Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1075
Views
0
Helpful
7
Replies

Anyconnect, Problem with 1 Client

MichaelBrander9225
Level 1
Level 1

‎04-22-2020 05:04 AM

Hello,

 

I have a problem with one single computer and anyconnect (4.7.03052). We have two connection profiles with group policys (admin, user), both with split tunneling.

If i connect from this computer, i can connect to our ASA and have acces to our internal network, but no access to internet.

And the route details just show me a 0.0.0.0/0.

 

If i connect with the same users (admin and user tested) on any other machine, i've got access to internal network and internet and got the "secured routes" entrys in route details.

Connected with Putty and use "show vpn sessiondb" it shows me the right connection profile and the right group policy, no matter if i connect on the machine that doesn't work or machines where anyconnect works.

 

Why does this single client not take the route details entrys although on the ASA side everything works fine?

 

I'm happy about every tip, thanks

 

Michael

Labels:
0 Helpful
7 Replies 7

Sheraz.Salim
VIP
VIP

‎04-22-2020 05:39 AM - edited ‎04-22-2020 05:39 AM

The problematic computer you need to make sure you setting are match with work computer anyconnect. 

it could be your anyconnect setting need change i have attached the example.

anyconnect_setting.PNG

please do not forget to rate.
0 Helpful

MichaelBrander9225
Level 1
Level 1
In response to Sheraz.Salim

‎04-22-2020 05:57 AM - edited ‎04-22-2020 06:02 AM

The settings are the same. "Enable automatic certificate selection", "minimize anyconnect on vpn connect" and "do not remember smartcard pin" are activated.

With this settings it works on any computer, expect one machine.

 

0 Helpful

Sheraz.Salim
VIP
VIP
In response to MichaelBrander9225

‎04-22-2020 06:20 AM

try uninstall the anyconnect on this problematic computer and re-install again.

please do not forget to rate.
0 Helpful

MichaelBrander9225
Level 1
Level 1
In response to Sheraz.Salim

‎04-22-2020 11:52 PM

i uninstalled the program and deleted the remaining folders manually.

Then re-installed anyconnect -> first connection worked.

 

But, after disconnect and try to reconnect, same problem again.

uninstalling, deleting folders and re-install works every time, but only for one connection.

0 Helpful

Sheraz.Salim
VIP
VIP
In response to MichaelBrander9225

‎04-23-2020 01:26 AM

what is the ASA code and what anyconnect version you running?

 

please do not forget to rate.
0 Helpful

MichaelBrander9225
Level 1
Level 1
In response to Sheraz.Salim

‎05-04-2020 10:12 PM

Cisco Firepower 2110

Local Geolocation Update                  2020-04-28-002

Local Rule Update                              2020-04-29-001-vrt

Software 1 Management Center         6.5.0

Software 1 Device                              6.4.0.8

VDB 1 Management Center                332

 

Anyconnect Version is:  4.7.03052

All working clients and the one with the problem with the same version.

0 Helpful

BarinderGhuman
Level 1
Level 1

‎04-23-2020 07:33 AM - edited ‎04-23-2020 07:34 AM

Hi,

 

I trust you must be doing well.

I can see that the user is not getting internet access after connecting to the VPN. Here could be the possible reasons:

 

++PAT not configured on ASA for Anyconnect's pool.

++Conflicting connection profile that connects to different group-policy.

 

The 1st one is not possible as it is working for all other users. Could you please share .xml profiles from the client, and configuration from ASA (tunnel-group and group-policy) to verify the same.

 

 

Cheers,
Barinder Singh Ghuman
0 Helpful
Customers Also Viewed These Support Documents