In the Cisco AnyConnect VPN Client my user would get “The VPN client was unable to setup IP filtering. A VPN connection will not be established.” and “AnyConnect was not able to establish a connection to the specified secure gateway. Please try connecting again.”
This happened after being infected with malware (ZeroAccess trojan to be specific). After cleaning, it still wouldn’t connect to the VPN. Thanks to a hint here, I found that the cause was because the trojan deleted the Base Filtering Engine service.
I got it back by following the instructions from my preferred antivirus company, ESET.
If you can’t find the SubInACL.exe, get it from Major Geeks here.
Please comment if this DID or DIDN’T help.