Cisco Anyconnect keeps disconnecting and reconnecting after 1 minute or so.

TweetyPie · ‎09-26-2018

Hi Guys,

Hopefully someone can help me, we are having numerous users (not all) having an issue whereby when they connect to VPN using Cisco Any-connect (Version 4.3.04030) it keeps dropping the connecting after 1 minute or so maybe even 1 minute 10 seconds.

The users that are experiencing problems are being connected via Transport protocol TLSv1.2 which keeps dropping the connection and reconnecting, the clients that are not having any issues are connected via DTLS and it is very stable.

please see attached DART logs we have captured , i am not sure what is causing this and why clients cannot connect with DTLS? below is also the webvpn gpo details.

webvpn
url-list none
filter none
homepage none
port-forward disable
http-proxy disable
sso-server none
svc dtls none
svc keep-installer installed
svc keepalive none
svc rekey time none
svc rekey method none
svc dpd-interval client none
svc dpd-interval gateway none
svc compression none
svc modules none
svc profiles none
svc ask none default webvpn
customization none
http-comp none
user-storage none
storage-key none
hidden-shares none
smart-tunnel disable
activex-relay disable
file-entry disable
file-browsing disable
url-entry disable
deny-message none

Rahul Govindan · ‎09-28-2018

You may be running into the issue as seen below:

https://www.cisco.com/c/en/us/support/docs/security/anyconnect-secure-mobility-client/116881-technote-anyconnect-00.html#anc5

This could be seen for clients that have DTLS blocked in the path. For clients that do not have DTLS blocked, they establish both TLS and DTLS tunnels successfully. Follow the workarounds given in the document to fix this.