How to connect to HKUVPN behind a firewall?

If your computer is protected by a personal firewall or you are connecting to VPN behind a home router, you cannot connect to HKUVPN. You have to allow the following protocols to pass through the firewall in order to connect to HKUVPN.

For Cisco AnyConnect VPN client:

UDP   443   SSL
TCP   443   SSL

Note: If you have a home router, you have to configure it properly to allow VPN traffic to pass through.

For Symantec Client Firewall

Start Symantec Client Firewall program

  • Select Client Firewall.
  • Click Configure icon.
  • Click Network tab.
  • Click Add icon to add rule.
  • Select Individually.
  • Enter vpn2fa.hku.hk.
  • Click OK to save the setting.

For Kaspersky Endpoint Security (version 11.x):

Start Kaspersky Endpoint Securities Security program

  • Click Settings.
  • Click Threats and Exclusions.
  • Click Specify trusted applications, then click Add.
  • Browse and locate the vpnagent.exe (C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client), Select vpnagent.exe and click Select.
  • Check the box against Do not inherit restrictions of the parent process (application).
  • Check the box against Do not scan encrypted traffic > select Do not scan all traffic.
  • Click OK, then OK and then Save.
  • Click Yes when prompted “Are you sure that you want to change the settings?”
1
1