L.A.M.N.K

Comments 79

1. blackninjavirus wrote:

   It Works ! ! !

   Posted 27 Oct 2009 at 6:09 pm ¶
2. lesser wrote:

   Great! Works like a charm in Karmic. Thanks.

   Posted 01 Nov 2009 at 8:36 am ¶
3. Duncan wrote:

   Hi Managed to finally get it installed using the above method but as soon as I try and do some work RDP, SSh etc either my screen freezies with scroll and caps lock flashing, or my whole PC just reboots.

   Im using Karmic Koala.

   Posted 02 Nov 2009 at 9:45 am ¶
4. boynas wrote:

   Compiles and the kernel module starts no problem, but when trying to connect:

   vpnclient connect xxxx

   it gives me a:
   “bash: /usr/local/bin/vpnclient: No such file or directory”

   error message.

   Any ideas?

   Posted 02 Nov 2009 at 10:38 am ¶
5. Lamnk wrote:

   @Duncan: does your cpu have 2 cores ? Try to turn one core off.

   @boynas: did you “make install” ? Try “which vpnclient”, or “sudo updatedb” then “locate vpnclient”, it will show you location of the file.

   Posted 02 Nov 2009 at 5:38 pm ¶
6. boynas wrote:

   installing lsb-core solved my issue… I also have the problem where kernel panics if I use the Wifi, but that is not new to karmic or 2.6.31 Is been like that for ever..

   How do you turn a core off?? loading a different kernel?

   Posted 02 Nov 2009 at 9:52 pm ¶
7. Lamnk wrote:

   See my link over there. Generally:

   sudo echo 0 > /sys/devices/system/cpu/cpu1/online

   Posted 03 Nov 2009 at 5:46 am ¶
8. pgngp wrote:

   I was having the same issue. The VPN connection caused abrupt shut down of my dual core laptop. So I followed your suggestion and disabled one core. Now the VPN connection is working fine.

   Thank you so much for this post! It saved me so much time and effort!

   Posted 03 Nov 2009 at 3:48 pm ¶
9. Pops wrote:

   Turn off the core, that is what I need to do. No other way around it? What is the sense of having dual core if I can only use one. Just making a comment, sux we have to do this to get this to work….

   Posted 05 Nov 2009 at 6:39 am ¶
10. Lamnk wrote:

    Yep, if you want/have to stick with Cisco's client. I know this sucks. Use vpnc instead.

    Posted 07 Nov 2009 at 4:08 pm ¶
11. Daniel wrote:

    Great post!!! You save a life today! XD

    Posted 12 Nov 2009 at 8:29 pm ¶
12. Mikkel wrote:

    Thanks for this great tip. It also works on Karmic 32-bit (only I didn't apply the 64-bit patch). You saved my day

    Posted 20 Nov 2009 at 12:49 am ¶
13. John Barker wrote:

    You are a godsend. Thank you so much!

    Posted 20 Nov 2009 at 3:26 pm ¶
14. boynas wrote:

    With my computer, it doesn't matter if I turn the core off or not.

    Posted 21 Nov 2009 at 1:15 pm ¶
15. jpcjpc69 wrote:

    Unfortunately I'm getting an error. I'm running 64bit ubuntu and when I run the installer I get the following errors:
    make -C /lib/modules/2.6.31-14-generic/build SUBDIRS=/home/jpc/Downloads/Callahan/vpnclient modules
    make[1]: Entering directory `/usr/src/linux-headers-2.6.31-14-generic'
    CC [M] /home/jpc/Downloads/Callahan/vpnclient/linuxcniapi.o
    CC [M] /home/jpc/Downloads/Callahan/vpnclient/frag.o
    CC [M] /home/jpc/Downloads/Callahan/vpnclient/IPSecDrvOS_linux.o
    CC [M] /home/jpc/Downloads/Callahan/vpnclient/interceptor.o
    /home/jpc/Downloads/Callahan/vpnclient/interceptor.c: In function ‘interceptor_init’:
    /home/jpc/Downloads/Callahan/vpnclient/interceptor.c:132: error: ‘struct net_device’ has no member named ‘hard_start_xmit’
    /home/jpc/Downloads/Callahan/vpnclient/interceptor.c:133: error: ‘struct net_device’ has no member named ‘get_stats’
    /home/jpc/Downloads/Callahan/vpnclient/interceptor.c:134: error: ‘struct net_device’ has no member named ‘do_ioctl’
    /home/jpc/Downloads/Callahan/vpnclient/interceptor.c: In function ‘add_netdev’:
    /home/jpc/Downloads/Callahan/vpnclient/interceptor.c:271: error: ‘struct net_device’ has no member named ‘hard_start_xmit’
    /home/jpc/Downloads/Callahan/vpnclient/interceptor.c:272: error: ‘struct net_device’ has no member named ‘hard_start_xmit’
    /home/jpc/Downloads/Callahan/vpnclient/interceptor.c: In function ‘remove_netdev’:
    /home/jpc/Downloads/Callahan/vpnclient/interceptor.c:294: error: ‘struct net_device’ has no member named ‘hard_start_xmit’
    make[2]: *** [/home/jpc/Downloads/Callahan/vpnclient/interceptor.o] Error 1
    make[1]: *** [_module_/home/jpc/Downloads/Callahan/vpnclient] Error 2
    make[1]: Leaving directory `/usr/src/linux-headers-2.6.31-14-generic'
    make: *** [default] Error 2
    Failed to make module “cisco_ipsec.ko”.

    Posted 24 Nov 2009 at 8:04 am ¶
16. levy wrote:

    I have applied your method with vpnclient-linux-x86_64-4.8.02.0030-k9
    on ubuntu 9.10 (kernel 2.6.31).
    The vpnclient is compiled, I can connect BUT after a few seconds it stops.
    Note that vpnclient works perfectly on windows vista in the same context.

    Posted 25 Nov 2009 at 1:08 am ¶
17. levy wrote:

    I have a log, whose I give only the end, of the exchange between my vpnclient
    and the vpn server :
    155 09:52:27.111 11/25/2009 Sev=Info/4 IPSEC/0×43700013
    Delete internal key with SPI=0x0e67e746

    156 09:52:27.111 11/25/2009 Sev=Info/4 IPSEC/0x4370000C
    Key deleted by SPI 0x0e67e746

    157 09:52:27.111 11/25/2009 Sev=Info/4 IPSEC/0×43700013
    Delete internal key with SPI=0x2fd7d005

    158 09:52:27.111 11/25/2009 Sev=Info/4 IPSEC/0x4370000C
    Key deleted by SPI 0x2fd7d005

    159 09:52:27.111 11/25/2009 Sev=Info/4 IKE/0x4300004B
    Discarding IKE SA negotiation (I_Cookie=2FD0FE0BC5567AC3 R_Cookie=4301C5DEF1C976
    A2) reason = DEL_REASON_PEER_NOT_RESPONDING

    160 09:52:27.111 11/25/2009 Sev=Info/4 CM/0×43100013
    Phase 1 SA deleted cause by DEL_REASON_PEER_NOT_RESPONDING. 0 Crypto Active IKE
    SA, 0 User Authenticated IKE SA in the system

    161 09:52:27.111 11/25/2009 Sev=Info/4 CVPND/0x4340001C
    Privilege Separation: restoring resolv.conf file.

    162 09:52:27.113 11/25/2009 Sev=Info/4 CVPND/0x4340001D
    Privilege Separation: chown( /etc/resolv.conf, uid=0, gid=0 ).

    163 09:52:27.113 11/25/2009 Sev=Info/5 CM/0×43100025
    Initializing CVPNDrv

    164 09:52:27.113 11/25/2009 Sev=Info/6 CM/0×43100031
    Tunnel to headend device c-vpn-pub.imag.fr disconnected: duration: 0 days 0:3:41

    165 09:52:27.113 11/25/2009 Sev=Info/4 CVPND/0x4340001F
    Privilege Separation: restoring MTU on primary interface.

    166 09:52:27.115 11/25/2009 Sev=Info/4 IKE/0×43000001
    IKE received signal to terminate VPN connection

    167 09:52:27.116 11/25/2009 Sev=Info/6 CM/0×43100037
    The routing table was returned to original state prior to Virtual Adapter

    168 09:52:27.137 11/25/2009 Sev=Info/4 CM/0×43100035
    The Virtual Adapter was disabled

    169 09:52:27.138 11/25/2009 Sev=Warning/3 CM/0x8310000C
    State violation caused by ABORT EVENT at IDLE STATE

    170 09:52:27.138 11/25/2009 Sev=Info/4 CVPND/0x4340000C
    Stopped service:

    171 09:52:27.138 11/25/2009 Sev=Info/4 CVPND/0x4340001F
    Privilege Separation: restoring MTU on primary interface.

    Posted 25 Nov 2009 at 3:08 am ¶
18. pgngp wrote:

    I had a similar problem on my Ubuntu 9.10 on my 32-bit laptop. Then I tried vpnc and it worked great. So I suggest you try the vpnc client. It works without issues on dual cores as well.

    Posted 25 Nov 2009 at 6:58 am ¶
19. levy wrote:

    vpnc is convenient for people which don't use a certificate but a login password authentication.
    But I need vpnclient cisco to connect to my office.
    Now I use Windows fo that.
    What is strange on this patched version is that I can connect from an
    internal address 10.6.6.6 and not from an external address
    129.88….
    So I can connect via the vpn when it's not necessary for me : strange situation.

