Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Host Unreachable when trying to connect using the AnyConnect client

When trying to connect using the Cisco AnyConnect client (2.5.0.217) is received the following error message: Host Unreachable.  However, if I enter my ASA's IP address in my browser, it prompts me to enter my username and passwords, downloads/updates the client and I cannot.  Any idea what could be the issue? My ASA is running version 8.2(1) and ASDM version 6.2(1).

Thanks

5 REPLIES

Re: Host Unreachable when trying to connect using the AnyConnect

Does your test client have a DNS server configured?  Can you browse the Internet?  Are you able to resolve the FQDN of your WebVPN to an IP?

New Member

Re: Host Unreachable when trying to connect using the AnyConnect

Yes, my test client has a DNS server configured and I can browse the Internet.  However, I only use my ASA's IP as I haven't registered my ASA in DNS.  What I find strange and accidentally omitted from my original post is that, if I type my ASA's IP address in a browser (https://asa_ipaddress:4443) I get a login page prompting me to select a profile and enter a username and password, after which the client is downloaded and connected.  However, if I simply launch the AnyConnect client and enter my ASA's IP address I receive the following error message: Connection attempt has failed:Host Unreachable.

Cisco Employee

Re: Host Unreachable when trying to connect using the AnyConnect

Hello,

I guess the issue is with you enabling both ASDM and WebVPN on the outside

interface. Can you check to see if you have a "port 4443" in the

configuration?

webvpn

port 4443

If it is in there, then what you are seeing is normal. If you would like to

access WebVPN via port 443, then please remove the port command and change

the ASDM port to 4443.

http server enable 4443

Hope this helps.

Regards,

NT

New Member

Re: Host Unreachable when trying to connect using the AnyConnect

Is that the best practice in this case?  What does Cisco recommend?

Re: Host Unreachable when trying to connect using the AnyConnect

If you are usinga non-standard SSL port, you will also need to specifiy the configured port when entering the IP address directly into the AnyConnect client.  Without this, AnyConnect will try to connect on TCP 443 by default.  You can also configure an AnyConnect XML profile to pre-position the hostname, IP address, and port so that your end users do not need to worry about it.

5858
Views
0
Helpful
5
Replies
CreatePlease to create content