Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
108
Views
1
Helpful
1
Replies

Dual NIC on windows client breaks Cisco Umbrella SIG

upllopyeret
Level 1
Level 1

‎08-20-2024 06:03 AM - last edited on ‎08-20-2024 07:14 AM by Cisco Employee

Hi All

We've been testing if it's possible to break Umbrella on a Windows clients, and what we've found out is that if there's multiple NICs available, it's possible to disconnect the first NIC and then pass traffic on the second NIC to bypass Umbrella. No admin creds needs, just physical disconnects.

I can't find any documentation on Umbrella and dual NICs on a client, and how to prevent this.

Any thoughts?

Labels:
0 Helpful
1 Reply 1

Ken Stieers
VIP
VIP

‎08-20-2024 08:13 AM

Replied to your reddit post too...

Newer builds use TND to catch that. Upgrade to 5.1.4.74 or later.
Release Notes for Cisco Secure Client (including AnyConnect), Release 5.1 - Cisco<>

Ken

Customers Also Viewed These Support Documents