[c-nsp] L2TP/IPsec OSX client disconnection after 45 minutes
Antonio Soares
amsoares at netcabo.pt
Wed Jan 9 12:11:20 EST 2013
Hello group,
Does anyone has run into this bug ?
++++++++++++++++++++++++++++++++++
CSCsh67528 Bug Details
L2TP/IPsec OSX client disconnection after 45 minutes when NAT-T in used
Symptom:
L2TP/IPsec OSX client disconnects after 45 minutes
Conditions:
If NAT is in the middle and NAT-T is negotiated.
Workaround:
Use latest MacOS Client 10.7.3 and ASA version above
8.2.5.21, 8.3.2.29 or 8.4.3.
Further Problem Description:
The OSX side fails to rekey the Phase 1 as initiated by the ASA
++++++++++++++++++++++++++++++++++
Cisco claims that this is an Apple issue. In fact, it seems it is but no
solution seems to be available:
https://discussions.apple.com/thread/3275811?start=30&tstart=0
The workaround mentioned in the apple site doesn't work. The problem happens
with MacOS 10.5.8, 10.6.7 and 10.7.5.
Any experiences with this ? Any kind of workarounds ?
Thanks.
Regards,
Antonio Soares, CCIE #18473 (R&S/SP)
amsoares at netcabo.pt
http://www.ccie18473.net
More information about the cisco-nsp
mailing list