Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
194
Views
0
Helpful
2
Replies

Expressways MRA - One side says traversal is up, other says it's down

kylebrogers
Level 4
Level 4

‎05-20-2016 02:07 PM - edited ‎03-19-2019 11:08 AM

I have a new deployment of a pair of Expressways for MRA.  Running the latest version on both.  

The EXP-E is in a DMZ and is deployed single-NIC (don't have 2 DMZ subnets).

We have all of the DNS and certificates taken care of

The EXP-C says the traversal zone is "Active", while the EXP-E says it is "Failed".

Any idea why one side thinks it's up while the other doesn't?  

Labels:
0 Helpful
2 Replies 2

Chris Deren
Hall of Fame
Hall of Fame

‎05-22-2016 06:39 AM

Make sure that whatever you are pointing to (fqdn, hostname, ip address) is what is defined on the other side's certificate, i.e. if you are pointing to IP, but the cert is issued to FQDN change it to point to FQDN. 

If that is not it, you'll need to look in the logs and review firewall rules/logs.

0 Helpful

kylebrogers
Level 4
Level 4
In response to Chris Deren

‎05-26-2016 09:12 AM

It turned out that I hadn't entered the NAT info into the E.  Once I did that, everything came up.  

0 Helpful
Customers Also Viewed These Support Documents