Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
19118
Views
5
Helpful
8
Replies

OSX 10.11.3 Cannot VPN via AnyConnect 3.1.14018 via Verizon iPhone6 Hotspot to ASA 5550

Go to solution
cisco
Level 1
Level 1

‎07-22-2016 09:45 AM - edited ‎02-21-2020 08:54 PM

I've done a fair amount of searching on this, have found similar issues but not this exact one.

I have a Mac running OSX 10.11.3 using Cisco AnyConnect 3.1.14018.  It can VPN to our ASA sw version 8.2(5)55 perfectly fine over any Wifi or LAN.  It cannot complete a VPN connection using a Verizon iPhone 6 running the latest iOS via the mobile hotspot.  The VPN connection itself requires both a certificate and a username/password (from AD authentication).

When the attempt is made, on the Mac we get the error: The VPN client was unable to successfully verify the IP forwarding table modifications. A VPN connection will not be established.

The connection can be made over other hotspots, Android over Verizon, IOS over AT&T, no problem.  IOS over Verizon?  Nope.  No luck with Verizon support either.

The only thing that stands out in the firewall log when the connection attempt fails is: Group <VPNPolicy> User <spongebob> IP <123.45.123.234> Transmitting large packet 1456 (threshold 1399).

Any ideas?

Thanks!

2 people had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Dina Odeh
Level 1
Level 1
In response to cisco

‎07-25-2016 10:19 AM

Try please to turn off IPv.6 from the MAC interface 

View solution in original post

8 Replies 8

Go to solution
Dina Odeh
Level 1
Level 1

‎07-22-2016 10:43 AM

Hi, 

Seems that you are hitting this bug:

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCur55392/?reffering_site=dumpcr

Please apply the workaround and let us know if it will help 

0 Helpful

Go to solution
cisco
Level 1
Level 1
In response to Dina Odeh

‎07-25-2016 06:31 AM

According to the conditions of that bug, this problem doesn't fit.  The Mac isn't running Yosemite, and the tether works on every device I try except for a Verizon iPhone 6.  I'll take a look at the workaround, but I don't think it's going to make a difference since it's entirely different conditions.

0 Helpful

Go to solution
cisco
Level 1
Level 1
In response to Dina Odeh

‎07-25-2016 08:16 AM

ASA Running IOS 8.2(5)55, client-bypass-protocol isn't available via cli or asdm.

0 Helpful

Go to solution
Dina Odeh
Level 1
Level 1
In response to cisco

‎07-25-2016 10:19 AM

Try please to turn off IPv.6 from the MAC interface 

Go to solution
cisco
Level 1
Level 1
In response to Dina Odeh

‎07-26-2016 10:39 AM

Ok, it connects now.  The new problem is that there's no network throughput - user can't hit external websites or our internal email server.  I'll see if I can figure that out.  Thanks!

0 Helpful

Go to solution
coolbreeze
Level 1
Level 1
In response to Dina Odeh

‎02-04-2019 09:41 AM

I had this problem with an AT&T Hotspot connection.  Changed the WiFi IPv6 to Link-Local Only.  VPN client now connects.

0 Helpful

Go to solution
Rodrigo-1100
Level 1
Level 1
In response to Dina Odeh

‎09-01-2020 02:53 PM

it doesn't work in my case. macOS version 10.15.6 (19G2021)

0 Helpful

Go to solution
Rodrigo-1100
Level 1
Level 1
In response to Rodrigo-1100

‎09-01-2020 02:54 PM

>> error: The VPN client was unable to successfully verify the IP forwarding table modifications. A VPN connection will not be established.
>> state: Disconnected

0 Helpful
Customers Also Viewed These Support Documents