Guest

Preview Tool

Cisco Bug: CSCtf04567 - VPN connection fails when Split-Exclude network is larger than local LAN

Last Modified

Mar 15, 2016

Products (1)

  • Cisco AnyConnect VPN Client

Known Affected Releases

2.4(1012)

Description (partial)

Symptom:
The VPN connection cannot be established, and the user is shown the following error:
Unable to successfully verify all routing table modifications are correct.
This happens when on the headend the Split-Exclude command is used and the split
exclusion network is larger that local lan (phyiscal adapter)

Conditions:
- Vista or Windows 7
- VPN configuration "Tunnel all, except the following networks", with one of the exceptions including the physical interface's local LAN (e.g. if the local LAN is 10.0.0.0/255.255.255.0, the split exclusion is 10.0.0.0/255.0.0.0).
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.