Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

NSA 240 GVC Connectivity issue

Posted on 2009-04-06
4
Medium Priority
?
915 Views
Last Modified: 2012-05-06
GVC is not connecting to VPN (NSA-240 full bundle).
While attempting to connect asking for PRE-Shared Key then its shows "authenticating" thats it. But it was worked last week perfectly. We have not made any changes since.

When I tried to make some changes on GVC like...Under Peer properties
1)      Peer - DPD Settings -" Whether or not traffic is received from peer"-
2)      NAT Traversal Disabled
 Its asking for username and password and after that it will show "Acquiring IP Address". Thats it.... But not connecting to VPN Server (NSA 240)

My Scenario...
WAN port Connected to Linksys Router.
LAN port Connected to switch.

I tried to troubleshoot like:
1) Re installed GVC several times on client machines(all are Vista machines).
2) Updated firmware- "sw_nsa- 240__eng_5.2.0.1".
3) Linksys port forwarding enabled 1 -65535 on both (TCP & UDP).

I really appreciate prompt reply from any sonic wall experts
SWVpnClientLog.txt
0
Comment
Question by:Shab
  • 2
  • 2
4 Comments
 
LVL 17

Expert Comment

by:ccomley
ID: 24079121
Session dying after "waiting for IP address" suggests it may not be getting one. What's the DHCP server for the VPN system? If it's the Sonic, make sure you've not turned that off. If it's some other srver, make sure the Sonic is set to relay DHCP requests to the server in question, and in both cases make sure the DHCP pool is big enough to have space for the remote client.
0
 
LVL 1

Author Comment

by:Shab
ID: 24084877
No Luck ...I am posting more details:

GVC is not connecting to VPN (NSA-240 full bundle).

While attempting to connect asking for PRE-Shared Key then its shows "authenticating" thats it.
See the attached log from GVC for this: Log 1.txt
But it was worked last week perfectly. We have not made any changes since.

When I Disabled "NAT Traversal" on Sonicwall,the GVC started to ask authentication and I entered username and password then it says provisioning and just stuck "aquiring IP Adress". Thats it..... But not connecting to VPN Server (NSA 240)
See the attached log from GVC for this: Log 2.txt

My Scenario...
WAN port Connected to Linksys Router.
LAN port Connected to switch.
DHCP Server is Sonicwall for Local Client and VPN Cleint

I tried to troubleshoot like:
1) Re installed GVC several times on client machines(all are Vista machines).
2) Updated firmware- "sw_nsa- 240__eng_5.2.0.1".
3) Linksys port forwarding enabled 1 -65535 on both (TCP & UDP).

I really appreciate prompt reply from any sonic wall experts

Thanks,

Shabab
Log1.txt
Log2.txt
0
 
LVL 1

Accepted Solution

by:
Shab earned 0 total points
ID: 24144961
I got a solution for this as our Router was blocking the port for VPN.
I opend TCP/UDP ports seperatly on linksys router and VPN is working now with "NAT Traversal" enabled on sonicwall.

Before: 3) Linksys port forwarding enabled 1 - 65535 on "both"
Now: Linksys port forwarding enabled 1 - 65535 on "TCP"
Now: Linksys port forwarding enabled 1 - 65535 on "UDP"

Thanks
Shabab
0
 
LVL 17

Expert Comment

by:ccomley
ID: 24145898
Looks like a bug in the Linksys if "allow both" failed but "allow TCP" and "allow UDP" as separate entries works.

Warning - opening all ports is not ideal - now you have it working I would suggest you work out what the actual ports required are and narrow down the rules to just the required ports.

0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I recently attended Cisco Live! in Las Vegas, a conference that boasted over 28,000 techies in attendance, and a week of hands-on learning hosted by a solid partner with which Concerto goes to market.  Every year, Cisco displays cutting-edge technol…
If you’re involved with your company’s wide area network (WAN), you’ve probably heard about SD-WANs. They’re the “boy wonder” of networking, ostensibly allowing companies to replace expensive MPLS lines with low-cost Internet access. But, are they …
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question