ASA 5505 config needed for iPhone AnyConnect vpn connection

Answered Question
Nov 26th, 2010

I'm looking for configuration instructions for an ASA 5505 to allow me to connect my iPhone using the Cisco AnyConnect Secure Mobility Client.

Anyone know where I can get step-by-step instructions?

I have an ASA 5505 with O/S 8.2(3) and ADSM 6.3(4). The ASA has AnyConnect Essentials and and AnyConnect for Mobile licenses. The iPhone has Cisco AnyConnect Secure Mobility Client 2.4.3032.

Thanks

I have this problem too.
0 votes
Correct Answer by slawford about 3 years 4 months ago

Hi Andy,

Config wise on the ASA, you dont need to do anything special for AnyConnect on the iPhone. The following config guide still holds true: http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080975e83.shtml

You have already indicated that you have the AnyConnect Essentials and AnyConnect Mobile license, so you once you have gone through the config guide above, you should be good to go.

Let me know how you go, or if you have any more specific questions.

Regards,

Steve.

  • 1
  • 2
  • 3
  • 4
  • 5
Average Rating: 5 (1 ratings)
Correct Answer
slawford Tue, 11/30/2010 - 00:34

Hi Andy,

Config wise on the ASA, you dont need to do anything special for AnyConnect on the iPhone. The following config guide still holds true: http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080975e83.shtml

You have already indicated that you have the AnyConnect Essentials and AnyConnect Mobile license, so you once you have gone through the config guide above, you should be good to go.

Let me know how you go, or if you have any more specific questions.

Regards,

Steve.

andyhibbert Wed, 12/01/2010 - 07:16

Finally got it working via the command line.

The trick is to give SVC an image to load even though it isn't needed. SVC can then be enabled.

The ASDM SSLVPN Wizard allows an AnyConnect configuration without a VPN client image specified but it doesn't work.

Images for the iPhone are installed via the Apple app store not the ASA.

Thanks

larryschwenk Fri, 12/10/2010 - 06:41

Let me first say I'm a home user and the reason I'm using the ASA 5505 is so I can access everything inside my home network via my iphone/ipad.  I replaced my RVS4000 router because it could not support iphone vpn.

I've been fighting this for a couple weeks now.  I have the ASA5505-BUN-K9.  I was told that this model included just a basic license, but that would cover me to make the iphone connect and a laptop connect; no more then 2 or 3 VPNs ever connecting.  So no additional license was needed.  In fact no license came with it other then what was "built in".

First, is this true?  In this post the AnyConnect Essentials and AnyConnect Mobile license was also needed???  If so, what specifically do I need to ask for so I can purchase the license I need?

A Cisco rep helped me get the ASA configured so I could get my network working again and access to the internet.  It worked when I powered it up, but after running the setup wizard it didn't.  He had me use the command line to add a gateway which for whatever reason the wizard broke when I ran it.

I tried the VPN wizard and failed badly (now that might be a license issue too).  Anyway, for the instructions you listed in the link, how strictly do I follow the steps?  Word for word?  Remember I'm a simple user who knows some basics but I'm not a network engineer.  My home network is all in the 192.168.1.x range with the ASA at 192.168.1.1 and the internet IP being feed via a cable modem.  During the VPN wizard attempt I told it to use 192.68.1.120 to 192.168.1.130 as the range to assign to incoming VPN connections.  I want the iphone to be able to see and use all internal network devices (computers, NAS,...).  There was another post I remember seeing something along the lines that a command was needed to enable NAT-T over IPSEC or something?

- Larry

Actions

Login or Register to take actions

This Discussion

Posted November 26, 2010 at 2:29 AM
Stats:
Replies:3 Avg. Rating:5
Views:5873 Votes:0
Shares:0
Tags: No tags.

Discussions Leaderboard

Rank Username Points
1 7,861
2 6,140
3 3,170
4 1,473
5 1,446