Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
810
Views
0
Helpful
3
Replies

HTTP/3 over AnyConnect

Robturner1
Level 1
Level 1

‎05-16-2022 08:29 AM

We are doing some testing with one of our servers to enable HTTP/3(TLSv1.3) and we are seeing this working on the internal LAN and working from an external connection (public internet)

 

When we are trying to connect whilst connected to our AnyConnect VPN we are only seeing HTTP/2(TLSv1.2)

 

is this something that is being blocked or is it something that is not supported by the currently AnyConnect client?

 

ASAv - 9.17

AnyConnect Client - 4.10.04071

Labels:
0 Helpful
3 Replies 3

balaji.bandi
Hall of Fame
Hall of Fame

‎05-16-2022 08:37 AM

I have not tested, as per one of the session ASA do support TLS 1.3, next test check the Logs while accessing the site, also capture with wireshark, what you see on the server side ?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Robturner1
Level 1
Level 1
In response to balaji.bandi

‎05-16-2022 11:47 PM

Morning

 

When I am not connected to the VPN, wireshark is showing the TLSv1.3 and QUIC protocols being used, when on the VPN, all I am seeing is TLSv1.2 from a client perspective

0 Helpful

MHM Cisco World
VIP
VIP

‎05-16-2022 09:06 AM - edited ‎05-17-2022 03:47 AM

Anyconnect use tis 1.3 so there is conflict with server I think. 
lmkmkmkmk.png

0 Helpful
Customers Also Viewed These Support Documents