Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
378
Views
0
Helpful
0
Replies

AnyConnect on Linux

Ben72665
Level 1
Level 1

‎10-18-2019 03:29 AM - edited ‎02-21-2020 09:46 PM

Hello,

 

I'm using version 4.5.02036 of the client and can connect to my VPN fine, I get the expected message:

 

>> state: Connecting
>> notice: Establishing VPN session...
The AnyConnect Downloader is analyzing this computer. Please wait...
The AnyConnect Downloader is performing update checks...
>> notice: The AnyConnect Downloader is performing update checks...
>> notice: Checking for profile updates...
The AnyConnect Downloader updates have been completed.
Please wait while the VPN connection is established...
>> notice: Checking for customization updates...
>> notice: Performing any required updates...
>> notice: The AnyConnect Downloader updates have been completed.
>> state: Connecting
>> notice: Establishing VPN session...
>> notice: Establishing VPN - Initiating connection...
>> notice: Establishing VPN - Examining system...
>> notice: Establishing VPN - Activating VPN adapter...
>> notice: Establishing VPN - Configuring system...
>> notice: Establishing VPN...
>> state: Connected
>> notice: Connected to vpn.com.
>> state: Connected
>> notice: Connected to vpn.com.
>> state: Reconnecting
>> notice: Reconnecting to vpn.com...
>> notice: Establishing VPN - Examining system...
>> notice: Establishing VPN - Activating VPN adapter...
>> notice: Establishing VPN - Configuring system...
>> notice: Establishing VPN...
>> state: Connected
>> notice: Connected to vpn.com.

My iptables are as follows:

 

# Generated by iptables-save v1.8.2 on Fri Oct 18 12:04:00 2019
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:ciscovpn - [0:0]
:ciscovpnfinal - [0:0]
:ciscovpnfw - [0:0]
-A INPUT -j ciscovpn
-A INPUT -j ciscovpnfw
-A INPUT -j ciscovpnfinal
-A FORWARD -j ciscovpn
-A FORWARD -j ciscovpnfw
-A FORWARD -j ciscovpnfinal
-A OUTPUT -j ciscovpn
-A OUTPUT -j ciscovpnfw
-A OUTPUT -j ciscovpnfinal
-A ciscovpn -m state --state RELATED,ESTABLISHED -j ACCEPT
-A ciscovpn -o lo+ -j ACCEPT
-A ciscovpn -i lo+ -j ACCEPT
-A ciscovpn -p udp -m udp --sport 68 --dport 67 -j ACCEPT
-A ciscovpn -p udp -m udp --sport 67 --dport 68 -j ACCEPT
-A ciscovpn -p udp -m udp --sport 546 --dport 547 -j ACCEPT
-A ciscovpn -p udp -m udp --sport 547 --dport 546 -j ACCEPT
-A ciscovpn -s 192.168.1.50/32 -d <omitted> -o wlp2s0 -p tcp -m tcp --dport 443 -j ACCEPT
-A ciscovpn -s <omitted> -d 192.168.1.50/32 -i wlp2s0 -p tcp -m tcp --sport 443 -j ACCEPT
-A ciscovpn -s 192.168.1.50/32 -d <omitted> -o wlp2s0 -p udp -m udp --dport 443 -j ACCEPT
-A ciscovpn -s <omitted> -d 192.168.1.50/32 -i wlp2s0 -p udp -m udp --sport 443 -j ACCEPT
-A ciscovpn -i cscotun0 -j RETURN
-A ciscovpn -s <omitted> -o cscotun0 -j RETURN
-A ciscovpn -j DROP
-A ciscovpnfinal -j ACCEPT
COMMIT
# Completed on Fri Oct 18 12:04:00 2019

However, once connected, every connection times out, any ideas what might be going wrong?

 

Thanks in advance,

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents