michaeldynamo

Q: Why is Cisco AnyConnect VPN not working with Yosemite MBP tethered to iPhone 6?

We've encountered an issue here at the office and have found several online threads with the the same problem (such as the Cisco forums):

 

The combination of a Mac running Yosemite (in my case MBP) tethered to an iPhone 6 (running OS8) won't allow the Cisco AnyConnect VPN client to work properly. Once logged in to my VPN account the MBP loses all internet and file server access. So far I've only tested on iPhones with Verizon service.

 

Yosemite MBP and Verizon hotspot device? Works!

Mavericks MBP and iPhone 6? Works!

But no instance of Yosemite MBP and Verizon iPhone 6 has successfully worked.

 

There was a suggestion to disable ipv6 on the MBP, which I did, but this didn't work either.

I've tested on the three most recent versions of AnyConnect, up to 3.1.06...

 

Anyone else encountering this? Anyone with a fix?

 

Thanks!

MacBook Pro with Retina display, iOS 8.1.2

Posted on Dec 16, 2014 2:37 PM

Close

Q: Why is Cisco AnyConnect VPN not working with Yosemite MBP tethered to iPhone 6?

  • All replies
  • Helpful answers

Previous Page 2
  • by grayforge,

    grayforge grayforge Jul 30, 2015 10:14 AM in response to Rosebud-YT
    Level 1 (0 points)
    Jul 30, 2015 10:14 AM in response to Rosebud-YT

    Wow... I've had a related problem for months: VPN not connecting from my MBP over Verizon, but working fine through home WiFi. Turning off IPV6 fixed it!

     

    Via Terminal: networksetup -setv6off Wi-Fi


    Thanks Rosebud-YT!

  • by imdibiji,

    imdibiji imdibiji Apr 1, 2016 1:57 PM in response to tc1210id
    Level 1 (4 points)
    Apr 1, 2016 1:57 PM in response to tc1210id

    openconnect helped me too:

     

    $ brew install openconnect

    $ sudo /usr/local/bin/openconnect -u <username> <vpn url>

  • by victort13,

    victort13 victort13 May 11, 2016 7:15 AM in response to Rosebud-YT
    Level 1 (4 points)
    May 11, 2016 7:15 AM in response to Rosebud-YT

    Thanks Rosebud-YT this solved my issue with the Anyconnect VPN over a iphone 6 hotspot...

  • by Rosebud-YT,

    Rosebud-YT Rosebud-YT Jun 6, 2016 8:23 AM in response to michaeldynamo
    Level 1 (4 points)
    Jun 6, 2016 8:23 AM in response to michaeldynamo

    A better, more permanent and less disruptive fix is to fix the VPN group policy on your Cisco ASA firewall:

     

    group-policy <name of your VPN group policy> attributes

    client-bypass-protocol enable

     

    THAT IS THE PROPER FIX.  It tells the Cisco AnyConnect VPN client to ignore a match between the client protocols (which is both IP4 and IP6), and what your AnyConnect configuration is on the ASA (often only IP4). 

     

    Another solution that I haven't tested, but I think would avoid this issue as well, is to have both ip4 and ip6 configured on the ASA for VPN clients.  But we only have ip4 enabled, which is what causes the issue.

     

    If you are NOT the network administrator at your company, you may have a hard time convincing him to make that change.  Therefore, disabling and re-enabling IP6 locally on the Mac might be your only option.

     

    P.S.  To re-enable IP6 on the mac:

    networksetup -setv6automatic WiFi

    (in other words, it's NOT -setv6on).

Previous Page 2