Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

IOS Anyconnect VPN

Hello,

i have a question i would like to have a Anyconnect VPN on a cisco 881 with the following configuration:

webvpn gateway ANYCONNECT

ip address XXX.XXX.XXX.XXX port 8080

ssl encryption rc4-md5

ssl trustpoint TP-self-signed-4264276022

inservice

!

webvpn install svc flash:/webvpn/sslclient-win-1.1.4.176.pkg sequence 1

!

webvpn context ANYCONNECT-CONTEXT

ssl authenticate verify all

!

!

policy group ANYCONNECT-POLICY

   functions svc-required

   svc address-pool "VPN"

   svc keep-client-installed

   svc dns-server primary 8.8.8.8

default-group-policy ANYCONNECT-POLICY

aaa authentication list NRG

gateway ANYCONNECT domain @TEST

inservice

!

end

when i try to connect with https://

with Google Chroom i'm getting the following debug output:
Feb  3 20:38:33: WV: sslvpn process rcvd context queue event
Feb  3 20:38:33: WV: sslvpn process rcvd context queue event
Feb  3 20:38:33: WV: sslvpn process rcvd context queue event

Feb  3 20:38:36: WV: sslvpn process rcvd context queue event
Feb  3 20:38:36: WV: sslvpn process rcvd context queue event
Feb  3 20:38:36: WV: sslvpn process rcvd context queue event
Feb  3 20:38:36: WV: Entering APPL with Context: 0x85E02DB8,
      Data buffer(buffer: 0x85D16648, data: 0xEFEF3B8, len: 346,
      offset: 0, domain: 0)
Feb  3 20:38:36: WV: http request: / with no cookie
Feb  3 20:38:36: WV: validated_tp :  cert_username :  matched_ctx :
Feb  3 20:38:36: WV: failed to get sslvpn appinfo from opssl

Feb  3 20:38:36: WV: Error: Failed to get vw_ctx
Feb  3 20:38:36: WV: Appl. processing Failed : 2

with Internet Explorer i'm getting nothing. can any one help me.

  • VPN
1 REPLY
New Member

IOS Anyconnect VPN

I found the problem for this issue it was

policy group ANYCONNECT-POLICY

   functions svc-required

   svc address-pool "VPN"

   svc keep-client-installed

   svc dns-server primary 8.8.8.8

default-group-policy ANYCONNECT-POLICY

aaa authentication list NRG

gateway ANYCONNECT domain @TEST

inservice

it neede to be:

policy group ANYCONNECT-POLICY

   functions svc-required

   svc address-pool "VPN"

   svc keep-client-installed

   svc dns-server primary 8.8.8.8

default-group-policy ANYCONNECT-POLICY

aaa authentication list NRG

gateway ANYCONNECT

inservice

after this the web interface works!!!

427
Views
5
Helpful
1
Replies