Comments
-
It seems related to SNAT in the tunnel. Could you provide the subnet topology in the tunnel? where the subnets located at and what's the remote subnet from the peer side?
-
DHCP table is located below Network Status, and we implemented IP reserve feature on this page which is more convenient for configuring IP reservations. However, thanks for your feedback, I will forward this feedback to internal. Regarding hostname issue, could you check again on V1.20? I cannot see the symptom.
-
Please provide the configuration, I will check if I can reproduce this symptom
-
is it both sides behind NAT? could you provide your VPN configuration?
-
Please check on Advanced Settings, I suspect that you input the wrong information to Group Membership Attribute or something else.
-
AUTH_FAILED could be incorrect certificate or incorrect username/password, I would like to check your iOS script and VPN configuration? you may provide it via private message, thanks. BTW, could you provide complete log of the whole VPN negotiation process?
-
@ticsystems Have you ever submitted a ticket and our support pushed the WK firmware for you? if so, please provide the ticket number or device MAC, and I will check further for you, thanks.
-
Sure, please provide remote access via private message, I will look into this, thanks. Moreover, did you collect anything like console log or diaginfo after you noticed the issue?
-
Thanks for your feedback @mcdaniels Could you give an example of your request? do you mean that the email subject should add Org name so that you can sort it easily?
-
Here is my suggestion. Incoming interface: WAN1 Source IP: any External IP: WAN IP Internet IP: internal server IP You may refer to
-
The WAN1 IP is 192.168.100.168 which should not be the source IP. Source IP means that only this address-object could go through this NAT rule. If you set it as any, it means any source IP address can access it.
-
@phphil USGFLEX H series has a different platform(uOS) than ATP/USGFLEX series(ZLD). USGFLEX H series cannot set up multiple remote VPN tunnels like ATP/USGFLEX.
-
Navigate to Maintenence -> Diagnostic -> "Collect Now", it may take 3-5 minutes to collect. You can send it to me via private message, we can discuss for further checking.
-
What's your application, could you describe more? I would like to know your NAT rules and firewall rules too, thanks.
-
the logs seem not complete, could you help collect the logs on both sides in three different scenarios? I would like to check the difference in the behavior. The complete log of strongswan connect to VPN successfully The complete log of strongswan disconnect after connecting successfully The complete log of strongswan…