Work laptop can't hold its VPN when on Wifi, only ethernet

smibrandon · February 27, 2021, 12:28pm

Expected Behaviour:

Work laptop (running Cisco AnyConnect Secure Mobility Client to get into my corporate network) should run similarly when connecting to my network via ethernet or wifi.

Actual Behaviour:

Work laptop runs beautifully when the network cable is plugged in. When I swap over to wifi, it sporadically loses the VPN, and Windows indicates that the wifi connection doesn't have internet. I've diagnosed issues with windows--remove all and replace wifi connections, restarted router, contacted my work helpdesk, blah blah blah--nothing. This was never an issue before I had PiHole part of the mix, so I'm thinking I did something. Tinkered a bit to try to let my work PC bypass, but not sure if I did it correctly. Work laptop wifi & ethernet MAC's are **:**:**:**:**:DB and **:**:**:**:**:36 on the debug log

Debug Token:

https://tricorder.pi-hole.net/b4or9f0fd9

yubiuser · February 27, 2021, 12:41pm

*** [ DIAGNOSING ]: Groups
   id    enabled  name                                                date_added           date_modified        description                                       
   ----  -------  --------------------------------------------------  -------------------  -------------------  --------------------------------------------------
   0           1  Default                                             2021-01-20 12:50:48  2021-01-20 12:50:48  The default group                                 
   6        0     Group 1                                             2021-02-19 18:24:55  2021-02-24 15:08:51  Bypass All - Work Laptop                          
   7           1  Group 2                                             2021-02-19 18:25:06  2021-02-24 15:09:00  Bypass big one - PlexPC                           
   8           1  Group 3                                             2021-02-19 18:25:10  2021-02-19 18:25:10                                                    

*** [ DIAGNOSING ]: Domainlist (0/1 = exact white-/blacklist, 2/3 = regex white-/blacklist)

*** [ DIAGNOSING ]: Clients
   id    group_ids     ip                                                                                                    date_added           date_modified        comment                                           
   ----  ------------  ----------------------------------------------------------------------------------------------------  -------------------  -------------------  --------------------------------------------------
   4     6            +++:DB                                                                                     2021-02-19 10:01:47  2021-02-19 18:27:22  Laptop                                            
   5     6             ++++:36                                                                                     2021-02-19 10:02:03  2021-02-19 18:27:26  Laptop

I'm not 100% sure what happens if clients are associated only with one group and this group is not enabled. But I would enable group 6, just to be sure. In your current configuration, no adlists are in that group which will result in the lapotp to be not filtered at all.

smibrandon · February 27, 2021, 12:57pm

Done.

I'll followup when I have my laptop connected shortly.

system · March 20, 2021, 12:57pm

This topic was automatically closed 21 days after the last reply. New replies are no longer allowed.