Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1544
Views
0
Helpful
1
Replies

Anyconnect, reconnection in 10, 20, 25 minutes.

rsilaev
Level 1
Level 1

‎02-17-2021 12:16 AM

I have a problem that my connection is lost in 10, 20, 25 minutes.

 

group-policy GP-OFFICE-ADM attributes

dns-server value 
vpn-tunnel-protocol ssl-client ssl-clientless
split-tunnel-policy tunnelspecified
split-tunnel-network-list value SPLIT
default-domain value 
address-pools value VPN-POOL-ADM
webvpn
anyconnect mtu 1300

 

Log file:

 

0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] IP addresses from active interfaces: awdl0: FE80:0:0:0:80BC:47FF:FE86:2047 en0: 192.168.1.69, 2A00:1370:8131:60D7:3C57:3BCD:8EDD:FA4, 2A00:1370:8131:60D7:498:A5EF:F657:48E0, FE80:0:0:0:4EC:224D:C9D9:F88F en3: FE80:0:0:0:AEDE:48FF:FE00:1122 llw0: FE80:0:0:0:80BC:47FF:FE86:2047 utun0: FE80:0:0:0:25AD:DBAA:A384:325A utun1: FE80:0:0:0:E678:ECBF:BF66:E27C utun2: 192.168.67.7 utun3: FE80:0:0:0:549B:6001:A060:54ED utun4: FE80:0:0:0:27F6:2E17:A0FE:2B97
2021-02-17 10:37:09.591182+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Reconfigure reason code 15: New network interface.
2021-02-17 10:37:09.592952+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] A routing table change notification has been received. Starting automatic correction of the routing table.
2021-02-17 10:37:09.648776+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Automatic correction of the routing table has been successful.
2021-02-17 10:37:09.657823+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] The entire VPN connection is being reconfigured.
2021-02-17 10:37:09.658754+0300 0x1789b1 Default 0x0 17265 0 Cisco AnyConnect Secure Mobility Client: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnui] VPN state: Reconnecting Network state: Network Accessible Network control state: Network Access: Restricted Network type: Undefined
2021-02-17 10:37:09.658857+0300 0x1789b1 Default 0x0 17265 0 Cisco AnyConnect Secure Mobility Client: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnui] Message type information sent to the user: Reconnecting to vpn.tvoe.ru...
2021-02-17 10:37:09.658973+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: OnTunnelStateChange File: ../../vpn/Agent/TND.cpp Line: 2036 tunnel state change (1->2)
2021-02-17 10:37:10.240931+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: restoreDefaultRouteViaSysConfig File: ../../vpn/AgentUtilities/Routing/RouteHandlerMac.cpp Line: 980 Default route restore not needed
2021-02-17 10:37:10.902071+0300 0x1789b1 Default 0x0 17265 0 Cisco AnyConnect Secure Mobility Client: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnui] Message type information sent to the user: Establishing VPN - Examining system...
2021-02-17 10:37:10.902245+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: addSplitIncludeNetworksForTunnelDnsServers File: ../../vpn/Agent/VpnMgr.cpp Line: 1117 Added split-include network for tunnel DNS server 192.168.45.2
2021-02-17 10:37:10.902262+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: addSplitIncludeNetworksForTunnelDnsServers File: ../../vpn/Agent/VpnMgr.cpp Line: 1117 Added split-include network for tunnel DNS server 192.168.45.3
2021-02-17 10:37:10.910254+0300 0x1789b1 Default 0x0 17265 0 Cisco AnyConnect Secure Mobility Client: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnui] Message type information sent to the user: Establishing VPN - Activating VPN adapter...
2021-02-17 10:37:10.919921+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Host Configuration: Public address: 192.168.1.69/24 Potential public addresses: 192.168.1.69 Private Address: 192.168.67.7/28 Private IPv6 Address: N/A (block IPv6 traffic) Remote Peers: 212.48.36.198 (TCP port 443, UDP port 443, source address 192.168.1.69) Private Networks: 60 (192.168.8.0/24, 192.168.21.0/24, 192.168.22.0/24, 192.168.30.0/23, 192.168.32.0/24, 192.168.34.0/24, 192.168.44.0/24, 192.168.45.0/24, 192.168.47.0/24, 192.168.48.0/24, 192.168.80.0/24, 192.168.81.0/24, 192.168.90.0/24, 192.168.91.0/24, 192.168.252.0/24, 192.168.253.0/24, 192.168.254.0/24, 10.0.10.0/25, 10.5.0.0/16, 10.6.0.0/16, 10.7.0.0/16, 192.168.110.0/24, ...) Private IPv6 Networks: none Public Networks: none Public IPv6 Networks: none Tunnel Mode: yes Tunnel all DNS: no
