Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

AnyConnect VPN - Force Transport Protocol DTLS

Hey, I'm using AnyConnect (2.4.1012) to connect to my 5505 (8.3.1). I want to enable DTLS as the transport protocol, I've used the following commands:

group-policy AnyConnect-GrpPolicy attributes
webvpn
  svc dtls enable

Whenever I connect up my Anyconnect client it shows TLS as the transport protocol. Using the CLI how can I investigate what's going on? My Cipher is RSA_AES_256_SHA1 if that makes any difference.

Thanks.

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: AnyConnect VPN - Force Transport Protocol DTLS

Can you please share the output of "show vpn-sessiondb detail svc filter name " once you are connected?

Also, if UDP/443 is being blocked from the path, it will fall back to use TLS (TCP/443).

2 REPLIES
Cisco Employee

Re: AnyConnect VPN - Force Transport Protocol DTLS

Can you please share the output of "show vpn-sessiondb detail svc filter name " once you are connected?

Also, if UDP/443 is being blocked from the path, it will fall back to use TLS (TCP/443).

New Member

Re: AnyConnect VPN - Force Transport Protocol DTLS

Yep, I hadn't opened up UDP 443 on my perimeter router. Thanks for the assist.

2293
Views
0
Helpful
2
Replies
CreatePlease to create content