Solved

NSA 240 GVC Connectivity issue

Posted on 2009-04-06
4
910 Views
Last Modified: 2012-05-06
GVC is not connecting to VPN (NSA-240 full bundle).
While attempting to connect asking for PRE-Shared Key then its shows "authenticating" thats it. But it was worked last week perfectly. We have not made any changes since.

When I tried to make some changes on GVC like...Under Peer properties
1)      Peer - DPD Settings -" Whether or not traffic is received from peer"-
2)      NAT Traversal Disabled
 Its asking for username and password and after that it will show "Acquiring IP Address". Thats it.... But not connecting to VPN Server (NSA 240)

My Scenario...
WAN port Connected to Linksys Router.
LAN port Connected to switch.

I tried to troubleshoot like:
1) Re installed GVC several times on client machines(all are Vista machines).
2) Updated firmware- "sw_nsa- 240__eng_5.2.0.1".
3) Linksys port forwarding enabled 1 -65535 on both (TCP & UDP).

I really appreciate prompt reply from any sonic wall experts
SWVpnClientLog.txt
0
Comment
Question by:Shab
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 17

Expert Comment

by:ccomley
ID: 24079121
Session dying after "waiting for IP address" suggests it may not be getting one. What's the DHCP server for the VPN system? If it's the Sonic, make sure you've not turned that off. If it's some other srver, make sure the Sonic is set to relay DHCP requests to the server in question, and in both cases make sure the DHCP pool is big enough to have space for the remote client.
0
 
LVL 1

Author Comment

by:Shab
ID: 24084877
No Luck ...I am posting more details:

GVC is not connecting to VPN (NSA-240 full bundle).

While attempting to connect asking for PRE-Shared Key then its shows "authenticating" thats it.
See the attached log from GVC for this: Log 1.txt
But it was worked last week perfectly. We have not made any changes since.

When I Disabled "NAT Traversal" on Sonicwall,the GVC started to ask authentication and I entered username and password then it says provisioning and just stuck "aquiring IP Adress". Thats it..... But not connecting to VPN Server (NSA 240)
See the attached log from GVC for this: Log 2.txt

My Scenario...
WAN port Connected to Linksys Router.
LAN port Connected to switch.
DHCP Server is Sonicwall for Local Client and VPN Cleint

I tried to troubleshoot like:
1) Re installed GVC several times on client machines(all are Vista machines).
2) Updated firmware- "sw_nsa- 240__eng_5.2.0.1".
3) Linksys port forwarding enabled 1 -65535 on both (TCP & UDP).

I really appreciate prompt reply from any sonic wall experts

Thanks,

Shabab
Log1.txt
Log2.txt
0
 
LVL 1

Accepted Solution

by:
Shab earned 0 total points
ID: 24144961
I got a solution for this as our Router was blocking the port for VPN.
I opend TCP/UDP ports seperatly on linksys router and VPN is working now with "NAT Traversal" enabled on sonicwall.

Before: 3) Linksys port forwarding enabled 1 - 65535 on "both"
Now: Linksys port forwarding enabled 1 - 65535 on "TCP"
Now: Linksys port forwarding enabled 1 - 65535 on "UDP"

Thanks
Shabab
0
 
LVL 17

Expert Comment

by:ccomley
ID: 24145898
Looks like a bug in the Linksys if "allow both" failed but "allow TCP" and "allow UDP" as separate entries works.

Warning - opening all ports is not ideal - now you have it working I would suggest you work out what the actual ports required are and narrow down the rules to just the required ports.

0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Network traffic routing plays key role in your network, if you have single site with heavy browsing or multiple sites, replicating important application data from your Primary Default Gateway ,you have to route your other network traffic from your p…
This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question