    Posted 25 Nov 2009 at 7:10 am ¶
20. pavel wrote:

    Thank God, it finally worked. Thanks so much for this guide.

    Posted 25 Nov 2009 at 2:48 pm ¶
21. JaC wrote:

    GREAAATT!!!!! Thank You Very MUCH!!!!!! You save my life!!! …

    Posted 27 Nov 2009 at 6:07 am ¶
22. henzq wrote:

    same here for me. tnx so much

    Posted 03 Dec 2009 at 2:45 pm ¶
23. David Evenson wrote:

    Awesome. Thank you!

    Posted 11 Dec 2009 at 12:10 pm ¶
24. gfb wrote:

    hello,

    I've followed this procedure and unfortunately I cannot get the cisco vpn client (vpnclient-linux-x86_64-4.8.02.0030-k9) to work with my ubuntu (2.6.31-17)

    $ sudo /etc/init.d/vpnclient_init start
    Starting /opt/cisco-vpnclient/bin/vpnclient: insmod: error inserting '/lib/modules/2.6.31-17-generic/CiscoVPN/cisco_ipsec.ko': -1 Invalid module format
    Failed (insmod)

    please help!
    many thanks

    Posted 14 Dec 2009 at 5:49 am ¶
25. Lamnk wrote:

    Look like you have problem with the module. In your vpnclient folder type sudo make clean && make. What does the program complain ?

    Posted 14 Dec 2009 at 7:52 am ¶
26. nixcc wrote:

    Thanks man. A previous allowed me to install the VPN client, but since I've upgraded to Karmic and didn't expect the errors outlined above.

    Posted 14 Dec 2009 at 7:24 pm ¶
27. agolikov wrote:

    Thanks! It works!
    2.6.31-16-generic #53-Ubuntu SMP Tue Dec 8 04:01:29 UTC 2009 i686 GNU/Linux

    Posted 15 Dec 2009 at 6:15 am ¶
28. robswarbrick wrote:

    Many thanks for your streamlined and really-easy-to-follow steps; that adds the sugar on top of the work from tuxx (and thanks to them as well for the investigation).

    Posted 16 Dec 2009 at 6:59 pm ¶
29. Lamnk wrote:

    It's not true. Vpnc do support hybrid authentication (certificate + xauth). Due to license problem vpnc can not be distributed with SSL support out of the box but as an end user you can compile and use it yourself.

    Posted 16 Dec 2009 at 8:08 pm ¶
30. sandyxxx wrote:

    but .from now on ,i know that ,there still have some one care of the comment which have wealth of information.

    am i right?

    Hot deals–

    Posted 21 Dec 2009 at 2:29 am ¶
31. Name wrote:

    Even though the tutorial says “Download patch file for 64 bit and apply it (**users on 32bit systems can skip this step**):” you should do it. I tried several times, finally with 64 bit patch and ONLY then it worked as a charm. (Linux user-desktop 2.6.31-16-generic #53-Ubuntu SMP Tue Dec 8 04:01:29 UTC 2009 i686 GNU/Linux————Ubuntu 9.10 Karmic Koala)

    Posted 21 Dec 2009 at 12:30 pm ¶
32. levy wrote:

    It's a strange recipe and it does not work for me.
    I have always the same problem : the connection is established and then cut in less than 10 seconds.
    I see the message
    Bienvenue a IMAG(cert group)
    Do you wish to continue ?(y/n)
    And after I receive sometime packets during at most 10 seconds.

    Posted 21 Dec 2009 at 1:43 pm ¶
33. Lamnk wrote:

    There may be two reasons for that.

    1. Your firewall. Turn it off and see whether the problem still occurs.
    2. Flaky net connection.

    Posted 21 Dec 2009 at 4:25 pm ¶
34. levy wrote:

    Thes two reasons are not valid in my case
    1 Firewall : I have no firewall on my computer, I can connect with the vpn client Cisco on this computer with XP vista and with the vpn client linux (fedora core 7) on an old PC.
    2 Flaky net connection ; I don't think so. I am connected by CPL to my
    modem-router and the connection seems good.

    Posted 22 Dec 2009 at 12:49 am ¶
35. antikeyloggerantikeylogger wrote:

    This is my first comment but I feel like I should have been making loads of comments now because I always like your stuff. Maybe comments are for more hit and miss blogs than your own. When you maintain a consistent level of high quality output I reckon people are less inclined to comment because they have come to expect it from you. Just a theory.

    Never really occurred to me to leave a comment on the designboom weblog.. i mean sure, i read you guys everyday, but the posts i find interesting i fave or bookmark or share the url to others, rather than clicking the comment link.

    It's good to know your stand towards this comment thing going on. I've visited some design sites before that I find have repetitive comments from visitors, might be one of those you were pertaining to.

