Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
4406
Views
0
Helpful
8
Replies

AnyConnect Client and Sprint 4G

Go to solution
DOUG HAYES
Level 1
Level 1

‎08-04-2011 06:44 AM - edited ‎02-21-2020 05:29 PM

I have a couple of ASA5520, used for remote access vpn. We use the 3.0.2052 Anyconnect client  AnyConnect client. Many users use Sprint and are beginneng to get 4G capable cellular modems.  Users cannot connect via 4G.  They get an error message stating that the AnyConnect client could not successfully verify the changes to the forwarding table.  However, using the same hardware, and the same Sprint (Novatel) cellular modem software, they can connect using 3G. I've seen this with Windows clients using Windows XP.

Has anyone else encountered this?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marcin Latosiewicz
Cisco Employee
Cisco Employee
In response to Marcin Latosiewicz

‎10-10-2011 03:54 AM

Doug,

There was a recent bug filed against this behavior and should be already fixed in 3.0.4xxx

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtq95503

But again, not sure if problem would or would not persist for your dongle/operator pair.

M,

View solution in original post

0 Helpful
8 Replies 8

Go to solution
Marcin Latosiewicz
Cisco Employee
Cisco Employee

‎08-04-2011 07:41 AM

Doug,

Quite recently we've fixed a few problems for some 3G cards and a few other dongles and it should be already integrated in AC 3.0.2052.

However, can you try the second workaround mentioned in this bug:

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCto76864

If it doesn't solve the issue I would say, generate a DART package and open up a TAC case attaching the DART.

We'd need to look a bit deeper.

Marcin

0 Helpful

Go to solution
hooperp
Level 1
Level 1

‎09-28-2011 06:43 AM

We currently have the same set-up using ASA 5520's as well.  4G does not work, while 3G works fine.  This is using AnyConnect version 2.5.3054.

I was attempting to try the fix referenced in the above link but was having issues with the ASA pushing version 3.0 Clients to the VPN users.

Can anyone confirm if Anyconnect 3.0+ fixes the issue with 4G connections?

Thanks.

0 Helpful

Go to solution
DOUG HAYES
Level 1
Level 1
In response to hooperp

‎09-28-2011 07:25 AM

hooperp,

3.0.2052 was the version I experienced the issue with.  We had  pushed it out in July.  We also had issues with the auto deploy of this  package.  Our users had install failures because the web install aborted with error messages that the anyconnect client not confirm that is connected to our gateway and that the local network may not be trustworthy.  We had to send a predeploy package to affected users to get around the issue. Makes me a little leary of pushing out new versions, so I also would be interested if anyone has a version of anyconnect that works with Sprint 4G.

Marcin

Has Cisco ever tested Anyconnect with the Sprint 4G?

0 Helpful

Go to solution
Marcin Latosiewicz
Cisco Employee
Cisco Employee
In response to DOUG HAYES

‎09-28-2011 08:04 AM

Doug,

I can tell you this - it's impossible to test all the dongles/providers.

I do know Sprint is kinda big, but so is variety of dongles you can use for 3G/4G.

Now I'm not a QA engineer nor am I affilited with business unit producing anyconnect so I would not be the best person to comment what they have or have not tested (without poking to deeply into part of the woods which is not mine).


Problems we have right now remind me of using old WAP/GSM and old VPN client... those were exicting days ;-)

Not much I can recommend but:

1) Make sure you have latest firmware installed from your provider (drivers for dongles/modems).

2) Open a TAC case, we'll have a look if there is anything on our side.

Sorry,

M.

0 Helpful

Go to solution
DOUG HAYES
Level 1
Level 1
In response to Marcin Latosiewicz

‎09-28-2011 09:03 AM

Marcin

I can't do QA for Sprint and Cisco either.  For one thing, I don't have a 4G modem, so I can't take your DART suggestion. Also, it wouldn't make much sense to open a TAC case on a problem I can't reproduce.  Any of my remote users who do have a Sprint 4G modem are using it in 3G mode to get around the issue.  Cisco has at least two users who have noticed this issue.  So unless someone posts to this forum that the Sprint 4G works, my assumption will be that Anyconnect and Sprint 4G are incompatible at this point in time.

Doug

0 Helpful

Go to solution
Marcin Latosiewicz
Cisco Employee
Cisco Employee
In response to DOUG HAYES

‎09-30-2011 07:42 AM

Doug,

You are completely right.

If I can ask you to reach out to your SE and signal that you're facing such a problem, they can most likely reach out to the business unit and gain access to info I do not have access to, or maybe ask for additional testing for the scenario you mentioned. If you could at least get info about the dongle that the users are facing problem with.

On my end I cannot do much more, I will be ignored by business unit if I cannot present a SR.

Marcin

0 Helpful

Go to solution
Marcin Latosiewicz
Cisco Employee
Cisco Employee
In response to Marcin Latosiewicz

‎10-10-2011 03:54 AM

Doug,

There was a recent bug filed against this behavior and should be already fixed in 3.0.4xxx

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtq95503

But again, not sure if problem would or would not persist for your dongle/operator pair.

M,

0 Helpful

Go to solution
DOUG HAYES
Level 1
Level 1
In response to Marcin Latosiewicz

‎11-10-2011 02:21 PM

Martin

I had a user with a Sprint 4G card test using the anyconnect-win-3.0.4235predeploy-k9 package and he was successful in using AnyConnect on the Sprint 4G network.

Thanks,

Doug

0 Helpful
Top