Solved

Sonicwall SSL VPN users sometimes experience frequently lost connections

Posted on 2010-09-02
10
536 Views
Last Modified: 2012-05-10
We have a Sonicwall SSL-VPN 2000 running version SonicOS SSL-VPN 4.0.0.0-16sv that serves typically four to six people at once. Occassionally, I get a call saying that the user is in a connect/disconnect loop with the device. I see nothing unsual about the device, other users might be connected persistenly at the same time.

It happens enough that I wonder if something is configured wrong on the systems side. I cannot find much on the knowledgebase or from tech support, or from Google on such an issue. Thought I would try this forum for suggestions or advice. The users are connecting the netextender client on Vista.

There are some properties settings such enable/disable use TCPv6 that I wonder if anyone has experimented with. I have also started asking users to enable and send their debug log.--I can't see much in the system debug log.
0
Comment
Question by:rzup
  • 5
  • 5
10 Comments
 
LVL 33

Expert Comment

by:digitap
Comment Utility
I see what you mean.  I found something about Ubuntu having some issues and a solutioin for that loop, but can't find much of anything else.  There is a long drawn out forum thread where they've experienced your exact issue, but no solution has emerged.  Have you tried to uninstall the Netextender client completely?  Since the original installation, have you gone through a firmware and subsequent client upgrade?  Is it only one user?
0
 
LVL 1

Author Comment

by:rzup
Comment Utility
Different users have reported this. Most users are happy and have no problems.. I have not asked anyone to resinstall--I might try that next.. The firmware was upgraded a few months ago, but this complalint, though intermittent, spans several firmware patches.
It's just enough users to make me suspect something systemic rather than isolated issues. Also, if they keep trying for awhile, they eventually get connected for good. So, for example, I might have  a user complain at 9am that she has spend an hour getting knocked off every few minutes. In the course of communicating, maybe by 10: 30 she connects and is happy from then on. Suggesting that the client is fine.
Users insist their network connection is good and nothing else is affected.
Thanks.
0
 
LVL 33

Expert Comment

by:digitap
Comment Utility
I would assume if it was something hardware related, then it would affect everyone at once and occur more often.  I'm of the mind that the client needs to be removed and the current version that's installed from the ssl-vpn installed.  I'd do it on one user and wait it out.

This sounds almost like a misconfigured MTU.  Are you using this appliance in conjuction with a sonicwall UTM appliance?  If so, do you use the GVC with the UTM?  You might consider looking at this article I posted that walks through setting this.

http://www.experts-exchange.com/viewArticle.jsp?aid=3110
0
 
LVL 1

Author Comment

by:rzup
Comment Utility
We do not use UTM. That is a very interesting post and configuraiton. I'm reviewing those settings now. Thanks.
0
 
LVL 1

Author Comment

by:rzup
Comment Utility
It doesn't look like this model has an "Advanced Tab" within the interfaces configuraiton.
0
Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 33

Expert Comment

by:digitap
Comment Utility
Oh...my MTU suggestion was meant for the Cisco, but perhaps you haven't deployed the ssl-vpn through your firewall.  Do you have the SSL-VPN connected directly to the Internet?  One of the configurations of the SSL-VPN appliance is to have it go through a Sonicwall firewall (or UTM).  Which deployment method are you using?

http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=6122
0
 
LVL 1

Author Comment

by:rzup
Comment Utility
Ours is deployed directly to the Internet--it has an interface with a public IP versus being behind our firewall.
0
 
LVL 33

Accepted Solution

by:
digitap earned 250 total points
Comment Utility
Hmmm...I think I'm going to stick with the client theory for now.
0
 
LVL 1

Author Closing Comment

by:rzup
Comment Utility
It seems the client rebooting his or her wireless router solves the issue. Still not certain why.
0
 
LVL 33

Expert Comment

by:digitap
Comment Utility
Restarts are quite overlooked...i guess they are too simple and we think it HAS to be a solution that is more complex...>GRIN<!  Thanks for the points!
0

Featured Post

ScreenConnect 6.0 Free Trial

At ScreenConnect, partner feedback doesn't fall on deaf ears. We collected partner suggestions off of their virtual wish list and transformed them into one game-changing release: ScreenConnect 6.0. Explore all of the extras and enhancements for yourself!

Join & Write a Comment

Some of you may have heard that SonicWALL has finally released an app for iOS devices giving us long awaited connectivity for our iPhone's, iPod's, and iPad's. This guide is just a quick rundown on how to get up and running quickly using the app. …
At the beginning of the year, the IT world was taken hostage by the shareholders of LogMeIn. Their free product, which had been free for ten years, all of the sudden became a "pay" product. Now, I am the first person who will say that software maker…
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now