- Usually the first step is to try to identify what changed last.
- Check the client side and the firewall side for changes.
- Remember there could be a 3rd party inbetween you and the client.
- Remember its possible that nothing has changed, you could have encountered a bug.
Once the usual items are out of the way
- Get the clients public IP by sending them to a whatsmyip site.
- Get the client to send you their pcf file, confirm all settings are correct.
- Configure the cisco VPN client for logging.
- Configure the firewall to display logs.
- Attempt to connect the VPN, check the log on both sides to identify the issue.
- You may need to run a capture of the outside interface on the firewall also.
- If you still can't find the cause engage Cisco support if available.
- You may need to reload the firewall or failover to the standby fw if once exists.
Its possible to install diagnostic files into cisco anyconnect
No comments:
Post a Comment