Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

VPN connectivity problem

Iam connecting to customer server using sonicwall global VPN client.

When I tried connecting from internal network passing thro? firewall the authentication happens successfully but failed to renew the IP address for the virtual interface and got the error message as ?the semaphore timeout period has expired?

Iam succesfully able to connect if I NAT local IP to public IP. Also it worked fine if i bypass the firewall.

I do PAT and send the internet traffic.

Any possible solution to resolve this issue passing thro' firewall.

1 REPLY
Silver

Re: VPN connectivity problem

Are you going through a pix/asa? If yes you can use application inspection but it's only works for 1 tunnel at a time.

Application Inspection - IPSec/PPTP

6.3

http://www.cisco.com/en/US/customer/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a008017278b.html#wp1094669

7.X

http://www.cisco.com/en/US/customer/products/ps6120/products_configuration_guide_chapter09186a0080640337.html#wp1522169

If using IPSec you can see if the customer can support NAT-T, IPSec over UDP or TCP.

http://www.cisco.com/en/US/customer/products/sw/iosswrel/ps1839/products_feature_guide09186a0080110bca.html

Thanks,

Chad

Please rate if helpful!

310
Views
0
Helpful
1
Replies
CreatePlease to create content