Sophos UTM 9.409-9 – Cisco VPN Client bug

19/01/2017 0 Comments

Sophos UTM

After upgrading to 9.409-9, Cisco VPN client in Remote Access is broken, symptoms are that you can connect as usual with your client, but no traffic get’s through, the fix is to change the way that SHA2 is being truncated, user HolgerLehn in the Sophos Community has described this:

Community link: https://community.sophos.com/products/unified-threat-management/f/hardware-installation-up2date-licensing/84979/since-9-409-8-and-9-ipsec-cisco-vpn-not-working/319183#319183

So in short, go into Shell in the UTM as loginuser, then su for root access, and type this:

cc change_object REF_IPsecPolicyCisco ipsec_auth_alg sha2_256_96″

No need to reboot the device, just reconnect the VPN and everything works again 🙂

Related Posts

Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close