How to run Cisco AnyConnect inside of Azure Virtual Machine

Question

My connection to the Azure Virtual Machine disconnects and is not reachable via RDP after running Cisco Anyconnect on my virtual machine. How can I run a Cisco Anyconnect to a clients network without losing my RDP connection to the Azure virtual machine?

Answer 1

Hi @Harsha Cheruvula ,

Thanks for contacting Microsoft Q&A platform.

It seems like you have successfully installed Cisco AnyConnect VPN on Azure.

There is restriction from Azure to block outbound connectivity to any VPN by default. If you have any outbound NSG rules defined to block the traffic, then make sure you allow outbound traffic to Internet.

It seems like an issue with the Cisco Anyconnect config rather than an issue with the Azure VM. You can check this thread as well for more info.

You can try to post your query on Cisco forum as well here.

Hope it helps!!!

Answer 2

When you "Connect" to Cisco Anyconnect, your client is joined to different Virtual Private Network.

Cisco Anyconnect profile should have a VPN concentrator configured to allow or restrict your company network. You can check your new IP address after successfylly connected to Cisco Anyconnect profile(using ipconfig /all , ifconfig in Linux etc.). There could be other reasons like you VPN pool IPs are not allowed in the Azure Network (Network Security Group or any firewall if exists). There could be another possibility that VPN concentrator IP (public ip) is not allowed in Azure Entra conditional access policy.