2021-02-17 10:37:10.919950+0300 0x1789b1 Default 0x0 17265 0 Cisco AnyConnect Secure Mobility Client: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnui] Message type information sent to the user: Establishing VPN - Configuring system...
2021-02-17 10:37:11.473878+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: restoreDefaultRouteViaSysConfig File: ../../vpn/AgentUtilities/Routing/RouteHandlerMac.cpp Line: 980 Default route restore not needed
2021-02-17 10:37:12.150331+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: disablePf File: ../../vpn/AgentUtilities/UnixFwUtil_OSX.cpp Line: 1636 Command '/sbin/pfctl -X 10968581567812797111 2>&1' took 28 ms and returned output No ALTQ support in kernel ALTQ related functions disabled pf disabled
2021-02-17 10:37:12.190782+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: reloadPfRules File: ../../vpn/AgentUtilities/UnixFwUtil_OSX.cpp Line: 1676 [clean] Command '/sbin/pfctl -f /etc/pf.conf 2>&1' took 40 ms and returned output pfctl: Use of -f option, could result in flushing of rules present in the main ruleset added by the system at startup. See /etc/pf.conf for further details. No ALTQ support in kernel ALTQ related functions disabled
2021-02-17 10:37:12.237837+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: SetupFilters File: ../../vpn/AgentUtilities/FilterMgr.cpp Line: 264 Skip Touch ID interface en3
2021-02-17 10:37:12.249533+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: saveInitialRulesToConfigFile File: ../../vpn/AgentUtilities/UnixFwUtil_OSX.cpp Line: 936 Updating pf configuration file /opt/cisco/anyconnect/ac_pf_initial.conf with: 1 options, 2 scrubs, 0 IPv4 dynamic split tunnel rules, 0 IPv6 dynamic split tunnel rules, 0 IPv4 dynamic interface rules, 0 IPv6 dynamic interface rules
2021-02-17 10:37:12.249848+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: saveRulesToConfigFile File: ../../vpn/AgentUtilities/UnixFwUtil_OSX.cpp Line: 973 Updating pf configuration file /opt/cisco/anyconnect/ac_pf_final.conf with: 0 IPv4 rules, 0 IPv6 rules
2021-02-17 10:37:12.249968+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: saveRulesToConfigFile File: ../../vpn/AgentUtilities/UnixFwUtil_OSX.cpp Line: 973 Updating pf configuration file /opt/cisco/anyconnect/ac_pf_filt.conf with: 154 IPv4 rules, 86 IPv6 rules
2021-02-17 10:37:12.324037+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: enablePf File: ../../vpn/AgentUtilities/UnixFwUtil_OSX.cpp Line: 1580 Command '/sbin/pfctl -E -f /etc/pf.conf 2>&1' took 74 ms and returned output pfctl: Use of -f option, could result in flushing of rules present in the main ruleset added by the system at startup. See /etc/pf.conf for further details. No ALTQ support in kernel ALTQ related functions disabled pf enabled Token : 10968581567837315543 , extracted token 10968581567837315543
2021-02-17 10:37:12.343431+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: clearPfStates File: ../../vpn/AgentUtilities/UnixFwUtil_OSX.cpp Line: 1698 Command '/sbin/pfctl -F states 2>&1' took 19 ms and returned output No ALTQ support in kernel ALTQ related functions disabled 104 states cleared
2021-02-17 10:37:12.343443+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: applyFirewallConfiguration File: ../../vpn/AgentUtilities/HostConfigMgr.cpp Line: 1281 No Firewall Rules to configure
2021-02-17 10:37:12.343779+0300 0x1789b1 Default 0x0 17265 0 Cisco AnyConnect Secure Mobility Client: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnui] Message type information sent to the user: Establishing VPN...
2021-02-17 10:37:12.346638+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] Function: OnTunnelStateChange File: ../../vpn/Agent/TND.cpp Line: 2036 tunnel state change (2->1)
2021-02-17 10:37:12.346647+0300 0x17855a Default 0x0 17225 0 vpnagentd: (libvpncommon.dylib) [com.cisco.anyconnect.vpn:acvpnagent] The entire VPN connection has been reconfigured.
Labels:
Preview file
10 KB
0 Helpful
1 Reply 1

Sheraz.Salim
VIP
VIP

‎02-17-2021 12:44 AM

here cisco TAC document with very similar issue for discountion.

please do not forget to rate.
0 Helpful
Customers Also Viewed These Support Documents