    I find I respect designboom more for the lack of comment obsession

    Antikeylogger

    anti keylogger

    Posted 22 Dec 2009 at 10:08 pm ¶
36. Kevin wrote:

    Currently experiencing issues getting the vpnclient up and running on Sabayon5 64-bit.

    Linux sabayon64 2.6.31-sabayon #1 SMP Fri Sep 25 19:28:33 UTC 2009 x86_64 Intel(R) Core(TM)2 Duo CPU T7500 @ 2.20GHz GenuineIntel GNU/Linux

    I have applied both patches and try to run the ./vpn_install and get:

    Making module
    make -C /lib/modules/2.6.31-sabayon/build SUBDIRS=/home/whitey/Downloads/vpnclient modules
    make[1]: Entering directory `/usr/src/linux-2.6.31-sabayon'
    make[1]: *** No rule to make target `modules'. Stop.
    make[1]: Leaving directory `/usr/src/linux-2.6.31-sabayon'
    make: *** [default] Error 2
    Failed to make module “cisco_ipsec.ko”.

    Now one thing I should mention is your sed line did not take and produced the error:

    sabayon64 vpnclient # sed -i 's/const struct net_device_ops *netdev_ops;/struct net_device_ops *netdev_ops;/' `find /usr/src -name netdevice.h`
    sed: no input files

    Any ideas? I have gotten this installed plenty of times before but there always seems to be a fair amount of massaging that needs to take place before teh beast comes alive. P.S. I do know abt the turning off one core trick to bring stability to the client once I do get it installed.

    TIA

    Posted 23 Dec 2009 at 8:33 am ¶
37. Kevin wrote:

    Ok so I got this installed on my Sabayon VM running under VMware workstation by installing the sabayon-sources adn linux-sabayon packages but when I go back to the host (same OS release) I get the following error:

    Is the above correct [y]

    Making module
    make -C /lib/modules/2.6.31-sabayon/build SUBDIRS=/root/vpnclient modules
    make[1]: Entering directory `/usr/src/linux-2.6.31-sabayon'
    CC [M] /root/vpnclient/linuxcniapi.o
    gcc: error trying to exec 'as': execvp: No such file or directory
    /root/vpnclient/linuxcniapi.c: In function ‘CniGetMacAddress’:
    /root/vpnclient/linuxcniapi.c:134: warning: pointer targets in assignment differ in signedness
    /root/vpnclient/linuxcniapi.c: In function ‘CniInjectReceive’:
    /root/vpnclient/linuxcniapi.c:314: warning: pointer targets in passing argument 4 of ‘CniGetPacketData’ differ in signedness
    /root/vpnclient/Cniapi.h:354: note: expected ‘PCHAR’ but argument is of type ‘unsigned char *’
    /root/vpnclient/linuxcniapi.c: In function ‘CniInjectSend’:
    /root/vpnclient/linuxcniapi.c:463: warning: pointer targets in passing argument 4 of ‘CniGetPacketData’ differ in signedness
    /root/vpnclient/Cniapi.h:354: note: expected ‘PCHAR’ but argument is of type ‘unsigned char *’
    make[2]: *** [/root/vpnclient/linuxcniapi.o] Error 2
    make[1]: *** [_module_/root/vpnclient] Error 2
    make[1]: Leaving directory `/usr/src/linux-2.6.31-sabayon'
    make: *** [default] Error 2
    Failed to make module “cisco_ipsec.ko”.

    I am at a loss. I installed it identical to the way I did it in my VM. All signs seem to point at the 'as' assembler not being found. A which as reports nothing. I see a as86 binary in the /usr/bin directory and have tried symbolic link trickery to no avail.

    Hints?

    Posted 23 Dec 2009 at 10:17 am ¶
38. Kevin wrote:

    Currently experiencing issues getting the vpnclient up and running on Sabayon5 64-bit.

    Linux sabayon64 2.6.31-sabayon #1 SMP Fri Sep 25 19:28:33 UTC 2009 x86_64 Intel(R) Core(TM)2 Duo CPU T7500 @ 2.20GHz GenuineIntel GNU/Linux

    I have applied both patches and try to run the ./vpn_install and get:

    Making module
    make -C /lib/modules/2.6.31-sabayon/build SUBDIRS=/home/whitey/Downloads/vpnclient modules
    make[1]: Entering directory `/usr/src/linux-2.6.31-sabayon'
    make[1]: *** No rule to make target `modules'. Stop.
    make[1]: Leaving directory `/usr/src/linux-2.6.31-sabayon'
    make: *** [default] Error 2
    Failed to make module “cisco_ipsec.ko”.

