cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1057
Views
0
Helpful
7
Replies

Anyconnect, Problem with 1 Client

Hello,

 

I have a problem with one single computer and anyconnect (4.7.03052). We have two connection profiles with group policys (admin, user), both with split tunneling.

If i connect from this computer, i can connect to our ASA and have acces to our internal network, but no access to internet.

And the route details just show me a 0.0.0.0/0.

 

If i connect with the same users (admin and user tested) on any other machine, i've got access to internal network and internet and got the "secured routes" entrys in route details.

Connected with Putty and use "show vpn sessiondb" it shows me the right connection profile and the right group policy, no matter if i connect on the machine that doesn't work or machines where anyconnect works.

 

Why does this single client not take the route details entrys although on the ASA side everything works fine?

 

I'm happy about every tip, thanks

 

Michael

7 Replies 7

The problematic computer you need to make sure you setting are match with work computer anyconnect. 

it could be your anyconnect setting need change i have attached the example.

anyconnect_setting.PNG

please do not forget to rate.

The settings are the same. "Enable automatic certificate selection", "minimize anyconnect on vpn connect" and "do not remember smartcard pin" are activated.

With this settings it works on any computer, expect one machine.

 

try uninstall the anyconnect on this problematic computer and re-install again.

please do not forget to rate.

i uninstalled the program and deleted the remaining folders manually.

Then re-installed anyconnect -> first connection worked.

 

But, after disconnect and try to reconnect, same problem again.

uninstalling, deleting folders and re-install works every time, but only for one connection.

what is the ASA code and what anyconnect version you running?

 

please do not forget to rate.

Cisco Firepower 2110

Local Geolocation Update                  2020-04-28-002

Local Rule Update                              2020-04-29-001-vrt

Software 1 Management Center         6.5.0

Software 1 Device                              6.4.0.8

VDB 1 Management Center                332

 

Anyconnect Version is:  4.7.03052

All working clients and the one with the problem with the same version.

BarinderGhuman
Level 1
Level 1

Hi,

 

I trust you must be doing well.

I can see that the user is not getting internet access after connecting to the VPN. Here could be the possible reasons:

 

++PAT not configured on ASA for Anyconnect's pool.

++Conflicting connection profile that connects to different group-policy.

 

The 1st one is not possible as it is working for all other users. Could you please share .xml profiles from the client, and configuration from ASA (tunnel-group and group-policy) to verify the same.

 

 

Cheers,
Barinder Singh Ghuman