want to ask the problem about webvpn

Jian Yu · ‎10-19-2013

I config the ssl vpn on cisco 1941, and i already installed the anyconnect vpnclient from browser.but when i log on it. the client give this

my gateway on router

webvpn gateway gw

ip address WAN_IP port 443

http-redirect port 80

ssl trustpoint TP-self-signed-2371163519

inservice

and webvpn context is

webvpn context TakenakaTJ

aaa authentication list sslvpn

gateway gw

!

ssl authenticate verify all

inservice

!

policy group Takenaka_TianJin

svc address-pool "ssl-user" netmask 255.255.255.0

svc split dns "202.99.96.68"

svc split include 192.168.2.0 255.255.255.0

svc dns-server primary 192.168.2.254

svc dns-server secondary 202.99.96.68

default-group-policy Takenaka_TianJin

then i debug webvpn webservice

Oct 17 17:47:45.853: WV-WEBSERVICE: Created HTTP reply header dump

Oct 17 17:47:45.853: WV-WEBSERVICE: Created 130 byte content data to send to external client for requested file: /success.html

Oct 17 17:47:49.177: WV-WEBSERVICE: HTTP request: 0, path: /+CSCOT+/translation-table?type=combined-manifest&textdomain=AnyConnect

Oct 17 17:47:49.177: WV-WEBSERVICE: remapped file /+CSCOT+/translation-table?type=combined-manifes to /+CSCOT+/translation-table?type=combined-manifes

Oct 17 17:47:49.177: WV-WEBSERVICE: Could not find requested file: /+CSCOT+/translation-table?type=combined-manifes

Oct 17 17:47:49.181: WV-WEBSERVICE: Date: Thu, 17 Oct 2013 17:47:49 GMT, Expires: Thu, 17 Oct 2013 16:47:49 GMT

Oct 17 17:47:49.181: WV-WEBSERVICE: Created HTTP reply for not found message

i want to ask why it could not find requested file? and how to solve it.

thanks.

johnlloyd_13 · ‎10-19-2013

hi,

could you add/enable the SSL/TLS algorithm.

kindly post a show webvpn gateway output afterwards.

Router(config-webvpn-gateway)#ssl encryption ?

3des-sha1 3DES and SHA1

aes-sha1 AES and SHA1

rc4-md5 RC4 and MD5

Router(config-webvpn-gateway)#ssl encryption 3des-sha1 ?

aes-sha1 AES and SHA1

rc4-md5 RC4 and MD5

Router(config-webvpn-gateway)#ssl encryption 3des-sha1 aes-sha1

Jian Yu · ‎10-19-2013

hello,johnlloyd

i add ssl encr 3des-sha1 aes sha1,but the problem still exist.

show webvpn gateway | ?

Gateway Name: gw

Admin Status: up

Operation Status: up

Error and Event Logging: Disabled

IP: WAN_IP, port: 443

HTTP Redirect port: 80

SSL Trustpoint: TP-self-signed-2371163519

FVRF Name not configured

do u need this?

johnlloyd_13 · ‎10-19-2013

hi,

thanks for output! could you also post show webvpn license from your 1941?

Jian Yu · ‎10-19-2013

hi

give u show webvpn license,thanks for your help

Max platform license count : 75

Available license count : 75

Reserved license count : 75

In-use count : 0

Jian Yu · ‎10-19-2013

who know it is the local pc's problem or the router config problem?

who can help me?

thanks

Jian Yu · ‎10-20-2013

Oct 17 17:47:49.177: WV-WEBSERVICE: HTTP request: 0, path: /+CSCOT+/translation-table?type=combined-manifest&textdomain=AnyConnect

Oct 17 17:47:49.177: WV-WEBSERVICE: remapped file /+CSCOT+/translation-table?type=combined-manifes to /+CSCOT+/translation-table?type=combined-manifes

Oct 17 17:47:49.177: WV-WEBSERVICE: Could not find requested file: /+CSCOT+/translation-table?type=combined-manifes

can anyone know what's meaning above this.

remapped the router file to client file? then could not find it on client? isn't it?

who know how to solve it. plz teach me. thanks very much.