We recently started having a strange VPN connection issue. Our users can successfully connect to the VPN (we use the Sophos client and an XG Firewall) with no issues. Once connected they can ping their desktop computer, but as soon as you try to connect a RDP session, the pings drop and the RDP link fails. After about 30 seconds or so, RDP pops up the failed to connect message and the pings resume.
I tried this on a known good computer that was working with VPN and RDP just a few days ago and encountered the same thing. There have been no recent changes to the firewall or computers (other than things like definition updates). RDP works internally and when I connect the VPN I can access other resources (AD, file shares, etc).
I checked the firewall and IPS logs, but nothing stands out. Any thoughts on where to begin?
See KB127785.
This command works for me: set vpn conn-remove-tunnel-up disable
Sorry, but where did you run this command at? I am having the same issue after moving over to Sophos XG for our vpn connections. It is being reported that RDP will be fine then just freeze up. I don't really want to force RDP over TCP, unless I have to.
Regards and Thanks,
Scott McHenry
Sorry. I had to RTFM or at least the KB article. I know it dealt with VOIP instead of RDP, but giving it a shot. I will advise if the users report all is better now.
Best Regards,Scott M.
I had the issues every 2-3 minutes. After I used the command "set vpn conn-remove-tunnel-up disable", the issues are immediately gone.
Another way is to create policy rule that deny all RDP UDP service for instance for VPN to LAN.
Exactly same issue, our client report me that they RDP to their computer but 5-10mins the RDP drop connection then they need to reconnect the RDP. I've tried to increase
the UDP time-out stream and set vpn conn-remove-tunnel-up disable but no result.
Is it need to restart the XG firewall after configuring those settings above?