    Now one thing I should mention is your sed line did not take and produced the error:

    sabayon64 vpnclient # sed -i 's/const struct net_device_ops *netdev_ops;/struct net_device_ops *netdev_ops;/' `find /usr/src -name netdevice.h`
    sed: no input files

    Any ideas? I have gotten this installed plenty of times before but there always seems to be a fair amount of massaging that needs to take place before teh beast comes alive. P.S. I do know abt the turning off one core trick to bring stability to the client once I do get it installed.

    TIA

    Posted 23 Dec 2009 at 4:33 pm ¶
39. Kevin wrote:

    Ok so I got this installed on my Sabayon VM running under VMware workstation by installing the sabayon-sources adn linux-sabayon packages but when I go back to the host (same OS release) I get the following error:

    Is the above correct [y]

    Making module
    make -C /lib/modules/2.6.31-sabayon/build SUBDIRS=/root/vpnclient modules
    make[1]: Entering directory `/usr/src/linux-2.6.31-sabayon'
    CC [M] /root/vpnclient/linuxcniapi.o
    gcc: error trying to exec 'as': execvp: No such file or directory
    /root/vpnclient/linuxcniapi.c: In function ‘CniGetMacAddress’:
    /root/vpnclient/linuxcniapi.c:134: warning: pointer targets in assignment differ in signedness
    /root/vpnclient/linuxcniapi.c: In function ‘CniInjectReceive’:
    /root/vpnclient/linuxcniapi.c:314: warning: pointer targets in passing argument 4 of ‘CniGetPacketData’ differ in signedness
    /root/vpnclient/Cniapi.h:354: note: expected ‘PCHAR’ but argument is of type ‘unsigned char *’
    /root/vpnclient/linuxcniapi.c: In function ‘CniInjectSend’:
    /root/vpnclient/linuxcniapi.c:463: warning: pointer targets in passing argument 4 of ‘CniGetPacketData’ differ in signedness
    /root/vpnclient/Cniapi.h:354: note: expected ‘PCHAR’ but argument is of type ‘unsigned char *’
    make[2]: *** [/root/vpnclient/linuxcniapi.o] Error 2
    make[1]: *** [_module_/root/vpnclient] Error 2
    make[1]: Leaving directory `/usr/src/linux-2.6.31-sabayon'
    make: *** [default] Error 2
    Failed to make module “cisco_ipsec.ko”.

    I am at a loss. I installed it identical to the way I did it in my VM. All signs seem to point at the 'as' assembler not being found. A which as reports nothing. I see a as86 binary in the /usr/bin directory and have tried symbolic link trickery to no avail.

    Hints?

    Posted 23 Dec 2009 at 6:17 pm ¶
40. pavel wrote:

    Just recompile without any flas on the newest Ubuntu:
    Linux ivanmladek-laptop 2.6.31-17-generic #54-Ubuntu SMP Thu Dec 10 17:01:44 UTC 2009 x86_64 GNU/Linux

    Posted 23 Dec 2009 at 7:13 pm ¶
41. Kevin wrote:

    OK, sorry to flood your blog. Got this resolved with a bit of mangling binutils back into shape. One question, the vpnclient is about as stable as Helen Keller and I was wondering why that may be. I can guarantee I have a solid network (end-to-end cisco/procurve gigabit switching/Linux routers) but no matter what i do I cannot seem to bring any sort of stability to my VPN session with simple utilities like ping (icmp echo replies die out 5-15 packets in usually). I have tried turing the mtu down to no avail. Any suggestions?

    Posted 23 Dec 2009 at 8:37 pm ¶
42. jessewatson wrote:

    Worked like a charm! THANKS!

    Posted 04 Jan 2010 at 10:32 pm ¶
43. didymusrex wrote:

    Running ubuntu karmic, 2.6.31-16-generic #53-Ubuntu SMP Tue Dec 8 04:02:15 UTC 2009 x86_64 GNU/Linux

    The following bash script grabs the files you need and builds the vpnclient. Compiled clean for me

    #!/bin/bash
    # ——————————————————————————
    # File: ubuntu-vpnclient-install.sh
    # Desc: Script to obtain, patch and install Cisco VPN Client on Ubuntu Karmic Koala
    #
    # Reference / Credit:
    # http://www.lamnk.com/blog/vpn/how-to-install-ci...
    # http://forum.tuxx-home.at/viewtopic.php?f=15&t=...
    # ——————————————————————————
    if [ ! -d "~/tmp" ]
    then
    mkdir “~/tmp”
    fi

    cd ~/tmp

    if [ -d vpnclient ]
    then
    echo “#### Cleaning up source directory ####”
    yes | rm -r vpnclient
    fi

    if [ -f vpnclient-linux-x86_64-4.8.02.0030-k9.tar.gz ]
    then
    echo “#### Cleaning up tarball ####”
    rm vpnclient-linux-x86_64-4.8.02.0030-k9.tar.gz
    fi

