VPN connection issue

I have a watchguard XTM_5 Series out of the service contract.  I have 2  ports set up with the same ISP - on side has and address of lets say 10.10.10.5 outside and the other port has 12.12.12.5 - the 10.10.10.5 is going away becuase we were given a new range and the 12.12.12.5 side is staying.  The issue is the 12.12.12.5 side isn't allowing the VPN (L2TP) to connect properly.  Sometimes it works sometimes it doesn't.  I was trying to reconfigure the watchguard to allow for Radius Authentication but I've completely taken that out.  This is when the trouble started.  The strange part is I can connect to the 10.10.10.5 address with the same L2TP connection without an issue.  My though is the can't be the watchguard because regardless of the IP it's going though the same appliance with the same policies.  Can anyone offer any thoughts as to what my issue might be?
WellingtonISAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

TropicalBoundCommented:
A routing issue perhaps?  The connection originates from 12.12.12.5, but perhaps the response is being sent out the 10.10.10.5 port.  Check your routing tables and see which port 0.0.0.0/0 uses.

Have you tried disabling the 10.10.10.5 port for testing purposes?  Disabling the port may rebuild the routing table.
0
WellingtonISAuthor Commented:
NO perhaps I will try that.
0
WellingtonISAuthor Commented:
I took out the cable from the port and set it back in and still nothing.
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

TropicalBoundCommented:
I think you need to disable the port (and leave it disabled until testing is complete).  Just unplugging the cable may not be enough to force a rebuild of the routing table.

Did you check the table to see what port 0.0.0.0/0 is using?
0
WellingtonISAuthor Commented:
I"m going to send you my logs with the ip's.  I don't understand them maybe you can help me out.  It's attached.  the only thing that I changed initally was I was trying to add Radius so I was trying to get it to authenticate to my radius server. I've removed it.
watchguardlog1.txt
0
TropicalBoundCommented:
Check out this link:

https://www.watchguard.com/support/Fireware_Howto/83/HowTo_MultiWANroutingtable.pdf

Page 5 shows the routing table.  On your Watchguard, make sure the route for 0.0.0.0/0 points to the 12.12.12.x port.
0
WellingtonISAuthor Commented:
I don't have this in my status report.  I only have ARP and not Kernel IP routing table
0
WellingtonISAuthor Commented:
Just and update... I think I FINALLY figued out what's wrong.  I just set up a 3rd port with another IP on a different line and it's working - I'm not starting to believe there's something wrong with that line - maybe noise - but I have no way to test for noise.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
WellingtonISAuthor Commented:
this was an issue with the ISP and the line. I had to call the provider
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
VPN

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.