UC520 EZVPN Client Could not telnet into UC500 Local Ethernet Interface

Unanswered Question
Apr 19th, 2010
User Badges:

After setup EZVPN for UC500, the vpn client could get IP address from pool. following is the setup

UC520 internal Interface 10.1.1.1/24

define Ip address pool for VPN client as 10.1.1.200 to 10.1.1.210

client connect to UC520 successfully, and acquire IP address 10.1.1.202.

but client could not telnet or ssh into  to 10.1.1.1, and not firewall rules were enable on all interface.

Running KueiLuck-PBX#debug ip tcp packet address 10.1.1.202,

Any thought? Thanks


Get following:

TCP Packet debugging is on for address 10.1.1.202

KueiLuck-PBX#

000639: Apr 19 20:20:54.879 EDT: tcp0: I LISTEN 10.1.1.202:49469 10.1.1.1:23 seq

4234960539

OPTS 12 SYN WIN 8192

000640: Apr 19 20:20:54.883 EDT: tcp0: O SYNRCVD 10.1.1.202:49469 10.1.1.1:23 se

q 2419136075

OPTS 4







ACK 4234960540 SYN WIN 4128

000641: Apr 19 20:20:57.867 EDT: tcp0: I SYNRCVD 10.1.1.202:49469 10.1.1.1:23 se

q 4234960539

OPTS 12







SYN WIN 8192

000642: Apr 19 20:20:57.867 EDT: tcp0: O SYNRCVD 10.1.1.202:49469 10.1.1.1:23 se

q 2419136075








ACK 4234960540 WIN 4128

000643: Apr 19 20:20:57.867 EDT: TCP0: bad seg from 10.1.1.202 -- bad sequence n

umber: port 23 seq 4234960539 ack 0 rcvnxt 4234960540 rcvwnd 4128 len 0

000644: Apr 19 20:20:57.883 EDT: tcp0: R SYNRCVD 10.1.1.202:49469 10.1.1.1:23 se

q 2419136075

OPTS 4 ACK 4234960540 SYN WIN 4128

000645: Apr 19 20:21:03.875 EDT: tcp0: I SYNRCVD 10.1.1.202:49469 10.1.1.1:23 se

q 4234960539

OPTS 8 SYN WIN 8192

000646: Apr 19 20:21:03.875 EDT: tcp0: O SYNRCVD 10.1.1.202:49469 10.1.1.1:23 se

q 2419136075

ACK 4234960540 WIN 4128

000647: Apr 19 20:21:03.875 EDT: TCP0: bad seg from 10.1.1.202 --







bad sequence n















umber: port 23

















seq 4234960539 ack 0 rcvnxt 4234960540 rcvwnd 4128 len 0

000648: Apr 19 20:21:03.883 EDT: tcp0: R SYNRCVD 10.1.1.202:49469 10.1.1.1:23 se

q 2419136075

OPTS 4 ACK 4234960540 SYN WIN 4128





  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Marcos Hernandez Wed, 04/21/2010 - 08:05
User Badges:
  • Blue, 1500 points or more

Does SSH work? Can you telnet from a PC directly connected to the UC500?


Marcos

rawsonfang Wed, 04/21/2010 - 08:44
User Badges:

ssh was not working either, but telnet from local PC on 10.1.1.0/24 segment successfully.

Actions

This Discussion