• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 456
  • Last Modified:

Internet Problem

I am setting up a remote connections from a few branch offices to a main office.  I have a WatchGuard router at the main office and am using the Mobile VPN with SSL to connect the individual computers to the main office.  

One location on has one computer and doesn't have any problems connecting and staying connected.  

The other location however is driving me nuts trying to pin point the problem.  When we started the some computers could connect and some couldn't and then the ones that could couldn't and the ones that couldn't could.  After troubleshooting it seems to be that after connecting 5 or 6 computer not more would connect (they were not even hitting the remote device), but if we disconnected one then another could connect.

I eliminated the possibility of only a certain number of computers could connect from one location by connecting 9 from the location that is not having any problems.  I verified that we had a 50 user license and it was working with WatchGuard support and upgraded to the latest firmware.  

I notice that internet speed at this location was less than a 1MB upload and download.  So we waited until an internet speed upgrade to 3.0MB, but this had not effect.

We are only using a 5250 telnet connection to the main server, so I opened ports on the router to allow a connection outside of the VPN and still have the same problem.

Where to look now?  Could it be something with there ISP, which is TW Telecom.  Could it be the Belkin router they have behind the DSL modem?

I do know I could try getting another appliance and make a BOVPN with one tunnel.

TIA
0
DCS12
Asked:
DCS12
1 Solution
 
akhalighiCommented:
what do you see in the log files ? what phase of VPN fails ? what's the error message ?
0
 
setasoujiroCommented:
I think the problem would be indeed at the problem site, might be the belkin or another device there.
0
 
akhalighiCommented:
check log files in all check pints  start from VPN client > branch router > main router. you should see a message somewhere. a reason for a failure .

If you don;t see it , increase level of logging to debug or something .
0
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

 
DCS12Author Commented:
@ akhalighi: I have already done this with the assistance of WatchGuard also.  The only log entry when it is raised to debug level is that is is downloading the configuration and then it times out.  Sometimes the client doesn't even hit the main router.  Plus I am having the same issue when I don't use the VPN and do a straight telnet.

@ setasoujiro: This is what I am thinking, but want to get other opinions.
0
 
setasoujiroCommented:
Could you try and replace the router with another device and see what happens?
0
 
Rob WilliamsCommented:
All routers (at client site) have limits as to the number of VPN pass-through connections they will allow, from 0-9.  If you have multiples users connecting by VPN from the same site you really should have a site to site VPN configured With a VPN hardware based router at each site.
0

Featured Post

Learn to develop an Android App

Want to increase your earning potential in 2018? Pad your resume with app building experience. Learn how with this hands-on course.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now