1、检查一下version是否支持mobile的anyconnect ,老的 Essentials 版本不支持手机连接。如果是Premium的,可以忽略这项检查
命令:show vpn-sessiondb license-summaryASA# sh vpn-sessiondb license-summary
---------------------------------------------------------------------------
VPN Licenses and Configured Limits Summary
---------------------------------------------------------------------------
Status : Capacity : Installed : Limit
-----------------------------------------
AnyConnect Premium : ENABLED : 25 : 2 : NONE
AnyConnect Essentials : DISABLED : 25 : 0 : NONE
Other VPN (Available by Default) : ENABLED : 25 : 25 : NONE
Shared License Server : DISABLED
Shared License Participant : DISABLED
AnyConnect for Mobile : DISABLED(Requires Premium or Essentials)
Advanced Endpoint Assessment : DISABLED(Requires Premium)
AnyConnect for Cisco VPN Phone : DISABLED
VPN-3DES-AES : ENABLED
VPN-DES : ENABLED
---------------------------------------------------------------------------
2、检查group-policy中是否关联address-pool
ASA# sh run group-policy
group-policy SSLVPN internal
group-policy SSLVPN attributes
dns-server value 192.168.12.72
vpn-tunnel-protocol ssl-client
split-tunnel-policy tunnelspecified
split-tunnel-network-list value split
address-pools value vpn_pool
ASA#
如果版本支持,且配置了address-pool,可以把配置部分打码后发出来,让大家分析一下。
