tag:blogger.com,1999:blog-5249537685059193985.post6447443599471697354..comments2023-05-07T09:52:32.915-04:00Comments on DevOps/SRE/Platform Engineering [and sometimes] Random Rants: Cisco VPN issue with OS X Mavericks - solvedKhalid Maqsudihttp://www.blogger.com/profile/17933303062030880224noreply@blogger.comBlogger47125tag:blogger.com,1999:blog-5249537685059193985.post-39364378626436751602017-06-28T12:12:05.236-04:002017-06-28T12:12:05.236-04:00That worked for me, thanks!That worked for me, thanks!Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-6548524199432582602017-03-28T11:51:50.379-04:002017-03-28T11:51:50.379-04:00Just try disabling IPv6:
networksetup -setv6off Et...Just try disabling IPv6:<br />networksetup -setv6off Ethernet<br />networksetup -setv6off Wi-FiAnonymoushttps://www.blogger.com/profile/16501019467269841883noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-72206907424313670242014-11-26T05:36:01.918-05:002014-11-26T05:36:01.918-05:00Thanks for tracking this, i have the same issue. d...Thanks for tracking this, i have the same issue. disconnects every 1-2 minutes with 10.9+Anyconnect 3.1. Looking at stats seems that Control Frames are not being received to me during outages. Worth mention i have the problem within my corporate network, from my home DSL it works ok. Thanks to <a href="http://www.bestvpnservice.com/blog/best-greece-vpn/" rel="nofollow">greek vpn free support</a> for helping me further.Willie Aameshttps://www.blogger.com/profile/09188898560795572299noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-50756497274754407072014-10-22T23:20:45.338-04:002014-10-22T23:20:45.338-04:00Mountain Lion to Mavericks broke VPN for my client...Mountain Lion to Mavericks broke VPN for my client.<br /><br />Tried many many things to fix. He recently went to yosemite and same thing. Stumbled across this and IT DID THE TRICK!!! Client was ecstatic! Thank you!<br /><br />So even if they went from mountain lion to mavericks to yosemite, this still fixes it.Anonymoushttps://www.blogger.com/profile/12872611492807853581noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-71870773327105276062014-06-03T20:37:39.314-04:002014-06-03T20:37:39.314-04:00Thanks Man.. Worked like a charm!!!!Thanks Man.. Worked like a charm!!!!Anonymoushttps://www.blogger.com/profile/11903179782656816544noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-89319552937296500432014-05-18T12:51:38.793-04:002014-05-18T12:51:38.793-04:00This fixed my issue as well. Thanks for including...This fixed my issue as well. Thanks for including what the finished product should look like. I thought I would have a built in excuse not to work from home since upgrading to Mavericks. Thanks for sharing this information Khalid! :)Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-57711367669454467632014-02-20T11:56:45.051-05:002014-02-20T11:56:45.051-05:00Using
kern.ipc.maxsockbuf=8388608
worked for me...Using <br /><br />kern.ipc.maxsockbuf=8388608<br /><br />worked for me. I did not have the .conf file. The above works if used in the Terminal, but does not save across reboots:<br /><br />sudo sysctl -w kern.ipc.maxsockbuf=8388608<br /><br />So far, creating a sysctl.conf file has not fixed it on boot for me. Not sure if Mavericks doesn't read that file anymore? Going to try to find a way to ensure this change is made permanently or set on boot using launchd or something else.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-89641974818280910922013-11-18T07:33:57.168-05:002013-11-18T07:33:57.168-05:00I have installed Broadband tuner http://support.ap...I have installed Broadband tuner http://support.apple.com/downloads/Broadband_Tuner_1_0 and comment out kern.ipc.maxsockbuf=512000 from /etc/sysctl.conf as stated in original post and rebooted. Cisco Anyconnect VPN still disconnects me after taking above steps. So this wasn't solution for me..Anonymoushttps://www.blogger.com/profile/12101823285371198408noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-15994274605340513692013-11-18T07:29:55.547-05:002013-11-18T07:29:55.547-05:00This comment has been removed by the