (if you give me an email address) and we can try to see if you can connect to my ASA. I will provide you with login details. That way we can figure out if this is an incompatability with Lion and the Cisco 3000 VPN.

Also, you might want to ask your network admin if there are any newer release of Cisco IOS he can try.

Another thought is to sign up with a free Cisco ID and ask on their discussion forums, posting the logs from the Cisco 3000.

Check out this link:

When going to a 64 bit OS (For me, it broke with Lion) the Cisco VPN no longer works because it is a 32 bit application.

http://jmilbery.wordpress.com/2011/07/26/cisco-vpn-with-macos-lion/

The native OS VPN works fine for me connecting to an ASA. Conencting to a VPN 3k concentrator can have mixed results, because they haven't updated those things in a while, and they will be end of support from Cisco next year.

The OS VPN can be configured in your network properties, and you get to stay in 64 bit mode.

tjwolf,

I'm having the exact same issue as you. My log looks almost identical in terms of it bombing during phase 2. We're also using a 3000 series concentrator.

If you get a resolution on this, please let me know!

Is the concentrator up to date with the latest Cisco Firmware? If not, I would start there first.

I am having a similar issue as everyone here. I have managed to get the built in VPN link to nearly work with my MacBook Pro running Lion. However, after I enter my log-on information I get this message after a brief pause.

The negotiation with the VPN server failed. Verify the server address and try reconnecting.

Is this something I can fix on my machine or is our hardware too lod for the Mac to connect to? I'm very new to the world of VPN and the tech supporting the Cisco 800 Series router doesn't no jack about macs (no surprise).

Any guidance would be helpful, Thanks.

This whole ordeal sounds incredibly similar to what I'm going through with our VPN. We're running a Cisco ASA 5505. I tried downloading Cisco AnyConnect 3.0.3054 but cannot get that to work at all. (By the way, you can download AnyConnect for free if you have a Cisco Service Agreement number.)

It looks like has gone dormant for a couple of weeks. Hopefully some updates will come through. I really need help with this problem!

I gave up on the builit-in client. I installed the open source Nortel VPNC client. Works perfectly.

http://www.macfreek.nl/mindmaster/VPNC_for_Nortel_on_Mac

Hi Tom,

I am having exactly the same issue as you on Lion 10.7.1

I am awaiting confirmation from our IT guys on the server type and firmware version.

Did you get this working ? if so can you tell me how.

Or I might have to install the Nortel VPNC client ??

many thanks

Mark

Not sure I understand. So you used PPTP to setup the VPN connection?