Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1361
Views
0
Helpful
7
Replies

AnyConnect SSL VPN Vista split-tunneling

bwallander
Level 1
Level 1

‎06-20-2007 11:05 AM - edited ‎02-21-2020 03:06 PM

I recently setup an ASA5510 with 8.0fw with the AnyConnect SSL VPN Client.

Connecting to the SSL VPN works perfectly from all the XP computers that I have tested from. No problems there. However when on Vista, split-tunneling does not seem to function properly. Everything connects and works fine, and I can get to the defined secured remote nets, however I can't access anything out my default gateway(un-secured traffic). It seems like it might be a problem with Vista security features. When I try to ping out to any outside host, I get:

PING: transmit failed, error code 1231.

I can actually ping my default gateway, but nothing gets routed past it without the above error. I've also confirmed this several Vista installations, with Administrator + UAC disabled. Anyone else?

Labels:
0 Helpful
7 Replies 7

cassmith
Level 1
Level 1

‎06-20-2007 11:21 AM

I have done the same testing, and on both Vista 32bit and 64Bit the split tunneling does not seem to work. Also I found that this is a "known" bug

From the Release Notes::

AnyConnect Split-tunneling Does Not Work on Windows Vista - AnyConnect split-tunneling works correctly with Windows XP and Windows 2000 (CSCsi82315)

I am happy that 64Bit works but will hold off on roll out until split-tunneling is fixed.

Cassidy

0 Helpful

bwallander
Level 1
Level 1
In response to cassmith

‎06-20-2007 11:28 AM

Ahh, thank you for pointing that out. I can stop pulling out my hair.

0 Helpful

cassmith
Level 1
Level 1
In response to bwallander

‎06-20-2007 12:02 PM

Here is the link to the release notes:

http://www.cisco.com/en/US/products/ps8411/prod_release_note09186a008086536c.html#wp705918

I checked bug tracker but they have not published any updates for this bug yet.

0 Helpful

bwallander
Level 1
Level 1
In response to cassmith

‎06-25-2007 01:46 PM

According to my Cisco TAC response, this bug is scheduled to be fixed in 2.1, tentatively scheduled late July or early August.

0 Helpful

litouch
Level 1
Level 1
In response to bwallander

‎06-22-2007 04:09 PM

I even can't get thru anyconnect client hooked with my network. After the client is installed, it always tells me that "vpn client agent SSL engine encountered an error. close all sensitive networked applications"

Dont' know why... Still in research.

0 Helpful

cassmith
Level 1
Level 1

‎07-20-2007 05:55 PM

I just got an update on the "split tunnel" bug. Supposedly they have resolved it, now we just need to wait for the updated client to show up on the download site.

0 Helpful

bwallander
Level 1
Level 1
In response to cassmith

‎08-13-2007 01:46 PM

Yep, I am being told the same thing as of today, almost a month later. Has anyone been able to get a pre-release version of 2.1 yet?

0 Helpful
Customers Also Viewed These Support Documents