Cisco AnyConnect versus Cisco VPN Client (IPSEC)

Below is a small list I created for a project at work, compairing the newer Cisco AnyConnect SSL client to the older Cisco IPSEC VPN Client.

AnyConnect

IPSEC VPN Client

Support for 64bit windows.

Yes

No

Connect before logon support for Windows Vista.

Yes

No

Requires PKI framework.

Yes

No* If client side certificates are not used.

Functions in locked down network environment, Web Proxy, Port Blocking etc.

Yes

No

Supports High Encryption AES-256 for example.

Yes

Yes

Ease of administration by distributing software / profile updates from the head end security appliance.

Yes

No

Designed for latency-sensitive traffic.

Yes

No

RADIUS Authentication support

Yes

Yes

Can be implemented in tandem with IPSEC infrastructure.

Yes

Yes

Vulnerable to man in the middle attack.

Yes

No

Vulnerable to MD5 SSL exploit.

Yes

No

Able to function in extreme latency / low bandwidth circumstances. e.g. Satellite

Yes

No

*Bolded result deemed positive feature.*

Permanent link to this article: https://tripplehelix.net/cisco-anyconnect-versus-cisco-vpn-client-ipsec/

2 comments

    • Amit on July 15, 2012 at 2:40 pm
    • Reply

    Very useful for quick overview. Thanks

    • Anonymous on August 13, 2012 at 10:18 am
    • Reply

    Thanks for the post Tim, I would like to know what versions of IPSEC VPN client and anyconnect did you consider on this comparison…

    Thanks

Leave a Reply