Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

VPN disconnecting

Posted on 2012-08-14
12
Medium Priority
?
753 Views
Last Modified: 2012-09-18
I'm using a Sonicwall TZ 170 and I'm attempting to VPN into our network from a remote site (ex: a coffee shop). I open Sonicwall Global VPN Client, click enable. It prompts that I have been connect successfully. Then I attempt to connect to our server, for anywhere from 10 seconds to 2 minutes it works perfectly! Then nothing works. I can't even ping our server or any other workstations. I've check the log of the client, windows logs, and the log on the Sonicwall and there are no errors.
I've looked through the Sonicwall getting started guide and manual; it appears everything is configured correctly.

I ran a test to try to see if the disconnection was a timed occurrence and it doesn't appear to be.  I timed from the moment that I was prompted that the VPN connection was established until I was no longer able to ping the server. These are the timespans (mm:ss).
1:45
0:12
1:27
0:30
0:38
0:20

With no errors, I'm clueless on where to look next.

Thanks in advance.
0
Comment
Question by:Root777
  • 7
  • 3
  • 2
12 Comments
 
LVL 13

Expert Comment

by:xDUCKx
ID: 38293770
When you ping -t during the timeout you get a "Request Timed Out" and it won't recover?

Are you connecting via wireless or wired?  Are you able to try each and see if the results are the same?
0
 

Author Comment

by:Root777
ID: 38293808
Request timed out.

I've been doing all of my testing over wired currently.
One of our engineers does it over wireless and it appears he has the same exact issue. But I will grab my laptop and give it a try.
0
 
LVL 13

Expert Comment

by:xDUCKx
ID: 38293822
Did a quick google to see how to change to verbose logging on your sonicwall model and found this:

https://www.sonicwall.com/downloads/site_to_site_vpn_troubleshooting_on_sonicwall_security_appliances.pdf

It seems to address this issue exactly.  Have you seen this and tried the steps/solution?
0
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

 

Author Comment

by:Root777
ID: 38294321
I attempted everything that could have been the issue and nothing worked. But I found something in the process.

On the VPN client, if I go to properties of the VPN connection there is a status tab and I have the option to renew the Virtual IP. If I wait until "ping server -t" shows "Request Timed Out", then click renew. I get a reply on the ping immediately and it works for another 10 seconds- 2 minutes.
I haven't looked into it yet but I imagine its something in the DHCP server. I'm done for the night on this, I will take a look tomorrow, I will post back what I find out.
0
 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 38295090
Dear,

if you are using SNA-TZ series as DHCP, than by default DHCP lease times on the SonicWALL is 1440 minutes. In a more mobile network this can pose a problem.  
can you try to lower the lease time to 2-4 hours..

please also verify you are NOT using static DHCP lease... pelase also clear arp entries in your SNA.
0
 

Author Comment

by:Root777
ID: 38296202
I'm not using the Sonicwall for DHCP. DHCP is handled by a Windows SBS '03 server.
0
 

Author Comment

by:Root777
ID: 38296930
Any additional thoughts? I've been trying to solve this all morning and I haven't made any progress. I've been looking on google but I can't find anyone that has had this issue.
0
 

Author Comment

by:Root777
ID: 38297801
Interestingly if I reserve an IP on the DHCP server for a specific computer, it doesn't drop the connection anymore. I'm going to test this on a few more computers tonight.
0
 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 38299518
could you please check the elased time of SBS? what are the TCP/IP properties etting of the client? are you using Domain Credintial? is there any GPO or policy preveting idle clients or ....... :)
0
 

Accepted Solution

by:
Root777 earned 0 total points
ID: 38343157
I've gotten at least a bandaid fix on this for now. We are upgrading our server in about a month. I'm just hoping the problem fixes itself with the new server, otherwise I will revisit this issue.
0
 
LVL 16

Expert Comment

by:Syed_M_Usman
ID: 38344039
Thanks for the update.
0
 

Author Closing Comment

by:Root777
ID: 38408700
No solution as of right now. I will revisit this in approximately a month.
0

Featured Post

Vote for the Most Valuable Expert

It’s time to recognize experts that go above and beyond with helpful solutions and engagement on site. Choose from the top experts in the Hall of Fame or on the right rail of your favorite topic page. Look for the blue “Nominate” button on their profile to vote.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Suggested Courses
Course of the Month20 days, 18 hours left to enroll

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question