Trouble with SonicWall Global VPN Connection dropping - strang scenario.

Posted on 2008-11-07
Last Modified: 2013-11-30
I have a very odd scenario that Im hoping someone can help me answer.  I have a Windows 2003 Server Network with a Sonicwall T170 firewall.  I have a Windows 2000 user who connects remotely using the Global VPN Client.  He never has a problem getting a connection to the VPN and I can see him on my end.  However, after a few minutes, he can no long ping our Domain Controller or Exchange server.  I can still see him once this has happened but he cant connect to his email, etc..  In order to fix his problem, he has to reload (import) the lmhosts.sam file in the properties of the SonicWall Virtual Adapter and then, he is okay for a while until he has to do it again.  This is very cumbersome but, he does it.  We have tried everything we know to try, including contacting SonicWall which was absolutely no help.

Now for the REALLY ODD thing &&.I connected to his computer (via his Internet connection  not VPN) using PCAnywhere Version 10.  While I am connected to him, doing nothing but watching him  work (he loads be a host and I connect), everything works PERFECTLY   his connection never drops and everything runs very fast.  I tested this to be sure that it really did work better only when PCAnywhere was connected.  I disconnected and he soon lost his connection.  I then reconnected for several hourse and everything worked like a charm.  

How can this be?  I dont understand?  What is PCAnywhere doing is it somehow using my host file for his connection?  I am running Vista.  

Thanks for any insight you can give me on this.
Question by:Papercone1
    1 Comment
    LVL 77

    Accepted Solution

    What type of Internet connection does the user have? Possibly PPPoE? I have seen this disconnect very quickly and frequently. It is by design. If this is the case, sometimes you can enable "keep alive" on the modem or router's ISP configuration, or set the time out value to '0' (disabled).

    As a test try from the client, as soon as they connect, start a persistent ping and see if the connection stays active. To do so from a command line use ping with the -t option and ping the server such as:
    ping -t

    If with the ping, the connection doesn't stay active, I would try lowering the MTU value of the client machine. From an earlier post of mine:
    Dropped connections can often be caused by too high an MTU (Maximum Transmission Unit) size, especially if it is a lower than normal performance connection. It is recommended you change this on the connecting/client computer and when possible, it's local router. The easiest way to change the MTU on the client is using the DrTCP tool:
    As for where to set it, if not using automatic, it has to be 1430 or less for a Windows VPN which uses PPTP if using the basic client (1460 for L2TP). There are ways to test for the optimum size of the MTU such as:
    However, this is not accurate over a VPN due to additional overhead. The best bet is to set it to 1300, and if it improves the situation, gradually increase it.
    A couple of related links:

    The LMHosts file issue is interesting and I suspect a different issue. Instead of using the LMHosts file try editing the advanced TCP/IP properties of the Sonicwall's VPN/virtual adapter under the DNS tab. Add the server's IP for DNS and the domain name suffix. These are outlined in my blog:


    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    Join & Write a Comment

    At the beginning of the year, the IT world was taken hostage by the shareholders of LogMeIn. Their free product, which had been free for ten years, all of the sudden became a "pay" product. Now, I am the first person who will say that software maker…
    This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
    How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
    After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

    729 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now