Cisco AnyConnect VPN Linux alternatives?

Posted on 2011-03-09
Last Modified: 2012-05-11
Hello Experts,

I was told by an IT guy that "we now use the new "Cisco AnyConnect" and therefore you have to install that on your computer if you want your VPN to work." However, I have previously used Linux vpnc (I have version 0.5.3r449-5.1) to make a Cisco VPN connection with no problems but that I think was for the older Cisco client.

I really don't want an outside source poking around on my development computer (I do all my own IT on my LAN) so my questions are:

1) Does the AnyConnect really work so differently that I won't be able to connect without it?

2) And if not, what settings do I need in a VPN client to work like this new client?

To mimic the old client I used the following settings in vpnc:

  Encryption: Secure (other options were weak and none)

  NAT Traversal: NAT-T (other options were: Cisco UDP & disabled)

  Disable Dead Peer Detection: disabled

  IPv4 Method: Automatic (VPN), (other options: Automatic (VPN) address only)

Thanks heaps!
Question by:RegProctor
  • 2

Accepted Solution

VespaMaru earned 400 total points
ID: 35087508
I set up and use Cisco AnyConnect VPN client on my Linux PC from home.  It is an SSL VPN, unlike VPNC which is an IPSec VPN.  The client just needs the VPN's IP address or host name and then you enter your credentials.  The group name is listed for you and you don't have to have a shared secret / certificate like VPNC.

Most Cisco ASA's are set up with a Web Address that will automatically determine your OS and install the correct version of AnyConnect.  I have tested it on 32bit and 64 bit Windows, 32 bit and 64 bit Linux (Ubuntu and Fedora) and iPhone's and iPads without an issue.  
LVL 33

Assisted Solution

MikeKane earned 100 total points
ID: 35088724
The old vpn client and anyconnect have quite a few differences.   The main one being that the original client was IPSEC.  Anyconnect is SSL.    

Anyconnect will tunnel over 443 thus eliminating the need to worry about NAT-T or open ports, especially when you are on a network you don't control.  

The Anyconnect client for Linux has 32 and 64 bit support and will autoload (if your admins set it up correctly).    

When installed and connected, you can see a list of tunneled subnets so you know what traffic is being sent via VPN.   You can still control what comes into your machine using iptables.  

Hope that helps.

Author Comment

ID: 35089076
Can I change the port in the client and have it still work? I already use 443 for SSL for my web server.

Also I heard somewhere that it does a "tunnel all". Would that mean that I couldn't do some connections to my server on my LAN and then some to VPN tunnel? I used to this with the old client and it worked really well for my needs.


Author Comment

ID: 35089535
Having let them install it on my Windows computer I can see that all should be fine regarding my questions above.

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco VPN & Windows File Server 2 81
vpn connection isssue 3 100
Office 365 vs. In-House 4 80
ASA - RV130 VPN tunnel, cannot pass traffic 8 52
If you use NetMotion Mobility on your PC and plan to upgrade to Windows 10, it may not work unless you take these steps.
Let’s list some of the technologies that enable smooth teleworking. 
After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now