I'm having trouble using the movianVPN Client an iPAQ with a Cisco Aironet NIC card to a Cisco 3000
I'm having trouble using the movianVPN Client an iPAQ with a Cisco Aironet NIC card to a Cisco 3000 VPN concentrator. It seems that I can get an IP address from my DHCP server UNTIL I install Movian, at which point my iPAQ stops trying to contact the DHCP server (at least the DHCP server does not see any attempts to obtain an IP).
The problem you describe is common for VPN clients that are configured without split tunneling and the client is launched before the NIC performs DHCP. If you can use split tunneling to let DHCP requests pass in the clear on the WLAN, you can probably get around this problem. Or you can disable IPsec long enough to get your address from the DHCP server.
To disable IPsec, open the movianVPN client application, bring up the options menu, and uncheck the menu item "IPsec". You'll be warned that you're not protected. Renew your DHCP address, then check "IPsec" again. All traffic will now be encrypted (including any future DHCP renewal.)
Alternatively, when configuring your VPN connection in the movianVPN client, use the Policies panel to check "split tunneling," then use the Network Properties panel to specify a real subnet (not all zeroes) as your protected network. Only traffic to that network will be encrypted, and all other traffic (including DHCP) will pass in the clear.
This was first published in June 2004