Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4036
Views
5
Helpful
18
Replies

iPhone-ASA VPN connects and gets teardown

Go to solution
PiEich
Level 1
Level 1

‎08-06-2012 10:10 AM

Hi everyone...

I have a VPN working correctly on an ASA 8.0(5), but when I try to connect from an iPhone (IOS 5.1.1) it connects and right away gets a teardown.

Any thoughts?

Thank you!

Labels:
0 Helpful
18 Replies 18

Go to solution
bejoybkn1
Level 1
Level 1
In response to PiEich

‎10-20-2012 07:06 AM

Hello Pablo,

I am seeing you have configured the tunnel-group for remote access as

TESTVPN and on your iphone vpn pic i m seeing group name as MIRGOR.

Could you do one thing?

Could you reconfigure or create a new profile on your phone with group name as TESTVPN and user name as

Usuario10 or whatever available user name present on your firewall?

Bejoy

bejoybkn.blogspot.in

0 Helpful

Go to solution
PiEich
Level 1
Level 1
In response to PiEich

‎10-20-2012 07:47 AM

Hi Bejoy, thank you for your response, and apologize for this misunderstanding: in the written config I changed the name on purpose, but the group config remains the same as in the picture I pasted above.

The VPN is with that configuration is actually getting connected, and teardown 1 second after.

So I just deleted the split-tunnel list value and created it from scratch. So far no problems, but I just added 3 subnets... Wonder which was the conflicting subnet yet. If customer requests to add more subnets to the tunnelled ones, I will add them 1 each time, and will test the VPN with the debug running until I find what was the original problem ¬¬

Thank you all guys

0 Helpful

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni
In response to PiEich

‎10-20-2012 11:13 AM

Hello Pablo,

It does not make sense at all why a split tunnel policy would torn down a connection for an Iphone or Ipad user... Could be a bug...

If there is a way you could post the real configuration ( No changes made on purpose ) while the issue happens I would analize it to check for something weird..

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

Go to solution
PiEich
Level 1
Level 1
In response to Julio Carvajal

‎10-20-2012 11:20 AM

Right now I don't have the problematic config because I wiped out the original split-tunnel list and started from scratch.

So far no issues, but just added 3 subnets and I know that maybe some more are needed.

So, when they request to add new ones, and if after adding I start having these weird issues, I promise I will post the real config

Thank you!

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents