Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2375
Views
0
Helpful
1
Replies

VPN AnyConnect issues

AdamBudzinski
Level 1
Level 1

‎07-26-2016 07:01 AM - edited ‎02-21-2020 08:54 PM

Hello,

We have the following problem. We are using a encryption product (software installed on endpoints, mostly Windows clients) that have to connect to the Management Server to download a security policy (this is happening via TLS). As soon users connect remotely using AnyConnect the updates fail but we are able to ping the server Encryption management server .... 

My question is. After the end user establishes a VPN tunnel with ASA will it pass the client request while downloading policy or will the VPN somehow modify it ? 

Thanks 

Adam 

Labels:
0 Helpful
1 Reply 1

Greg Smalley
Level 1
Level 1

‎07-26-2016 09:57 AM

Possibly an MTU issue where the ASA is dropping fragmented large packets.  You can try "anyconnect ssl df-bit-ignore" under your "webvpn" profile to allow the fragmented packets through the ASA.  If that works, you may want to adjust your MTU settings under your webvpn profile to something lower than 1300.

0 Helpful
Customers Also Viewed These Support Documents