DCS12
asked on
Internet Problem
I am setting up a remote connections from a few branch offices to a main office. I have a WatchGuard router at the main office and am using the Mobile VPN with SSL to connect the individual computers to the main office.
One location on has one computer and doesn't have any problems connecting and staying connected.
The other location however is driving me nuts trying to pin point the problem. When we started the some computers could connect and some couldn't and then the ones that could couldn't and the ones that couldn't could. After troubleshooting it seems to be that after connecting 5 or 6 computer not more would connect (they were not even hitting the remote device), but if we disconnected one then another could connect.
I eliminated the possibility of only a certain number of computers could connect from one location by connecting 9 from the location that is not having any problems. I verified that we had a 50 user license and it was working with WatchGuard support and upgraded to the latest firmware.
I notice that internet speed at this location was less than a 1MB upload and download. So we waited until an internet speed upgrade to 3.0MB, but this had not effect.
We are only using a 5250 telnet connection to the main server, so I opened ports on the router to allow a connection outside of the VPN and still have the same problem.
Where to look now? Could it be something with there ISP, which is TW Telecom. Could it be the Belkin router they have behind the DSL modem?
I do know I could try getting another appliance and make a BOVPN with one tunnel.
TIA
One location on has one computer and doesn't have any problems connecting and staying connected.
The other location however is driving me nuts trying to pin point the problem. When we started the some computers could connect and some couldn't and then the ones that could couldn't and the ones that couldn't could. After troubleshooting it seems to be that after connecting 5 or 6 computer not more would connect (they were not even hitting the remote device), but if we disconnected one then another could connect.
I eliminated the possibility of only a certain number of computers could connect from one location by connecting 9 from the location that is not having any problems. I verified that we had a 50 user license and it was working with WatchGuard support and upgraded to the latest firmware.
I notice that internet speed at this location was less than a 1MB upload and download. So we waited until an internet speed upgrade to 3.0MB, but this had not effect.
We are only using a 5250 telnet connection to the main server, so I opened ports on the router to allow a connection outside of the VPN and still have the same problem.
Where to look now? Could it be something with there ISP, which is TW Telecom. Could it be the Belkin router they have behind the DSL modem?
I do know I could try getting another appliance and make a BOVPN with one tunnel.
TIA
akhalighi
what do you see in the log files ? what phase of VPN fails ? what's the error message ?
I think the problem would be indeed at the problem site, might be the belkin or another device there.
check log files in all check pints start from VPN client > branch router > main router. you should see a message somewhere. a reason for a failure .
If you don;t see it , increase level of logging to debug or something .
If you don;t see it , increase level of logging to debug or something .
ASKER
@ akhalighi: I have already done this with the assistance of WatchGuard also. The only log entry when it is raised to debug level is that is is downloading the configuration and then it times out. Sometimes the client doesn't even hit the main router. Plus I am having the same issue when I don't use the VPN and do a straight telnet.
@ setasoujiro: This is what I am thinking, but want to get other opinions.
@ setasoujiro: This is what I am thinking, but want to get other opinions.
Could you try and replace the router with another device and see what happens?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.