I did that too and it did not work. That is why I ask about ShrewSoft but I really want to make Adtran Secure VPN Client work because I have purchased 3 Lic for it already.
Thanks for all your help. I wish this was working.
I have 5 licenses, but it is for an older version from maybe 6 years ago. It took them too long to get a client that worked with newer versions of Windows, so I was somewhat forced to use an alternate client.
ShrewSoft has two versions of their client, the free version which works great. They also have a licensed version that has some extended capabilities like split DNS. It does not connect automatically based on interesting traffic like Adtran’s VPN, but it does have auto-reconnect which is very nice.
It’s a little tricky getting the first one going, but after that you can export the configuration and then import it as a new one and modify user parameters.
It is not officially supported by Adtran, but Adtran does provide a guide for configuration.
I can see two options to solve this issue.
Anyone can help me out I would love it.
Have you tried setting up two different IP pools and two different ike policies? Then set up your laptop to connect on the 1st range and any other VPN client on the second range.
I had tried this but I messed up the configuration. How to configure it?
You can create two different pools:
crypto ike client configuration pool "VPN Client Laptop"
ip-range 10.5.12.1 10.5.12.4
crypto ike client configuration pool "VPN Other Clients"
ip-range 10.5.12.5 10.5.12.254
Then set up two crypto ike policies, one for each pool.
Then two remote-ids one for the laptop and one for the other client(s).
Two crypto maps, for your two ike policies and finally set the firewall to allow the two IP ranges through.
Hope this helps.
Mick, I want to use your idea and have tried (unsuccessfully).
When you use a "Dynamically Addressed" or "Mobile Peer" the IKE Settings, IPSEC settings, and REMOTE ADDRESSING are all shared! You get a warning when creating the second Mobile Peer. If I create it the second Mobile Peer the first Mobile Peer no longer works. Any Suggestions?
Thank you for the help!
Also this command makes an issue when doing Mobile Peer aka remote client
crypto ike remote-id any preshared-key N87*Nidid*l ike-policy 117 crypto map VPN 180 no-xauth
we use "remote-id any" so that when the laptops go from business to business and hotel to hotel it will always work.
I don't see a way to set up to make another Remote Client work without breaking the first one.
So my thoughts are figure out how to assign static IP to two of the Remote Clients and let the rest do DHCP.
So sorry, I misunderstood your original requirement! Only one remote-id any is available. Other peers will have to be static rather than mobile. I don't know if there is a workaround on this problem. Hopefully someone from Adtran will pop in with a response, or you can raise a support ticket.