?
Solved

Connection timeouts with mobile vpn users

Posted on 2016-09-25
5
Medium Priority
?
68 Views
Last Modified: 2016-09-26
We just setup a colocation and all connections from our main site to colocation site seem fine.  When remote user connects I start getting timeouts.  Here is the setup.
At main office we have a Watchguard router, at colocation is a Fortigate router.  The gateway and tunnels are setup for site to site between the 2 and it works.
At the main site on the DC, I have sites and services configured accordingly.  The main site subnet is 192.168.0.0/24 and the remote site is 192.168.10.0/24.  I moved one of the DC's into the server portion of the remote site.  When I connect using the WatchGuard VPN client I get assigned an address on the 192.168.113.0/24 subnet.  I can see all servers and access all machines on the .0.0/24 subnet without issue, when I try and hit the servers on the 10.0/24 subnet I get a few replies and then couple timeouts.  If I try a continuous ping I may get up to 12 replies before getting 2-3 timeouts and then replies again.  Also, if I run a continuous ping from my machine at the office (on the 0.0/24 subnet) I get all replies but will start getting some timeouts if someone connects via the WatchGuard VPN client.  
I am hoping I am just missing a step as this is becoming frustrating.
If anyone can provide any insight it would be greatly appreciated.
0
Comment
Question by:joeyj1970
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 97

Accepted Solution

by:
Experienced Member earned 2000 total points
ID: 41814708
You may need to turn NAT traversal ON. Also a site-to-site tunnel will use MAIN Mode. Mobile users use AGGRESIVE Mode. Make sure the mode is correctly set.
0
 

Author Comment

by:joeyj1970
ID: 41814747
Thank you John, I will give that a try tomorrow.
0
 
LVL 97

Expert Comment

by:Experienced Member
ID: 41814855
Please let us know after you have tried. Thanks.
0
 

Author Comment

by:joeyj1970
ID: 41816652
John,  We switched to Aggressive mode and latency still existed.  Turns out they had something wrong on the Fortigate tunnel side.  Once they removed the Tunnel and reconfigured in a different manner, I no longer received any packet loss when remote.'
Thank you for the suggestion.
0
 
LVL 97

Expert Comment

by:Experienced Member
ID: 41816685
Thanks for the update and I was happy to help
0

Featured Post

Limited time offer using promo code EXPERTS30

Designed with a wealth of functionality and convenience, ATEN's new Thunderbolt™ 2 Sharing Switch takes your Thunderbolt setup to the next level. Now through September 15, 2017, Experts Exchange members get 30% off the US7220 on the ATEN USA eShop using promo code EXPERTS30.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I don't know if many of you have made the great mistake of using the Cisco Thin Client model with the management software VXC. If you have then you are probably more then familiar with the incredibly clunky interface, the numerous work arounds, and …
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question