Solved

NSA 240 GVC Connectivity issue

Posted on 2009-04-06
4
907 Views
Last Modified: 2012-05-06
GVC is not connecting to VPN (NSA-240 full bundle).
While attempting to connect asking for PRE-Shared Key then its shows "authenticating" thats it. But it was worked last week perfectly. We have not made any changes since.

When I tried to make some changes on GVC like...Under Peer properties
1)      Peer - DPD Settings -" Whether or not traffic is received from peer"-
2)      NAT Traversal Disabled
 Its asking for username and password and after that it will show "Acquiring IP Address". Thats it.... But not connecting to VPN Server (NSA 240)

My Scenario...
WAN port Connected to Linksys Router.
LAN port Connected to switch.

I tried to troubleshoot like:
1) Re installed GVC several times on client machines(all are Vista machines).
2) Updated firmware- "sw_nsa- 240__eng_5.2.0.1".
3) Linksys port forwarding enabled 1 -65535 on both (TCP & UDP).

I really appreciate prompt reply from any sonic wall experts
SWVpnClientLog.txt
0
Comment
Question by:Shab
  • 2
  • 2
4 Comments
 
LVL 16

Expert Comment

by:ccomley
ID: 24079121
Session dying after "waiting for IP address" suggests it may not be getting one. What's the DHCP server for the VPN system? If it's the Sonic, make sure you've not turned that off. If it's some other srver, make sure the Sonic is set to relay DHCP requests to the server in question, and in both cases make sure the DHCP pool is big enough to have space for the remote client.
0
 
LVL 1

Author Comment

by:Shab
ID: 24084877
No Luck ...I am posting more details:

GVC is not connecting to VPN (NSA-240 full bundle).

While attempting to connect asking for PRE-Shared Key then its shows "authenticating" thats it.
See the attached log from GVC for this: Log 1.txt
But it was worked last week perfectly. We have not made any changes since.

When I Disabled "NAT Traversal" on Sonicwall,the GVC started to ask authentication and I entered username and password then it says provisioning and just stuck "aquiring IP Adress". Thats it..... But not connecting to VPN Server (NSA 240)
See the attached log from GVC for this: Log 2.txt

My Scenario...
WAN port Connected to Linksys Router.
LAN port Connected to switch.
DHCP Server is Sonicwall for Local Client and VPN Cleint

I tried to troubleshoot like:
1) Re installed GVC several times on client machines(all are Vista machines).
2) Updated firmware- "sw_nsa- 240__eng_5.2.0.1".
3) Linksys port forwarding enabled 1 -65535 on both (TCP & UDP).

I really appreciate prompt reply from any sonic wall experts

Thanks,

Shabab
Log1.txt
Log2.txt
0
 
LVL 1

Accepted Solution

by:
Shab earned 0 total points
ID: 24144961
I got a solution for this as our Router was blocking the port for VPN.
I opend TCP/UDP ports seperatly on linksys router and VPN is working now with "NAT Traversal" enabled on sonicwall.

Before: 3) Linksys port forwarding enabled 1 - 65535 on "both"
Now: Linksys port forwarding enabled 1 - 65535 on "TCP"
Now: Linksys port forwarding enabled 1 - 65535 on "UDP"

Thanks
Shabab
0
 
LVL 16

Expert Comment

by:ccomley
ID: 24145898
Looks like a bug in the Linksys if "allow both" failed but "allow TCP" and "allow UDP" as separate entries works.

Warning - opening all ports is not ideal - now you have it working I would suggest you work out what the actual ports required are and narrow down the rules to just the required ports.

0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Like many others, when I created a Windows 2008 RRAS VPN server, I connected via PPTP, and still do, but there are problems that can arise from solely using PPTP.  One particular problem was that the CFO of the company used a Virgin Broadband Wirele…
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question