Anyconnect, switch connection between 2 interfaces
We have some mobile tablets with LTE and wifi cababilities. They use AnyConenct to access an internal server to run dispatch software. The dispatch software requires that the tablets always communicate to the server using the same ip addresss When the tablets are at the office they want to use the wifi there to save on LTE data. We have anyconnect configured to provide the fixed addresses and conenctivity on the outside interface and on a DMZ interface for the wireless. I have the AnyConnect profile setup with a backup server that it the DMZ interface. The tablets connect fine on the DMZ interface or on the outside when in the field.
The issue i am having is when they switch between them. When they disconnect from the wireless the any connect client just keeps trying to connect to the DMZ interface, instead of trying the outside(primary server in the AC profile) until you close the vpn connection and re-establish it.
We need this to work seamlessly and without user intervention.
Re: Anyconnect, switch connection between 2 interfaces
I'd probably try to fix this with DNS instead. Just have the profile point to a dns name ex: vpn.mycompany.com. When they're internal have the A record point to the dmz interface address, when they're external have it resolve to the outside interface address.
part1 here https://community.cisco.com/t5/security-blogs/mitm-attack-ipsec-what-happens-if-attacker-knows-ipsec-pre/ba-p/3756562
A brief summary of the part1 : we showed that the security level of IPSec with preshared key is equal to the secu...
I have just received an email that looks like the attached (redacted) email telling me that I need to activate my Cisco Security account. What do I do with this?
1. This is an entitlement for a Cisco Security account. It is used ...
As one of the largest security companies in the world, we take great pride in building solutions that many thousands of organizations trust to secure their networks. Small businesses and large enterprises alike rely on Cisco firewalls to keep their organi...
Register for the March 14th webinar at 12pm PT / 3PM ET
Learn how to quickly stop threats by integrating your Cisco Security products:
Sharpen your threat hunting expertise using Umbrella, AMP, Email Security, Threat Grid, and Cisco Threa...