Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: fellamelad
fellamelad Author
User level: Level 1
0 points

VPN issue on 10.8.5 - is there a way to do a full reset?

Regardless of where I am connected from (various different WIFI networks), I am not getting a login prompt for all of my VPN connections (all Cisco IPSec). This symptom only started manifesting aftrer I got my maboook back from Apple after a repair (logic board replacement). I can connect to the same VPNs using other devices. This is what system.log shows:


Oct 8 07:49:47 offline.local configd[16]: IPSec connecting to server 67.221.227.68

Oct 8 07:49:47 offline.local configd[16]: IPSec Phase1 starting.

Oct 8 07:49:47 offline.local configd[16]: SCNC: start, triggered by SystemUIServer, type IPSec, status 0

Oct 8 07:49:57 offline.local configd[16]: IPSec disconnecting from server 67.221.227.68

Oct 8 07:49:57 offline.local racoon[537]: IPSec disconnecting from server 67.221.227.68

Oct 8 07:49:57 offline.local configd[16]: VPN Connection: IPSec Error 7

Oct 8 07:49:58 offline.local racoon[537]: IPSec disconnecting from server 67.221.227.68


I have tried rebooting, creating a new location in networks, creating a new VPN profile, and nothing has worked. I'm hoping to not have to reinstall my full OS.


Thanks,

Keith

MacBook Pro, OS X Mountain Lion (10.8.5), VPN

Posted on Oct 8, 2013 4:58 AM

Reply
9 replies
User profile for user: Linc Davis
Linc Davis
User level: Level 10
209,541 points

Oct 8, 2013 10:18 AM in response to fellamelad

If you have more than one user account, you must be logged in as an administrator to carry out these instructions. I've tested them only with the Safari web browser. If you use another browser, they may not work as described.


Triple-click anywhere in the line below on this page to select it:

sudo launchctl list | grep NotificationC | open -ef


Copy the selected text to the Clipboard by pressing the key combination command-C.



Launch the Terminal application in any of the following ways:


☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)


☞ In the Finder, select Go Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.


☞ Open LaunchPad. Click Utilities, then Terminal in the icon grid.


Paste into the Terminal window by pressing the key combination command-V. You'll be prompted for your login password. Nothing will be displayed when you type it. If you don’t have a login password, you’ll need to set one before you can run the command. You may get a one-time warning not to screw up. Confirm. You don't need to post the warning.

If you see a message that your username "is not in the sudoers file," then you're not logged in as an administrator. Log in as one and start over.

Wait for a new line ending in a dollar sign (“$”) to appear.


A TextEdit window will open. If the command produced no output, the window will be empty. Post the contents of the TextEdit window (not the Terminal window), if any — the text, please, not a screenshot. The title of the window doesn't matter, and you don't need to post that.

Reply
User profile for user: fellamelad
fellamelad Author
User level: Level 1
0 points

Oct 8, 2013 10:31 AM in response to Linc Davis

HI Linc.


This is what comes out:


-0com.apple.UserNotificationCenter



Just FYI, I did run the following command a little earlier:


sudo launchctl load -w /System/Library/LaunchDaemons/com.apple.UserNotificationCenter.plist



which resolved the issue of not getting a message when I try to get a connection. Now I get the following message:


User uploaded file


The system log is on connection attempt shows:


Oct 8 13:29:33 offline.local configd[16]: IPSec connecting to server 64.106.168.36

Oct 8 13:29:33 offline.local configd[16]: IPSec Phase1 starting.

Oct 8 13:29:33 offline.local configd[16]: SCNC: start, triggered by System Preferen, type IPSec, status 0

Oct 8 13:29:43 offline.local configd[16]: IPSec disconnecting from server 64.106.168.36

Oct 8 13:29:43 offline.local racoon[581]: IPSec disconnecting from server 64.106.168.36

Oct 8 13:29:43 --- last message repeated 1 time ---

Reply
User profile for user: Linc Davis
Linc Davis
User level: Level 10
209,541 points

Oct 8, 2013 12:52 PM in response to fellamelad

Back up all data.

Make a note of all your settings in the Network preference pane.

Triple-click anywhere in the line below on this page to select it:

/Library/Preferences/SystemConfiguration

Right-click or control-click the highlighted line and select

Services Reveal

from the contextual menu.* A folder should open with an item named "SystemConfiguration" selected. Move the selected item to the Trash. You may be prompted for your administrator password.

Reboot and recreate your network settings. Test.

*If you don't see the contextual menu item, copy the selected text to the Clipboard (command-C). In the Finder, select

Go Go to Folder...

from the menu bar, paste into the box that opens (command-V). You won't see what you pasted because a line break is included. Press return.

