Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Sonicwall, PRO3060, VPN traffic going only one way

Posted on 2007-08-08
4
Medium Priority
?
735 Views
Last Modified: 2013-11-05
I have a VPN tunnel going from a TZ170 to a PRO 3060 and eveything seems okay at first. The tunnel is coming up green on both ends and I can ping from the TZ170 to the 3060. However, if I try to ping the other way it fails.
When I go into the diagnostics on the 3060 if I do a packet trace going from my computer behind the 3060 to the LAN address of the TZ170, it shows it as being successful. The logs on the 3060 are showing the ping as:
source: TZ170
destination: PRO3060
destination unreachable.

So it's like the ping is going out successfully but then on the return it's getting blocked by the 3060. I've tried making a rule to allow all communication from the TZ170, but it still fails.

I've also lowered the MTU and adjusted it to match on both sides, deleted and recreated the rule for the SA, etc, etc.
Can anyone tell me why the ping would fail but packet trace is showing successful? I need the tunnel to work both ways.. :)
0
Comment
Question by:wlandymore
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 10

Accepted Solution

by:
budchawla earned 1000 total points
ID: 19671672
Have you got authentication required for the tunnel on the TZ170?
0
 
LVL 1

Author Comment

by:wlandymore
ID: 19672147
Nice.

I added authentication to the list of exempted services on both sides and it started coming up for ping, etc.

Thanks...I never would have thought of that.
0
 
LVL 10

Expert Comment

by:budchawla
ID: 19674031
Glad to help :-)
0
 

Expert Comment

by:humancap
ID: 20700804


(Quote)I added authentication to the list of exempted services on both sides and it started coming up for ping, etc.

Thanks...I never would have thought of that(Quote)

Sorry to bother you but could you tell me how you added authentication to the list of exempted service?
0

Featured Post

Looking for the Wi-Fi vendor that's right for you?

We know how difficult it can be to evaluate Wi-Fi vendors, so we created this helpful Wi-Fi Buyer's Guide to help you find the Wi-Fi vendor that's right for your business! Download the guide and get started on our checklist today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

We sought a budget ($5,000) firewall solution that would provide all the performance we needed with no single point of failure.  Hosting a SAAS web application in our datacenter, it was critical that we find a way to keep connectivity up and inbound…
In this article, WatchGuard's Director of Security Strategy and Research Teri Radichel, takes a look at insider threats, the risk they can pose to your organization, and the best ways to defend against them.
In this video, Percona Solutions Engineer Barrett Chambers discusses some of the basic syntax differences between MySQL and MongoDB. To learn more check out our webinar on MongoDB administration for MySQL DBA: https://www.percona.com/resources/we…
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…
Suggested Courses

618 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question