Can't access some websites that use SSL.

Hi

We have tried to access a couple of websites, one being a bank (https://triodos.co.uk) and the other a webhost (https://my.vidahost.com). When we attempt to login, we get bounced back to the login screen. Occassionally, on either site, we can get past the login and navigate a couple of pages before being bounced back or being thrown a "user not logged in" style error.

We have tried it with different banks and other sites that use SSL but we don't have any problems accessing them.

We also have a problem getting a timeout accessing an external ftp resource which we believe is related.

We believe it is a network configuration problem as we have two offices which connect to each other via a lan-to-lan vpn.

Both offices have a DrayTek Vigor router and they are both configured identically as far as we can see however in one office, we can access these sites and resources fine but in the other we can't.

Any suggestions?
cbapartnershipAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

David Paris VicenteSystems and Comunications  Administrator Commented:
Hi cbapartnership,

There any browser configuration differences between the two sites?  
 Because there are so many steps involved I leave you here a link to a possible solution.

Let us know.

Regards,
D.
cbapartnershipAuthor Commented:
Hi

Thank you for your quick reply.

I should have mentioned in my first post that this is happening on all PC's and not just the one.

We have tried turning the firewall off the router and then accessing the web sites but its still the same error.

Thanks
plug1Commented:
There was a firmware update a while ago that specifically fixed problems with some banking websites so have you patched the router to the latest firmware yet? Also changing the port that the SSL VPN runs on along with the HTTPS web management port could help although I dont think that will be the issue, try the firmware first.
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

David Paris VicenteSystems and Comunications  Administrator Commented:
Hi cbapartnership,

Sorry for the late response.

Are you using an golden image deployed in all the PC's??
cbapartnershipAuthor Commented:
Hi

We are on the latest firmware for the router and we haven't deployed images to any of our PC's.

The SSL VPN is for remote access for users so I don't think that would help our problem.

Thank you
plug1Commented:
The SSL VPN runs on port 443, the same port as your banking websites mate so you might want to change it just in case.
cbapartnershipAuthor Commented:
Hi

We changed that port to 9696 but it still had no effect.

Cheers
cbapartnershipAuthor Commented:
Hi

We managed to resolve the issue. We have five different external IPs available from our ISP and they had all been placed in the NAT IP pool on the Draytek. Took all but one out and the issue has now been resolved.

Thanks for the help

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
cbapartnershipAuthor Commented:
We believe this was causing the problem because the SSL connection would be initiated on say IP 1 but then would respond later on IP 2 which would cause a credentials issue.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
SSL / HTTPS

From novice to tech pro — start learning today.