Reply
User profile for user: fellamelad
fellamelad Author
User level: Level 1
0 points

Oct 8, 2013 3:30 PM in response to Linc Davis

I did as described above, recreated a couple of the VPN profiles, but am getting the same behavior and onscreen error:



Oct 8 18:26:11 localhost configd[17]: IPSec connecting to server 64.106.168.36

Oct 8 18:26:11 localhost configd[17]: IPSec Phase1 starting.

Oct 8 18:26:11 localhost configd[17]: SCNC: start, triggered by System Preferen, type IPSec, status 0

Oct 8 18:26:21 localhost configd[17]: IPSec disconnecting from server 64.106.168.36

Oct 8 18:26:21 localhost racoon[601]: IPSec disconnecting from server 64.106.168.36

Reply
User profile for user: fellamelad
fellamelad Author
User level: Level 1
0 points

Oct 11, 2013 5:20 AM in response to Linc Davis

This is how it seems (i.e. the problem only manifested after the return of the laptop). I did a time machine restore last night to the day it was returned, and the problem is still there. My next step is going to go back to the time machine backup pre-repair - unfortunately that's from July 31st, but it's really my only choice before having to do a full OS restore.


That being said, I don't think it's hardware related. I also discoverd last night that when I try to connect to an older UK TV VPN, it does seem to connect ok (I mean the user name is no longer valid, but the fact that VPN returns that info clearly shows its connecting - see below).


But yet other work VPNs (the ones I actually need) just have the previous issue - and yet i can connect fine to them on my other macbook (10.6, 2009 model), with the exact same settngs, on the same wifi network.




Oct 11 07:52:19 offline.local configd[17]: IPSec Phase1 starting.

Oct 11 07:52:19 offline.local racoon[597]: IPSec connecting to server 198.27.74.59

Oct 11 07:52:19 offline.local racoon[597]: Connecting.

Oct 11 07:52:19 offline.local racoon[597]: IPSec Phase1 started (Initiated by me).

Oct 11 07:52:19 offline.local racoon[597]: IKE Packet: transmit success. (Initiator, Aggressive-Mode message 1).

Oct 11 07:52:19 offline.local racoon[597]: IKEv1 Phase1 AUTH: success. (Initiator, Aggressive-Mode Message 2).

Oct 11 07:52:19 offline.local racoon[597]: IKE Packet: receive success. (Initiator, Aggressive-Mode message 2).

Oct 11 07:52:19 offline.local racoon[597]: IKEv1 Phase1 Initiator: success. (Initiator, Aggressive-Mode).

Oct 11 07:52:19 offline.local racoon[597]: IKE Packet: transmit success. (Initiator, Aggressive-Mode message 3).

Oct 11 07:52:19 offline.local racoon[597]: IPSec Phase1 established (Initiated by me).

Oct 11 07:52:19 offline.local racoon[597]: IPSec Extended Authentication requested.

Oct 11 07:52:19 offline.local configd[17]: IPSec requesting Extended Authentication.

Oct 11 07:52:19 offline.local configd[17]: IPSec sending Extended Authentication.

Oct 11 07:52:19 offline.local racoon[597]: IKE Packet: transmit success. (Mode-Config message).

Oct 11 07:52:19 offline.local racoon[597]: IPSec Extended Authentication sent.

Oct 11 07:52:19 offline.local racoon[597]: IKEv1 XAUTH: failed. (XAUTH Status is not OK).

Oct 11 07:52:19 offline.local racoon[597]: IPSec Extended Authentication Failed.

Oct 11 07:52:19 offline.local configd[17]: IPSec Controller: IKE FAILED. phase 3, assert 0

Oct 11 07:52:19 offline.local racoon[597]: IKE Packet: transmit success. (Mode-Config message).

Oct 11 07:52:19 offline.local racoon[597]: IKE Packet: transmit success. (Information message).

Oct 11 07:52:19 offline.local racoon[597]: IKEv1 Information-Notice: transmit success. (Delete ISAKMP-SA).

Oct 11 07:52:19 offline.local configd[17]: IPSec disconnecting from server 198.27.74.59

Oct 11 07:52:19 offline.local racoon[597]: IPSec disconnecting from server 198.27.74.59

Reply
User profile for user: fellamelad
fellamelad Author
User level: Level 1
0 points

Oct 15, 2013 10:44 AM in response to Linc Davis

I am happy to report that I fixed this problem. The problem was in the racoon configuration file (/etc/racoon/racoon.conf). I took the racoon.conf from a colleagues machine and replaced mine with it - the VPN started to connect again. On diffing I noticed this:



bash-3.2# diff racoon.conf racoon.conf.OLD

138c138

< include "/var/run/racoon/*.conf" ;

---

> #include "/var/run/racoon/*.conf" ;

139a140

> include "/etc/racoon/nsh-apple-settings.conf" ;



I am not sure how setting got changed, or what nsh-apple-settings is - but I will investigate. But regardless, problem is solved!

Reply

VPN issue on 10.8.5 - is there a way to do a full reset?

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up