    #
    # Grab the client source and untar
    # ————————————–
    echo “#### Downloading/expanding client tarball ####”
    wget http://projects.tuxx-home.at/ciscovpn/clients/l...
    tar xzvf vpnclient-linux-x86_64-4.8.02.0030-k9.tar.gz

    #
    # Grab and apply patches
    # ————————————–
    cd vpnclient

    echo “#### Apply downloaded 64-bit patch ####”
    wget http://lamnk.com/download/vpnclient-linux-4.8.0...
    patch < ./vpnclient-linux-4.8.02-64bit.patch

    echo “#### Apply 2.6.31 patch ####”
    wget http://lamnk.com/download/vpnclient-linux-2.6.3...
    patch < ./vpnclient-linux-2.6.31-final.diff

    echo “#### Kernel header hack ####”
    sudo sed -i 's/const struct net_device_ops *netdev_ops;/struct net_device_ops *netdev_ops;/' `find /usr/src -name netdevice.h`

    #
    # Run install script
    # ————————————–
    echo “#### Install !!! ####”
    sudo ./vpn_install

    Posted 05 Jan 2010 at 3:48 pm ¶
44. jadahl wrote:

    When I follow your instructions, I end up not being able to load the module. It gives me the error 'cisco_ipsec: disagrees about version of symbol module_layout'. Any idea?

    Posted 07 Jan 2010 at 6:04 pm ¶
45. olliver wrote:

    Thanks! It real helped me.

    Posted 10 Jan 2010 at 9:05 am ¶
46. pikarl wrote:

    Perfect work, thank you. After two days of googling you fixed my problem.

    Posted 11 Jan 2010 at 10:11 am ¶
47. Payman wrote:

    Now if you can also come up with a way to install it on Lucid Lynx (2.6.32-10), all lucid users (including me) will be sooooooo happy!

    Posted 17 Jan 2010 at 11:35 pm ¶
48. Name wrote:

    Thanks dude! Awesome.

    Posted 21 Jan 2010 at 9:06 am ¶
49. mrhassell wrote:

    That was so totally what I needed! Awesome thanks man!

    Posted 22 Jan 2010 at 5:34 am ¶
50. marcelio wrote:

    A million kudo's to you didymusrex! Being the total-linux-no-no that I am, your bash script went straight through and saved me from shooting myself.

    Posted 07 Feb 2010 at 11:14 pm ¶
51. Matt wrote:

    Simply brilliant, works like a charm

    Posted 08 Feb 2010 at 8:46 pm ¶
52. Dean wrote:

    Awesome. Thank you!

    Posted 11 Feb 2010 at 3:12 pm ¶
53. didymusrex wrote:

    FYI, Just verified it works with the latest Ubuntu kernel update. Kind of a pain to have to recompile every time.

    uname -a
    Linux myhostname 2.6.31-19-generic #56-Ubuntu SMP Thu Jan 28 02:39:34 UTC 2010 x86_64 GNU/Linux

    Posted 11 Feb 2010 at 6:54 pm ¶
54. Dan wrote:

    I have the same problem.
    Running Karmic Koala 64-bit on a Lenovo W500. This was the first method that actually worked for me. The service will start just fine, but once I try to start a connection I get the same problem, freezes with caps lock LED flashing. What is your hardware setup?

    Posted 17 Feb 2010 at 5:41 am ¶
55. altoning wrote:

    Same issue (ping stops after 10-20 packets) with Karmic 9.10 32-bit (2.6.31-19-generic #56-Ubuntu SMP Thu Jan 28 01:26:53 UTC 2010 i686 GNU/Linux)

    However, Jaunty 9.04 32-bit works fine. Hope someone resolves this issue on Karmic 9.10 so I can stop rebooting into Jaunty 9.04 for VPN access.

    Posted 20 Feb 2010 at 4:25 pm ¶
56. altoning wrote:

    Workaround for Freezing, ARP, Ping Issue on Karmic 9.10 (2.6.31-19-generic)
    Try sudo /sbin/route add -net 192.168.1.0/24 dev wlan0
    or sudo /sbin/route add -net 192.168.1.0/24 dev eth0
    correcting subnet and device.

    See http://ilapstech.blogspot.com/2009/09/cisco-vpn...

    Posted 20 Feb 2010 at 6:33 pm ¶
57. venkatmantirraju wrote:

    Worked great. I was able to connect to my VPN properly. Thanks a lot for this article.

    On the side note: My ubuntu freezes once in a while, while I was connected to the VPN.
    I had to restart the Ubunut, which I wanted to avoid it.

