NetWorx and Cisco VPN

Started by rick

NetWorx and Cisco VPN   28 January 2015, 20:32

Hi !
Sorry for disturbing here.

I have a strange issue. I'm doing some tests.
Running conditions:
  • NetWorx 5.3.3 64 bit
  • Windows 7 - 64 bit
  • Windows Firewall Off for Domain/Private net (just testing at the moment)
  • Microsoft Security Essential
  • Cisco VPN Client v. 5.0.07.0440 (IpSec)

No problem when PC is connected to a wifi or LAN connection. I can monitor anything (bandwidth, usage, etc)

Problem:

NetWorx doesn't display any traffic/bandwidth once VPN is connected.
This has been tested with no driver, tdi, wfp. Same result.
Maybe this is because vpn use udp / ipsec ?

Also, in one case I had a VPN problem: with one of the driver (wfp I guess) VPN connection was successful but then I had no data In/Out at all, I can better investigate this item later.

Any thought is more than welcome.
Kind regards,
Rick
SoftPerfect Support forum - Andrew avatar image

Re: Networx and Cisco VPN   28 January 2015, 21:19

What have you chosen under Monitored interfaces in the main settings?

Re: Networx and Cisco VPN   28 January 2015, 21:23

Hi Andrew.
Thank you for your fast reply.

Under "Monitored interfaces" I have "All Connections" selected.
Also pressing Networks button (under All Connections combobox) I have monitor usage set to "All networks that I connect to".
SoftPerfect Support forum - Andrew avatar image

Re: Networx and Cisco VPN   28 January 2015, 21:29

It looks all traffic is routed in a way that it doesn't pass any interface NetWorx watches.

I would probably recommend to access the hidden settings, find one called Physical adapters only and set it to false.

After that try choosing the specific adapter in the drop-down box under Monitored interfaces through which you have Internet access.

Re: Networx and Cisco VPN   28 January 2015, 22:03

First : Wow, I'm impressed about this support smile
Second : Wow, opened "hidden setting" and a new world appeared to my eyes smile

So :
1. Into hidden setting I set Physical adapters only to false
2. closed
3. reloaded, reopened settings

Here I tried almost any interface.
No one was working but the one that did the trick was selecting the "Cisco System VPN Adapter for 64-bit Windows" or any other "Cisco* - Deterministic Network Enhancer... " device (see Setting.jpg attach)
After that, NetWorx is perfectly monitoring the bandwidth etc. (see Monitor.jpg attached)

So just one last question smile ...
Do I have a chance to have "Cisco System VPN..." together with Lan or Wifi adapters (so I can monitor also Wifi or Eth when VPN is not alive ) ?
Attachments:
open | download – Settings.jpg (88.7 KB)
open | download – Monitor.jpg (51.7 KB)
SoftPerfect Support forum - Andrew avatar image

Re: Networx and Cisco VPN   28 January 2015, 22:13

Unfortunately at the moment NetWorx only allows you to choose one adapter.

Generally in this case choosing a physical adapter (Intel Centrino or Intel 82579LM) should work, but it looks like the Cisco VPN client injects its traffic at a lower level and NetWorx doesn't see any data sent through these adapters.

Another workaround might be to re-install NetWorx with the TDI driver and tick the Ignore local traffic within the LAN option. In this case NetWorx uses a different monitoring method that might work for both VPN and non-VPN connections.

Re: Networx and Cisco VPN   28 January 2015, 23:57

Follow-up :
Quote

Generally in this case choosing a physical adapter (Intel Centrino or Intel 82579LM) should work

I double check it. In my scenario when selecting any other device what I got is nothing or just very very few bytes In or Out.

Quote

it looks like the Cisco VPN client injects its traffic at a lower level

I agree... must be something like that.

Quote

Another workaround might be to re-install NetWorx with the TDI driver and tick the Ignore local traffic within the LAN option

Tested.
One note: I discovered that in my scenario I must reboot the system, uninstall and reinstall produce some weird results.
However I got funny behaviors

Once with TDI and NO tick on "Ignore LAN traffic" the Vlan clients connect but NetWrox don't see traffic (with "all connections"wink, just 48 bytes/s or so during file transfer (when it should be a lot more).

If "Ignore Lan Traffic" is enabled (and rebooted), then I'm able to connect with Cisco VPN to my Asa without any problem but then nothing else... Even a single ping to my remote connections doesn't work.
More fun I'm not able to disconnect my VPN client smile (using my Cisco VPN Client Control panel, see VPN_Client.jpg)
I have to reboot (double check and it's persistent behaviour)
ASA see some TX bytes but no Rx bytes (see VPN_detail.jpg attached)....

So for now I stick to the first idea with Cisco VPN as connection to monitor (unless something else to try).
I hope this thread may be useful also for other users.

Many thanks indeed.
Rick
Attachments:
open | download – Vpn_detail.jpg (60.6 KB)
open | download – Vpn_Client.jpg (71.7 KB)
SoftPerfect Support forum - Andrew avatar image

Re: Networx and Cisco VPN   29 January 2015, 00:04

Thank you for sharing your results. It's a pity you couldn't get it fully working, but at least monitoring the VPN connection alone is better than nothing at the moment.

Perhaps we can implement a way to select monitor more than one network interface to monitor.

Cheers, Andrew.

Re: Networx and Cisco VPN   29 January 2015, 00:12

Quote

It's a pity you couldn't get it fully working

NO PROBLEM ! This setup is a "special condition".

Quote

.. but at least monitoring the VPN connection alone is better than nothing at the moment.

Totally agree !

Quote

Perhaps we can implement a way to select monitor more than one network interface to monitor.

That would be very nice.

All the best and many thanks for your cooperation, really appreciated.
Rick.

Reply to this topic

Sometimes you can find a solution faster if you try the forum search, have a look at the knowledge base, or check the software user manual to see if your question has already been answered.

Our forum rules are simple:

  • Be polite.
  • Do not spam.
  • Write in English. If possible, check your spelling and grammar.

Author:

Email:

Subject

A brief and informative title for your message, approximately 4–8 words:

     

Spam prevention: please enter the following code in the input field below.

 **         **    **  **     **  ********  ********  
 **    **   **   **   **     **  **    **  **     ** 
 **    **   **  **    **     **      **    **     ** 
 **    **   *****     **     **     **     **     ** 
 *********  **  **    **     **    **      **     ** 
       **   **   **   **     **    **      **     ** 
       **   **    **   *******     **      ********  

Message: