If your computer is protected by a personal firewall or you are connecting to VPN behind a home router, you cannot connect to HKUVPN. You have to allow the following protocols to pass through the firewall in order to connect to HKUVPN.
For Cisco AnyConnect VPN client:
UDP 443 SSL
TCP 443 SSL
Note: If you have a home router, you have to configure it properly to allow VPN traffic to pass through.
For Symantec Client Firewall
Start Symantec Client Firewall program
- Select Client Firewall.
- Click Configure icon.
- Click Network tab.
- Click Add icon to add rule.
- Select Individually.
- Enter vpn2fa.hku.hk.
- Click OK to save the setting.
For Kaspersky Endpoint Security (version 11.x):
Start Kaspersky Endpoint Securities Security program
- Click Settings.
- Click Threats and Exclusions.
- Click Specify trusted applications, then click Add.
- Browse and locate the vpnagent.exe (C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client), Select vpnagent.exe and click Select.
- Check the box against Do not inherit restrictions of the parent process (application).
- Check the box against Do not scan encrypted traffic > select Do not scan all traffic.
- Click OK, then OK and then Save.
- Click Yes when prompted “Are you sure that you want to change the settings?”