Cisco AnyConnect

Institutes and facilities of the TU Dresden can use the recommended software Cisco AnyConnect Secure Mobility Client in order to have protected access from the according institute networks to the TU Dresden network.
Cisco AnyConnect uses VPN Tunnel  via the default SSL port (TCP 443) and DTLS port (UDP 443). Both ports must be opened in your firewall otherweise the performance could get low.
When building the VPN connection your PC will get an IP address from within the according network.

Cisco AnyConnect has some features to afford:

• obviously less connection problems in external networks, because https is not as restricted as IPSec VPN
• automatical reconnection during a network change, e.g. via WLAN
• siginificantly easier installation of the software
• automatical software update via the VPN-Gateway
• Linux version independent from the kernel version

Installation

AnyConnect is supported by the following operating systems:

Cisco AnyConnect Software

The Client Software Cisco AnyConnect is necessary for the use of SSL VPN. Due to trademark and licensing laws a software download is only allowed with a valid ZIH Login. Admin rights are necessary for the first installation.

Windows - ATTENTION: when upgrading Windows  the Cisco AnyConnect Client SHOULD be deinstalled before the upgrade. Otherwise, the software may not work any longer.

The installation files for Windows have to be stored as *.msi files and the Transform-File as *.mst . If this should not work automatically, you have to right-click on the link and choose the option "save target as...". Afterwards you have to select "All files" and complete the file's name with ".msi". The file can now be stored properly.

Version AnyConnect 4.8.01090:

• AnyConnect for Linux 64bit (Version 4.8.01090)
• AnyConnect for Mac OS X (Version 4.8.01090)
• AnyConnect for Windows (Version 4.8.01090)
  Transform-File (.mst) for Windows - turn Customer Experience Feedback(CEF) off: To enable the transform file run the following command in cmd window (CEF thus is being turned OFF):
  msiexec -i anyconnect-win-4_8_01090-core-vpn-predeploy-k9.msi TRANSFORMS=anyconnect-win-disable-customer-experience-feedback-4_8_01090.mst
• NAM  - Network Access Manager
• PE - Profile Editor Tool (Windows)

• DART - AnyConnect Problem Analyzer

Version AnyConnect 4.6.03049:

• AnyConnect for Linux 64bit (Version 4.7.02036)
• AnyConnect for Mac OS X (Version 4.7.02036)
• AnyConnect for Windows (Version 4.7.02036)
  Transform-File (.mst) for Windows - turn Customer Experience Feedback(CEF) off: To enable the transform file run the following command in cmd window (CEF thus is being turned OFF):
  msiexec -i anyconnect-win-4_7_02036-core-vpn-predeploy-k9.msi TRANSFORMS=anyconnect-win-disable-customer-experience-feedback-4_7_02036.mst
• DART - AnyConnect Problem Analyzer
• NAM  - Network Access Manager
• PE - Profile Editor Tool (Windows)

Version AnyConnect 4.6.03049:

• AnyConnect for Linux 64bit (Version 4.6.03049)
• AnyConnect for Mac OS X (Version 4.6.03049)
• AnyConnect for Windows (Version 4.6.03049)
  Transform-File (.mst) for Windows - turn Customer Experience Feedback(CEF) off: To enable the transform file run the following command in cmd window (CEF thus is being turned OFF):
  msiexec -i anyconnect-win-4_6_03049-core-vpn-predeploy-k9.msi TRANSFORMS=anyconnect-win-disable-customer-experience-feedback-4_6_03049.mst
• DART - AnyConnect Problem Analyzer
• NAM  - Network Access Manager
• PE - Profile Editor Tool (Windows)

!! older versions are not recommended anymore due to vulnerabilities   !!

The AnyConnect versions for mobiles:

• AnyConnect on Windows Mobile (ActiveSync)
• AnyConnect on Windows Mobile (CAB-Format)