Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 16 replies
  • Answers 2 answers
  • Subscribers 43 subscribers
  • Views 14612 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Strange VPN connection issue

K M

We recently started having a strange VPN connection issue.  Our users can successfully connect to the VPN (we use the Sophos client and an XG Firewall) with no issues.  Once connected they can ping their desktop computer, but as soon as you try to connect a RDP session, the pings drop and the RDP link fails.  After about 30 seconds or so, RDP pops up the failed to connect message and the pings resume.

I tried this on a known good computer that was working with VPN and RDP just a few days ago and encountered the same thing.  There have been no recent changes to the firewall or computers (other than things like definition updates).  RDP works internally and when I connect the VPN I can access other resources (AD, file shares, etc).

I checked the firewall and IPS logs, but nothing stands out.  Any thoughts on where to begin?



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    I am not sure why are you going to force TCP on RDP protocol? As per my understanding, this is a workaround on;y this is not a root cause. 

    Regards,

    Deepak Kumar

    Sophos Architect | NSE 4 | CCNP | CISE 

  • 0 in reply to Deepak Verma

    You could try to check, if there is an issue with the UDP Timeout on your XG. https://community.sophos.com/kb/en-us/127785

    Try to rise the UDP Timeout and try again. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    I called support and they were pretty confident that the issue was not with the XG.  That said, I tried adjusting the UDP timeout, but without that registry key I still am unable to connect a RDP session over the VPN.  It might be worth noting that when I do not have the registry key and try to RDP, I am also unable to ping any devices on the network for about 30 seconds.  It almost seems like a false positive on a threat detection (IPS?), but there don't appear to be any logs.

Reply
  • 0 in reply to LuCar Toni

    I called support and they were pretty confident that the issue was not with the XG.  That said, I tried adjusting the UDP timeout, but without that registry key I still am unable to connect a RDP session over the VPN.  It might be worth noting that when I do not have the registry key and try to RDP, I am also unable to ping any devices on the network for about 30 seconds.  It almost seems like a false positive on a threat detection (IPS?), but there don't appear to be any logs.

Children
Unfiltered HTML