Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Intermittent VPN Issues

Hi,

One of our users has reported being unable to access one of the servers over the VPN, but only intermittently.

When they tried to ping the server they got "Request timed out" but soon after it started working again. I replicated this and saw two timeouts followed by successful replies. After this the connection will be stable for some time before it happens again.

Pinging *.*.*.* with 32 bytes of data:
Request timed out.
Request timed out.
Reply from *.*.*.*: bytes=32 time=51ms TTL=63
Reply from *.*.*.*: bytes=32 time=51ms TTL=63

I cannot see any sign of ICMP being blocked in the firewall log but I have seen some "Invalid Traffic" entries around the time that they reported the problem. The message is simply "Invalid packet.". I note that there is another entry with exactly the same source and destination port soon after where the traffic is allowed.

I would appreciate any suggestions for debugging this.

Regards,

Alan



This thread was automatically locked due to age.
Parents Reply
  • Hi Harsh,

    I was notified that your answer had been verified. This was not me.

    I have disabled firewall acceleration and we are monitoring it but I think it is too soon to mark this as verified. Even if it does "solve" the problem I would consider it a workaround as I don't think it should be necessary to disable the option.

    We will continue to monitor over the coming days but in the meantime I have rejected your answer until we have more information at this end.

    Regards,

    Alan

Children
No Data