Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
14580 Views 25 Replies Latest reply: Oct 9, 2012 4:37 PM by orosales RSS 1 2 3 Previous Next
bperez Apprentice 128 posts since
Nov 9, 2009
Currently Being Moderated

Jul 13, 2010 9:39 AM

Approved VPN Clients

Im confused about what VPN Client must be used, to make a Client to Gateway VPN. Since McAfee does not have a VPN Client and in datasheets of MFE does not have any comments about the need to make another purchase of 3rd Party VPN Clients. Like a Sales People and Tech Engineer, i am worried and confused, about that. I think McAfee must support or aquire a Good VPN Client to Make a Good solution of VPN Concentrator.

 

If somebody know or work with a known good vpn client please let me know.

 

Regards

Bernardo

  • oreeh Apprentice 76 posts since
    Nov 24, 2009
    Currently Being Moderated
    1. Jul 13, 2010 9:45 AM (in response to bperez)
    Re: Approved VPN Clients

    The Shrewsoft VPN client works (http://www.shrew.net/download) as does the Safenet Softremote client.

  • sliedl McAfee SME 535 posts since
    Nov 3, 2009
    Currently Being Moderated
    2. Jul 13, 2010 9:45 AM (in response to bperez)
    Re: Approved VPN Clients

    Bernardo,

     

    Just like oreeh said, ShrewSoft and SoftRemote work.  Here are some KB articles:

     

    We have a few knowledgebase articles about VPN clients and the Sidewinder:

    KB64156 - Support for VPN clients

    KB64323 - How to create a VPN using the GreenBow client

    KB67215 - How to create a VPN using the ShrewSoft client

    KB64219 - How to create a VPN using the SoftRemote client

  • oreeh Apprentice 76 posts since
    Nov 24, 2009
    Currently Being Moderated
    4. Jul 13, 2010 9:52 AM (in response to bperez)
    Re: Approved VPN Clients

    > Shrewsoft is free right?

     

    Right!

  • PhilM Champion 528 posts since
    Jan 7, 2010
    Currently Being Moderated
    5. Jul 19, 2010 5:23 AM (in response to sliedl)
    Re: Approved VPN Clients

    The Shrewsoft KB article doesn't seem to exist.

     

    I've tried searching for:-

    • Shrewsoft
    • KB67215
    • KB 67215
    • 67215

     

    The other articles all seem to be present and correct.

  • mtuma McAfee SME 314 posts since
    Nov 3, 2009
    Currently Being Moderated
    6. Jul 19, 2010 6:36 AM (in response to PhilM)
    Re: Approved VPN Clients

    It looks like KB67215 is available only to registered users. Have you tried to login first?

  • PhilM Champion 528 posts since
    Jan 7, 2010
    Currently Being Moderated
    7. Jul 19, 2010 6:46 AM (in response to mtuma)
    Re: Approved VPN Clients

    You're absolutely correct. I've logged in and now I can find it.

  • sliedl McAfee SME 535 posts since
    Nov 3, 2009
    Currently Being Moderated
    9. Jul 20, 2010 11:17 AM (in response to bperez)
    Re: Approved VPN Clients

    Bernardo,

     

    What version of the ShrewSoft client are you using?  This is very important.

     

    I see these messages in your audit:

     

    (These messages mean the Sidewinder is waiting for a reply but is not receiving it)

    2010-07-20 09:29:06 -0500 f_isakmp_daemon a_vpn t_info p_minor
    pid: 1815 logid: 0 cmd: 'ikmpd' hostname: Firewall.microton.mx
    vpn_name: Bernardo cky_i: 9cef314417bb4857 cky_r: 4b32f928d2f9f482
    msg_id: e7b116bb local_gw: 172.17.11.3 remote_gw: 200.52.207.184
    information: Message timed out for XAUTH negotiation in state: REPLY_WAIT... retransmitting

     

    2010-07-20 09:28:21 -0500 f_isakmp_daemon a_vpn t_info p_minor
    pid: 1815 logid: 0 cmd: 'ikmpd' hostname: Firewall.microton.mx
    vpn_name: Bernardo cky_i: 0b9439a8017cea20 cky_r: c76988e1ba3834e7
    local_gw: 172.17.11.3 remote_gw: 200.52.207.184
    remote_id: CN=Bernardo,O=Microton,L=GDL,ST=JAL,C=MX
    information: [detailed info]
      [info]
        AGGRESSIVE_MODE exchange terminated - Extended authentication failed
      [info]
        XAUTH exchange terminated - XAUTH negotiation timed out (retransmission threshold reached)

     

    This may be caused by the version of ShrewSoft you are using.  If you are using the correct version, you will have to troubleshoot on the ShrewSoft side why it is not transmitting this XAUTH packet.

1 2 3 Previous Next

More Like This

  • Retrieving data ...

Bookmarked By (2)

Legend

  • Correct Answers - 5 points
  • Helpful Answers - 3 points