01-05-2009 01:01 PM - edited 02-21-2020 04:06 PM
Hi all,
Our company is having an intermittent problem when establishing a VPN tunnel.
VPN client: Cisco VPN client version 5.0.02 & version 4.7.00
VPN client config: IPSEC over UDP
Transparent Tunneling Enabled
VPN concentrator: VPN 3005, vpn3005-4.7.2.B-k9.bin
Problem:
It's an intermittent problem. The VPN client will connect and authentication via RSA SecurID. The tunnel will become successfully established. However, no IP traffic will pass between the client and the "internal" network behind the VPN 3005 Concentrator.
When the problem exists, I examine the VPN Tunnel | Stats window.
It lists the following:
Bytes
Received: 0
Sent: 91074
Packets
Encrypted: 1186
Decrypted: 0
Discarded: 256
ByPassed: 278
Does anyone have any idea as to where the problem may lie? It's pretty intermittent, but I does fairly often.
As always, thanks for your help.
-Mike
01-05-2009 01:37 PM
Hi Mike,
Most probably the ESP traffic is getting blocked between the VPN Client and Concentrator.
Have you tried using IPSecOverUDP Or IPSecOverTCP option ?
Thanks,
Naman
01-05-2009 01:44 PM
Thanks for the reply, Naman.
No, I have tried the IPSecOverUDP or IPSecOverTCP option.
Do you know of the link that contains that information? I'll start researching it.
-Mike
01-06-2009 07:35 AM
This might help
Thanks,
Naman
01-06-2009 01:59 PM
Mike
I have sometimes had some success with symptoms like this if I have the client change the transport tab (open the VPN client, select the profile, select modify, select the transport tab) to switch from UDP to TCP or the other way.
I believe that I have seen this type of symptom and when I had the person do an ipconfig, there was an incorrect gateway address. You might check this the next time you run into this problem.
HTH
Rick
01-06-2009 02:38 PM
As always, thanks for the advice Rick. I appreciate it.
-Mike
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide