[c-nsp] iPad IPSEC to 1841 router - communication failed - FSM error

Marc Haber mh+cisco-nsp at zugschlus.de
Wed May 2 14:42:06 EDT 2012


Hi,

after discussing in private e-mail, the issue could be solved:

On Sun, Apr 08, 2012 at 10:52:59AM +0200, Marc Haber wrote:
> crypto isakmp client configuration group InternClient200910
>  key <snip>
>  dns 10.1.2.11 10.1.2.45
>  domain internal.example
>  pool ippool
>  acl DefaultrouteTunnel

The iPad chokes on Shared Keys that contain double quotes (substituted
them with a different special character), and doesn't like a
split-tunnel ACL on the configuration, even if it is an "permit any
any" ACL. Removing that fixed things as well.

In practice, I left the InternClient200910 configuration group alone
and established a new InternIpad201204 configuration group with a
key that doesn't have double quotes and without a split tunnel ACL.
The missing split tunnel ACL means losing some functionality, but I
didn't manage to do it any better.

Greetings
Marc

-- 
-----------------------------------------------------------------------------
Marc Haber         | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany  |  lose things."    Winona Ryder | Fon: *49 621 31958061
Nordisch by Nature |  How to make an American Quilt | Fax: *49 621 31958062


More information about the cisco-nsp mailing list