cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
55513
Views
10
Helpful
2
Replies

Anyconnect log in error

cowetacoit
Level 1
Level 1

Anyone seen this before?

The VPN client was unable to setup IP filtering. A VPN connection will not be

established.

We have a Vendor trying to connect with Windows 7 and they are getting this error. I found this from the Cisco site but was wondering if anyone else had some feedback. I can't find anything on it!



The VPN client was unable to setup IP filtering. A VPN connection will not be

established.


Description    AnyConnect failed to apply the VPN configuration settings to its IP filtering subsystem. A VPN connection is not permitted because this failure could compromise both its security and data integrity. This error is unrecoverable.

Recommended User Response    Restart the computer or device. Restart the VPN connection. Run DART. (See Using DART to Gather Troubleshooting Information <http://www.cisco.com/en/US/docs/security/vpn_client/anyconnect/anyconnect30/administration/guide/ac12managemonitortbs.html#wp1058615> .) Report the error to your organization's technical support and include the DART bundle.

Recommended Administrator Response    Open a case with the Cisco Technical Assistance Center (TAC) and include the DART bundle.

2 Replies 2

mearias
Level 1
Level 1

Hello.

The error message you are receiving is an specific error message related to the "Base Filtering Engine" system service being disabled.

See info about BFE here:

http://maximumpcguides.com/windows-7/what-is-the-base-filtering-engine-bfe-service/

AnyConnect makes a best-effort attempt to enable and start this service upon the vpnagent service startup (not covered by logs).

Try to  restart the vpnagent service and try to establish the VPNconnection.

Ensure that the "Base Filtering Engine" (BFE) system service is running if the same error ever resurfaces, which may happen if a user or some third-party app disables/stops that service while the vpnagent service is already running. (Again, AnyConnect only makes a one-time effort to enable the BFE service.) 

We can also attempt to  set the BFE service to automatic.

Checkout how to find the service:

Hope it helps!

If the service is not available you can use this guide to fix the BFE service and registry:

http://blogs.technet.com/b/networking/archive/2011/06/14/the-windows-firewall-service-fails-to-start-registry-permissions.aspx

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: