Solved

Cisco Valet, Sonicwall GVC performance degradation - dropped connections

Posted on 2011-02-22
10
646 Views
Last Modified: 2012-05-11
I have a home office trying to VPN pass-through to a Sonicwall router at company HQ.  The user (my wife) then Remote Desktops to her system at the office.

She can connect with Sonicwall, and even connect with MSTSC, but she regularly will lose the connection.  It has been incredibly frustrating.

We have upgraded the desktop from Vista to Win7.

We've upgraded the Sonicwall from 4.2.6 to 4.6.4.

I've removed the Cisco Valet router from the home setup - and direct connected to the cable modem.  Wow - that works great, but now no one in the house can connect!
This seems to point to the Cisco Router as having problems.

I'm happy to provide more information to anyone interested in helping out.

I'm wondering if I need to configure some items on the Router to force TCP hold or something like that.

Thanks.
0
Comment
Question by:birchtree123
  • 6
  • 4
10 Comments
 
LVL 33

Expert Comment

by:digitap
ID: 34956243
on the sonicwall, go to vpn > advanced.  is Enable NAT Traversal enabled?
0
 
LVL 33

Expert Comment

by:digitap
ID: 34956248
if not, enable it and try the connection again.
0
 

Author Comment

by:birchtree123
ID: 34956341
On Sonicwall router at HQ - NAT Traversal is set to YES.  Keep alive set ot 240s.

On another note:  I've disconnected the home Cisco router, plugging directly into the home cable modem.  When I do that, things go swimmingly.  Are there some specific setting on the home router (a Cisco Valet (read Linksys))?  I've used it pretty much out of the box -- so haven't messed around with port forwarding and the such...
0
 
LVL 33

Expert Comment

by:digitap
ID: 34956360
typically, making sure NAT traversal is the only thing to enable when behind a NAT'ing device.  is the private subnet provided by the cisco the same as the subnet provided to GVC hosts?  this would certainly cause issues.

if the connection is being dropped by the cisco, there's a possibility that you're cisco is dropping packets.  this can be caused by a misconfigured speed/duplex config on the WAN of the cisco or by a misconfigured MTU on the cisco.
0
 

Author Comment

by:birchtree123
ID: 34956400
HQ Sonicwall network ranges use 192.168.1.x

Home Cisco Valet network ranger use 192.168.1.x

Can be confusing sometimes :)  I'll load IE,  go to 192.168.1.1 to administer the Cisco router (forgetting I've VPN'ed in) and up pops the Sonicwall Admin login screen.

I'll work on this more this evening. Will return with more data by tomorrow.  Fun stuff...
0
Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

 
LVL 33

Accepted Solution

by:
digitap earned 500 total points
ID: 34956413
OK...your subnets are the same and you need to change one of them.  i'd suggest changing the cisco unit as it would be easier than changing the sonicwall unit.  of course, if you decide to change the sonicwall unit, check out this KB i wrote for doing that.


http://www.experts-exchange.com/viewArticle.jsp?articleID=4160
0
 
LVL 33

Expert Comment

by:digitap
ID: 34956418
and, yes, it can get confusing.
0
 

Author Comment

by:birchtree123
ID: 34957618
Simple change - big results.  She has been logged on for over an hour - happily typing away and exercising the connection.  No drops, no real slowness - pretty much the way it is supposed to be.

I've set my IP range on the home Cisco Valet to be 192.169.1.x

The Sonicwall IP range remains at 192.168.1.x

That seems to have been the trick.  If only I had known this before the Vista upgrade, Router upgrade, Sonicwall GVC upgrade, blah, blah, blah.  As you can tell -- I sure am happy this is finally wrapped. (knock on wood).

Thanks again digitap.

0
 

Author Closing Comment

by:birchtree123
ID: 34957621
Simple solution  - the best type.
0
 
LVL 33

Expert Comment

by:digitap
ID: 34958009
thanks for the points!  please remember to vote for my article if you found it useful...unless you already did, of course.

http://www.experts-exchange.com/viewArticle.jsp?articleID=4160
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
cisco ubr7200 problem with  interface Wideband-Cable 1 36
How do I modify Ubigate for new ISP? 2 75
Move configuration from Cisco 3560 to 3750X 6 42
SSL VPN 3 19
Juniper VPN devices are a popular alternative to using Cisco products. Last year I needed to set up an international site-to-site VPN over the Internet, but the client had high security requirements -- FIPS 140. What and Why of FIPS 140 Federa…
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

912 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now