    Any suggestions?
    Thanks,
    Venkat

    Posted 23 Feb 2010 at 10:30 pm ¶
58. feef wrote:

    Installing it on Ubuntu 9.10.
    Linux 2.6.31-20-generic #57-Ubuntu SMP Mon Feb 8 09:05:19 UTC 2010 i686 GNU/Linux
    on a Dell Latitude E6400

    Error is below:

    Making module
    make -C /lib/modules/2.6.31-20-generic/build SUBDIRS=/home/poodle/vpnclient modules
    make[1]: Entering directory `/usr/src/linux-headers-2.6.31-20-generic'
    CC [M] /home/poodle/vpnclient/linuxcniapi.o
    In file included from /home/poodle/vpnclient/Cniapi.h:15,
    from /home/poodle/vpnclient/linuxcniapi.c:31:
    /home/poodle/vpnclient/GenDefs.h:113: error: conflicting types for ‘uintptr_t’
    include/linux/types.h:41: note: previous declaration of ‘uintptr_t’ was here
    make[2]: *** [/home/poodle/vpnclient/linuxcniapi.o] Error 1
    make[1]: *** [_module_/home/poodle/vpnclient] Error 2
    make[1]: Leaving directory `/usr/src/linux-headers-2.6.31-20-generic'
    make: *** [default] Error 2
    Failed to make module “cisco_ipsec.ko”.

    Posted 18 Mar 2010 at 4:01 pm ¶
59. Guest wrote:

    It works….Latest Ubuntu 10.04 alpha Mar-18 Kernel 2.6.32-16

    Posted 18 Mar 2010 at 11:50 pm ¶
60. xcolwell wrote:

    Thank you! Minor typo in step 3: a missing trailing slash for sed. sed -i 's/^CFLAGS/EXTRA_CFLAGS/' Makefile

    Posted 22 Mar 2010 at 2:55 am ¶
61. mhwong wrote:

    Thank you. This works on Fedora 12 as well.

    Posted 24 Mar 2010 at 10:51 pm ¶
62. smart_lrt wrote:

    I just installed the Cisco VPN Client vpnclient-linux-x86_64-4.8.02.0030-k9 in Ubuntu 9.10 (kernel 2.6.31-18-generic) following the directions here and for the most part it worked.

    The issue I had was that the machine either rebooted itself or froze randomly. My fix for this was to create a CPUSET of only one cpu-core and launch the vpnclient attached to that cpuset. I've been working for a few hours now and it seems that it did the trick. I'm using kvpnc for my vpn connections so what I did was that I created a script called /usr/local/bin/vpnclient.wrapper which is called by kvpnc. The script does the following:

    mkdir /dev/cpuset
    mount -t cpuset cpuset /dev/cpuset
    cd /dev/cpuset
    mkdir Cisco
    cd Cisco
    /bin/echo 1 > cpus
    /bin/echo 0 > mems
    /bin/echo $$ > tasks
    /usr/local/bin/vpnclient $*

    Basically, what this does is create a cpuset called Cisco with only one CPU. Assigns the current shell pid to the cpuset task list and then calls vpnclient so that it also runs within that cpuset.

    This should take care of the issue reported by others, and noticed by me also, that running vpnclient in a multi-core system ( I have a quad-core) tends to crash it.

    Posted 18 Apr 2010 at 4:14 am ¶
63. doombo wrote:

    This works on Fedora 12 2.6.32.11-99 kernal, thanks you!!!

    Posted 26 Apr 2010 at 8:04 pm ¶
64. perico wrote:

    I followed your guide, but instead of tinkering with the linux headers I investigated a bit more in the interceptor.c
    The problem is, as you 'sed' that the net_device_ops pointer inside the netdevice structure is marked as const. But you can circumvent this easily.

    my .2 cents…

    Posted 04 May 2010 at 5:54 am ¶
65. carterqw wrote:

    This also worked for OpenSuSE 11.2! Thanks a lot!

    Posted 17 May 2010 at 7:16 pm ¶
66. Osvaldo wrote:

    Hi feed, could you make it work finally? I have the same output from the compiler

    Posted 19 May 2010 at 1:18 am ¶
67. Marco Moscaritolo wrote:

    please change:
    
sed -i 's/^CFLAGS/EXTRA_CFLAGS' Makefile
    to
    
sed -i 's/^CFLAGS/EXTRA_CFLAGS/' Makefile

    Posted 15 Jun 2010 at 4:22 pm ¶
68. Xav Paice wrote:

    Many thanks – works a treat on Fedora 13 2.6.33.5-112.fc13.x86_64

    Posted 16 Jun 2010 at 8:25 pm ¶
69. Lamnk wrote:

    Thanks, i changed according to your suggestion. Forgot that slash

    Posted 05 Jul 2010 at 11:26 am ¶
70. Michel Levy wrote:

    http://ilapstech.blogspot.com/2009/09/cisco-vpn...
    http://www.painfullscratch.nl/code/vpn/index.ht...
    I give these two sites, who help to solve my vpn problem : successful compilation of vpnclient but connection broken after being established 30 seconds.

