I can't install the VPN client

You should always install the VPN client in the default installation path, otherwise it will not work.

If the problem still exists, please try a different VPN client version.

 A static IP is selected in the settings. How can I change it into a dynamic IP address?

To change your IP into dynamic, please proceed with the following steps:

  1. Go to "Network and Sharing Center"
  2. Select the active LAN/Wireless connection and then right click to show the "Properties"
  3. The "Local Area Connections Properties" window will open where you can see a list of the installed protocols. Select the TCP/IP protocol and click on "Properties".
  4. In the "Internet Protocol Version Properties" tab, select "Obtain an IP address automatically" and "Obtain DNS server address automatically".
 Did the IP allocation work?

Open the status window of the LAN / Wireless connection (Start -> Network connections -> Click on then connection or right click on the "Connection" symbol in the taskbar). In the window network support tab, you can check the IP address of your computer.
If the IP differs than 134.61.[96-103].[1-254], then the IP has not been assigned correctly.

 Is a network bridge installed?

Open the start menu and select "Network connections". If a network bridge is listed, delete it.

If deleting is denied by Windows, disable all network connections and try again. The network bridge must be removed so the VPN client can work.

 I can't connect with the VPN server, why?

There are different possible reasons:

  1. The username or the password are incorrect.
    If  you lost your username or password, please contact the IT-ServiceDesk.

  2. Your account has been deactivated due to viruses and/or spam e-mails.
    You can check the status on our TIM database. Enter your username and password and check in "Accounts" if your VPN/DialUp account has been deactivated. To re-activate your account, you need to make sure that your computer is virus-free and that all known security vulnerabilities are eliminated (especially in Microsoft Systems).

    Upon initial deactivation: If your system has been scanned and repaired or possibly reinstalled, you can regain your access by calling 0241 80-24 680.

    Attention!

    Icon

    First install all (Windows) updates offline before you use the internet!

    Repeated deactivation: You need to bring your device to the IT-ServiceDesk and provide on-site evidence that your computer is safe for the network. In case of repeated violations of the Network Code of Conduct, a reactivation of the account can not be guaranteed.

  3. A firewall prevents the traffic to the VPN server. In this case, please switch off the firewall and try again.

 Which ports need activation in my personal firewall?

 You can find the information in the expert configuration.

 Is there any fallback solution?
 Why can't I print when I am connected with VPN?

You can easily solve this problem by a minor adjustment in the Cisco client. Open the client and click on "Options". Then click on "Properties" and then "General". Check the "Allow local LAN access" flag and confirm with "OK". You should now be able to print with existing VPN connection, except when using the MoPS profile.

 What should I do if the client wants to install a new version of the Cisco client?

 Just follow the update manuals.

 I am connected but from then on, there are no data transferred

The problem can occur when using some applications such as the Samba Server. The cause is a wrong MTU value.

The MTU (Maximum Transfer Unit) limits the packet size of the data packages that are sent through the network. If a data package is too large, then is divided and some applications can not cope with it.  
The Windows system does not appear to be associated with the VPN client capable MTU adapted accordingly.

The MTU can be changed with a tool that is provided with the Cisco client. The Ethernet standard value (usually 1500) should be switched to a safe level (1330). You can find this tool in the installation folder of the client or in  "Start" -> "Programs" -> "Cisco Systems VPN Client" -> "Set MTU". Simply select the wifi or network card, check "custom" and enter "1330" into the next field and confirm with "OK". Confirm the notice that the changes will take effect only after a restart with "OK". Now reboot the computer.

 What is the IP range of the VPN connection?

IP addresses are assigned from the following range:

  • vpn:
    134.61.96.1 - 134.61.103.254
 My account has been deactivated, what should I do to activate it again?

There is always a reason if your account has been locked.

The most common reason is due to viruses and /or spam sent through the deactivated account. Mistakes are almost impossible.

You can check the status of your account on our TIM database. Enter your username and password and check in "Accounts" if your VPN/DialUp account has been deactivated. To re-activate your account, you need to make sure that your computer is virus-free and that all known security vulnerabilities are eliminated (especially in Microsoft Systems). In addition, the IT Center notifies deactivated Users on their email address Firstname.Lastname@rwth-aachen.de or ...@post.rwth-aachen.de. It is therefore important to check your emails on a regular basis.

Upon initial deactivation: If your system has been scanned and repaired or possibly reinstalled, you can regain your access by calling 0241 80-24 680.

  Repeated deactivation: You need to bring your device to the IT-ServiceDesk and provide on-site evidence that your computer is safe for the network.

In case of repeated violations of the Network Code of Conduct, a reactivation of the account can not be guaranteed.

 My computer has a virus, what can I do?

The IT Center alerts the user via email on their email address firstname.lastname@rwth-aachen.de or...@post.rwth-aachen.de if a virus has been detected on their computer. It is therefore essential to check your emails regularly. If you have received a virus warning, please immediately remove the virus from your system. The IT ServiceDesk will gladly provide assistance if needed. Otherwise, your access will be deactivated to prevent the virus from spreading from your computer to the network. Your account will not be deactivated if you deleted the virus immediately and inform noc@rwth-aachen.de via email that your computer is virus free. (Although exceptions can happen due to high viral load in the network).

 Why does not VPN under Ubuntu work?

It may happen that the VPN connection under Ubuntu does not work anymore. The reason for that is that some additional packages for the Network Manager should be installed. A list of packages available for the installation can be found here:

https://wiki.ubuntuusers.de/NetworkManager/VPN_Plugins/

 Which AnyConnect version should I use with macOS 10.13 (High Sierra)?

The recommended version of AnyConnect for macOS 10.13 (High Sierra) is AnyConnect 4.5.02XXX and above.