author.Anonymoushttps://www.blogger.com/profile/12101823285371198408noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-57721256477219362702013-11-08T02:17:34.973-05:002013-11-08T02:17:34.973-05:00Thank you so much for this post!!! Editing the sy...Thank you so much for this post!!! Editing the sysctl.conf file fixed my problem. Verizon recently had me install BroadbandTunner, which is probably what created that file (if it hadn't already existed) and messed up my vpn connection. Up until I did that, I was able to use AnyConnect without a problem even after upgrading to Maverick. TThttps://www.blogger.com/profile/06261350535812593297noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-9954967370898203442013-11-05T10:04:52.588-05:002013-11-05T10:04:52.588-05:00It didn't work at all with the above settingsIt didn't work at all with the above settingsRajhttps://www.blogger.com/profile/15791756078310678342noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-42233083760420082582013-11-01T17:56:30.144-04:002013-11-01T17:56:30.144-04:00Yes, before I rebooted I installed the Apple Broad...Yes, before I rebooted I installed the Apple Broadband Tuner (referred to earlier in the thread) and set the sysctl.conf values to those I used above.Anonymoushttps://www.blogger.com/profile/08707093339915169602noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-87756582452117668812013-10-31T15:40:24.380-04:002013-10-31T15:40:24.380-04:00MBPr 15" 2012
# START
# kern.ipc.maxsockbuf...MBPr 15" 2012 <br /><br /># START<br /># kern.ipc.maxsockbuf=512000<br />net.inet.tcp.sendspace=131072<br />net.inet.tcp.recvspace=358400<br /># END<br /><br />works for me.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-12353225156487864762013-10-31T11:40:04.017-04:002013-10-31T11:40:04.017-04:00My VPN drops every few minutes when connected at t...My VPN drops every few minutes when connected at the office on wireless n connection. At home connecting from wireless g connection I have no issues at all. Hopefully all my hotels will be wireless g and I will be fine awaiting a fix. If not maybe I will try this fix....<br /><br />GeorgeAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-7157057503259004262013-10-31T09:55:02.678-04:002013-10-31T09:55:02.678-04:00MacBook Pro 8GB, I have changed recvspace to 35840...MacBook Pro 8GB, I have changed recvspace to 358400 and still its not working :(<br />Rajhttps://www.blogger.com/profile/15791756078310678342noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-42437621301000746332013-10-31T08:55:12.667-04:002013-10-31T08:55:12.667-04:00MBP 2011, 8gb ram: I fixed my problem by having a ...MBP 2011, 8gb ram: I fixed my problem by having a connection to a Wifi and the network cable plugged in at the same time. Otherwise, wifi or cable alone, the connection dropped every 2-4min.<br />Hope this can help someone.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-72351964663321401542013-10-30T09:22:14.999-04:002013-10-30T09:22:14.999-04:00Glad to see it worked for you as well.Glad to see it worked for you as well.Khalid Maqsudihttps://www.blogger.com/profile/17933303062030880224noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-79647471413093909252013-10-30T09:21:45.933-04:002013-10-30T09:21:45.933-04:00Thanks for sharing Dan. Hopefully this helps the ...Thanks for sharing Dan. Hopefully this helps the folks with a similar setup. Khalid Maqsudihttps://www.blogger.com/profile/17933303062030880224noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-19057389084291132512013-10-30T08:30:07.822-04:002013-10-30T08:30:07.822-04:00Tried setting the recvspace to 358400 on my MacBoo...Tried setting the recvspace to 358400 on my MacBook Pro 8G with no help Anonymoushttps://www.blogger.com/profile/10037892800011145609noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-74277141391698202102013-10-30T02:36:13.356-04:002013-10-30T02:36:13.356-04:00Dan, did doing the sysctl -w ** commands result in...Dan, did doing the sysctl -w ** commands result in your fix for the VPN working across reboots. The reason I asked is this page here "http://hints.macworld.com/article.php?story=20060616112919669&mode=print" has a statement "If you would like these changes to be preserved across reboots you can edit /etc/sysctl.conf". Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-87068390788533288942013-10-29T23:17:42.523-04:002013-10-29T23:17:42.523-04:00Worked. Mid 2013 MBA ML upgraded to Mavericks. N...Worked. Mid 2013 MBA ML upgraded to Mavericks. No file existed so created file with textedit and save as a new document in desktop and moved to /etc folder. In the file, copied from above:<br /><br /># START<br /># kern.ipc.maxsockbuf=512000<br />net.inet.tcp.sendspace=131072<br />net.inet.tcp.recvspace=358400<br /># END<br /><br />My VPN connect has not dropped or need to reconnect since. Thank you Khalid!<br />Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-39188811503672572772013-10-29T22:40:47.982-04:002013-10-29T22:40:47.982-04:00I set my recvspace to the number from the original...I set my recvspace to the number from the original post above, as such:<br /><br /> $ sysctl -w net.inet.tcp.recvspace=358400<br /> net.inet.tcp.recvspace: 131072 -> 358400<br /><br /><br />It worked. I have now been successfully connected through VPN for 27+ minutes, without creating a "sysctl.conf" file, and without rebooting. However, after setting my recvspace to 358400, I then attempted to set maxsokbuf to a higher value, which then resulted in me being kicked out to the login screen and had to login again. I'm on a late 2009 iMac with 4GB of RAM. Following are the values I have:<br /><br /> kern.ipc.maxsockbuf = 4194304<br /> net.inet.tcp.sendspace = 131072<br /> net.inet.tcp.recvspace = 358400<br /><br />Stoked!Anonymoushttps://www.blogger.com/profile/08707093339915169602noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-31058526560182225192013-10-29T16:36:36.673-04:002013-10-29T16:36:36.673-04:00Oh NO... XML tags cleanedOh NO... XML tags cleanedPavel Klukinhttps://www.blogger.com/profile/00370326323540058264noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-20957835348962110542013-10-29T16:33:54.412-04:002013-10-29T16:33:54.412-04:00Yep... The amount of memory, as I wrote earlier, d...Yep... The amount of memory, as I wrote earlier, does not affect the Anyconnect, problem is deeper.<br /><br />Some time ago I set net.inet.ip.scopedroute=0 in /Library/Preferences/SystemConfiguration/com.apple.Boot.plist.<br /><br />After removing any added lines from com.apple.Boot.plist Anyconnect is WORKING without repeated reconnects. It's strange, but I checked several times.<br /><br />General idea - remove all kernel flags and parameters set by third-party programms, or your self. <br />Check boot arguments in Terminal by command:<br /><br />sysctl -a kern.bootargs<br /><br />Output should be:<br />$ sysctl -a kern.bootargs<br />kern.bootargs: <br />$<br /><br />Check the /Library/Preferences/SystemConfiguration/com.apple.Boot.plist for any non-default strings. It should look like this:<br /><br /><br /><br /><br /><br /> Kernel Flags<br /> <br /><br /><br /><br /><br />com.apple.Boot.plist may be binary plist. Convert it by command in Terminal:<br />plutil -convert xml1 /Library/Preferences/SystemConfiguration/com.apple.Boot.plist -o ~/Desktop/com.apple.Boot.plist<br />А Text file will appear on your Desktop, open it, if no nothing non-default don't touch /Library/Preferences/SystemConfiguration/com.apple.Boot.plist<br /><br />Check net.inet.ip.scopedroute in Terminal by command:<br /><br />sysclt -a net.inet.ip.scopedroute<br /><br />Output should be:<br />$ sysctl -a net.inet.ip.scopedroute<br />net.inet.ip.scopedroute: 1<br /><br />If you see 'net.inet.ip.scopedroute: 0' you need set it to 1.<br />Edit /Library/Preferences/SystemConfiguration/com.apple.Boot.plist, like <br /><br />.......<br /><br /> Kernel Flags<br /> net.inet.ip.scopedroute=1<br /><br />......<br /><br />In my case it helped.Pavel Klukinhttps://www.blogger.com/profile/00370326323540058264noreply@blogger.comtag:blogger.com,1999:blog-5249537685059193985.post-5467858370687520852013-10-29T11:54:28.023-04:002013-10-29T11:54:28.023-04:00Uninstalled v3.1.02040 and installed v3.1.03103 wi...Uninstalled v3.1.02040 and installed v3.1.03103 with no success either. The sysctl.conf file was not there, nor it helped creating it. FYI.luisdanielmchttps://www.blogger.com/profile/05488901906325817676noreply@blogger.com