Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

File Share access from SSL Anyconnect VPN client

Hello,

 

am unable to access a shared folders from a server while connecting via SSL Anyconnect client. I can ping the server fine, I get prompted to autehenticate (after several seconds) (Share/Security permissions permit Everyone to read folder content), then after a few more seconds I get message that unable to access.

I can access the same share from other internal computers, it is only when connecting via VPN, ping to the server from vpn connected computer are fine so I tried to lower the mtu to 1200 for default group policy for VPN users but no luck.

On the ASA Firewall log I can see that a TCP slot connection between 2 hosts was created and then it says that the TCP connection was deleted.

 

Any ideas would could be blocking file share access on a VPN connection

5 REPLIES

How are you accessing the

How are you accessing the shared folders?  are you using the FQDN of the server?  If you try to use the servers IP, are you able to access the folders then?

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to rate and select a correct answer
Community Member

am trying with IP address to

am trying with IP address to avoid any dns issues, the traffic is split tunnelled and in fact I can ping the same server acting as a file server from the VPN client.

Let me know any other suggestions to this as I have no acl that is blocking anything between the VPN clients and the Server.

 

The weird thing is that I get the authentication prompt when I gave everyone read access, so this prompt should not really appear as anyone would have direct access. Will check further on this, in meantime any suggestions are welcome

Are you using a radius/TACACS

Are you using a radius/TACACS+ server to authenticate the remote VPN users or are you using the local user database on the ASA?

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to rate and select a correct answer
Community Member

LDAP authentication

LDAP authentication

I am not entirely sure this

I am not entirely sure this is a Cisco / VPN problem.

Have you seen this document?

http://www.cisco.com/c/en/us/support/docs/security/vpn-client/43066-vpn-net-hood.html

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to rate and select a correct answer
1059
Views
0
Helpful
5
Replies
CreatePlease to create content