    Posted 05 Jul 2010 at 12:11 pm ¶
71. Yee Mishi wrote:

    This is such a helpful guide! thanks to all of you!

    Posted 08 Jul 2010 at 5:06 am ¶
72. mrcarl wrote:

    Very Helpful Thanks (on Ubuntu 10.04 LTS – the Lucid Lynx )

    Posted 19 Jul 2010 at 4:52 pm ¶
73. John Doe wrote:

    Amazing. Over an hour of messing with files, and finally found this page…. This WORKS: Ubuntu 10.4 – kernel: 2.6.32-24

    Posted 01 Aug 2010 at 5:40 pm ¶
74. Vladimir Minakov wrote:

    You wrote that the kernel version should be from 2.6.30 to 2.6.32. But I have 2.6.34 kernel installed. And making fails… Please? help me!

    ancient@vminakov ~/setup/vpnclient $ uname -a
    Linux vminakov 2.6.34-gentoo-r1 #1 SMP Tue Jul 27 10:06:42 EEST 2010 x86_64 AMD Athlon(tm) 64 Processor 3000+ AuthenticAMD GNU/Linux

    Posted 03 Aug 2010 at 1:01 pm ¶
75. patrocinio wrote:

    Thank you. It worked like a charm!

    Posted 03 Aug 2010 at 3:26 pm ¶
76. Roland Mai wrote:

    Awesome! Thanks. Worked on lucid for me as well. Kernel 2.6.32-24-generic

    Posted 04 Aug 2010 at 2:02 am ¶
77. tmunro55 wrote:

    running Ubuntu 10.04 LTS (Lucid Lynx)
    Everything worked except the build:

    Making module
    make -C /lib/modules/2.6.32-24-generic/build SUBDIRS=/home/tim/vpnclient modules
    make[1]: Entering directory `/usr/src/linux-headers-2.6.32-24-generic'
    CC [M] /home/tim/vpnclient/linuxcniapi.o
    CC [M] /home/tim/vpnclient/frag.o
    CC [M] /home/tim/vpnclient/IPSecDrvOS_linux.o
    CC [M] /home/tim/vpnclient/interceptor.o
    /home/tim/vpnclient/interceptor.c: In function ‘interceptor_init’:
    /home/tim/vpnclient/interceptor.c:132: error: ‘struct net_device’ has no member named ‘hard_start_xmit’
    /home/tim/vpnclient/interceptor.c:133: error: ‘struct net_device’ has no member named ‘get_stats’
    /home/tim/vpnclient/interceptor.c:134: error: ‘struct net_device’ has no member named ‘do_ioctl’
    /home/tim/vpnclient/interceptor.c: In function ‘add_netdev’:
    /home/tim/vpnclient/interceptor.c:271: error: ‘struct net_device’ has no member named ‘hard_start_xmit’
    /home/tim/vpnclient/interceptor.c:272: error: ‘struct net_device’ has no member named ‘hard_start_xmit’
    /home/tim/vpnclient/interceptor.c: In function ‘remove_netdev’:
    /home/tim/vpnclient/interceptor.c:294: error: ‘struct net_device’ has no member named ‘hard_start_xmit’
    make[2]: *** [/home/tim/vpnclient/interceptor.o] Error 1
    make[1]: *** [_module_/home/tim/vpnclient] Error 2
    make[1]: Leaving directory `/usr/src/linux-headers-2.6.32-24-generic'
    make: *** [default] Error 2
    Failed to make module “cisco_ipsec.ko”.

    Posted 06 Aug 2010 at 1:48 am ¶
78. tmunro55 wrote:

    Sorry here's uname -a info:

    Linux aragorn 2.6.32-24-generic #39-Ubuntu SMP Wed Jul 28 05:14:15 UTC 2010 x86_64 GNU/Linux

    Posted 06 Aug 2010 at 2:08 am ¶
79. wang lihua wrote:

    Thank you very much, my vpn client is running now~~

    Posted 27 Aug 2010 at 1:59 pm ¶

Trackbacks & Pingbacks 2

1. From Confluence: Omnitel Lithuania on 03 Nov 2009 at 4:47 am ¶

   Connecting to omnitel VPN using linux…

   Install the client as documented at…

2. From Confluence: T-Mobile .NET Migration Project on 11 Nov 2009 at 3:59 am ¶

   VPN do TMCZ…

   Windows Ověřeno pouze u Win XP\! U Win Vista je problém s ovladačem Cisco Clienta, nedá se tudíž použít. Možná je to v dalších verzích klienta opraveno…….

Post a Comment