Seeking help, please! On Wednesday (4/10/2024), I could [remotely] connect to my company’s network via VPN. The very next day, Thursday morning (4/11/2024), cannot connect to [for example only] Remote.Google.com. The Cisco error message states, “Connection attempt has timed out. Please verify internet connectivity.”
Except, I have connectivity (via hardwire and/or wifi) and can connect to any website, except for: remote.[insert_company_name].com
Running UDM Pro and UniFi OS 3.2.12 and System Logs don’t indicate any updates. Even tried a restore using 4/09/2024 backup config. Last, I created an Allow Rule for the laptop’s local IP (e.g., 192.168.1.100), which is on my Default Network, to access google.com, remote.google.com, corp.google.com, etcetera. Still, no luck!
However, when I tether to my iPhone for cellular, it works perfectly (so my I.T. “Help” Desk points the finger at my network config., of course). I cannot be alone. Please help if anyone thinks of anything.
This subreddit is here to provide unofficial technical support to people who use or want to dive into the world of Ubiquiti products. If you haven’t already been descriptive in your post, please take the time to edit it and add as many useful details as you can.
Please read and understand the rules in the sidebar, as posts and comments that violate them will be removed. Please put all off topic posts in the weekly off topic thread that is stickied to the top of the subreddit.
If you see people spreading misinformation, trying to mislead others, or other inappropriate behavior, please report it!
Edit to add: Do this on the PC. File is C:\windows\system32\drivers\hosts. Open the file with notepad as admin.
Create a host file entry for your company’s domain name and the IP address of your company’s DNS server. Had this issue when using Verizon hotspots. Your home Internet provider is jacking with DNS.
Here are some things you can try if Cisco AnyConnect won’t connect to a corporate VPN:
-Update Cisco AnyConnect: Make sure you have the latest version of Cisco AnyConnect
-Check your AnyConnect Networks adapter: Make sure the IPv6 protocol is unchecked
-Disable or uncheck “NpCap Packet Driver”: If you have nmap (zenmap GUI) for Windows, this driver may be adding to the network interfaces
-Change the Wait prior credential value: Go to the properties of your Cisco AnyConnect VPN Client entry, under
-Connection – General, and change the value to match the time it takes to fully load your VPN
-Disable or uninstall another VPN application: If you receive an “Unable to Proceed, Cannot Connect to the VPN Service” message, another application may be conflicting with the service
-Ensure only one user is logged into Windows: Anyconnect tries to enforce that only a single user is logged into Windows.
I had the same issue once, for some reason, factory resetting helped.
I had tried disabling ad block, security and all sort of thing I could come up with, nothing worked.
I sincerely appreciate the feedback! This is likely way over the head of my company’s help desk, and unfortunately, they don’t give us ‘admin’ access - but I’ll certainly plead my case. Thank you again.
Np, worth a shot. One of our clients has an old ASA 5506 and we set up RA for about 125 users using the any connect client. 99% of the time any tickets we get similar to this a quick reboot of the ISP hardware resolves it.
Ok the nslookup on your PC your using returns the proper IP address? Then it should work. Make sure you don’t have some available silly special characters or spaces in your VPN client config
Agreed, it “should” work. And, using other devices on my local network, I downloaded Cisco AnyConnect, and was able to connect to Remote.Company.com as the website responded asking for my credentials.
So correct me if I am misunderstanding… from another device on your network, you can connect just fine, but from this device, you cannot… is that correct?
If so, you have eliminated the router and NAT traversal as the potential issue.