Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Sonicwall, PRO3060, VPN traffic going only one way

Posted on 2007-08-08
4
721 Views
Last Modified: 2013-11-05
I have a VPN tunnel going from a TZ170 to a PRO 3060 and eveything seems okay at first. The tunnel is coming up green on both ends and I can ping from the TZ170 to the 3060. However, if I try to ping the other way it fails.
When I go into the diagnostics on the 3060 if I do a packet trace going from my computer behind the 3060 to the LAN address of the TZ170, it shows it as being successful. The logs on the 3060 are showing the ping as:
source: TZ170
destination: PRO3060
destination unreachable.

So it's like the ping is going out successfully but then on the return it's getting blocked by the 3060. I've tried making a rule to allow all communication from the TZ170, but it still fails.

I've also lowered the MTU and adjusted it to match on both sides, deleted and recreated the rule for the SA, etc, etc.
Can anyone tell me why the ping would fail but packet trace is showing successful? I need the tunnel to work both ways.. :)
0
Comment
Question by:wlandymore
  • 2
4 Comments
 
LVL 10

Accepted Solution

by:
budchawla earned 250 total points
ID: 19671672
Have you got authentication required for the tunnel on the TZ170?
0
 
LVL 1

Author Comment

by:wlandymore
ID: 19672147
Nice.

I added authentication to the list of exempted services on both sides and it started coming up for ping, etc.

Thanks...I never would have thought of that.
0
 
LVL 10

Expert Comment

by:budchawla
ID: 19674031
Glad to help :-)
0
 

Expert Comment

by:humancap
ID: 20700804


(Quote)I added authentication to the list of exempted services on both sides and it started coming up for ping, etc.

Thanks...I never would have thought of that(Quote)

Sorry to bother you but could you tell me how you added authentication to the list of exempted service?
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

We sought a budget ($5,000) firewall solution that would provide all the performance we needed with no single point of failure.  Hosting a SAAS web application in our datacenter, it was critical that we find a way to keep connectivity up and inbound…
I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

837 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question