Hi,
I have NetScreen 5 GT running as a VPN gateway with the NSR VPN Client
on a bunch of Windows clients. We are on a PSK setup with all clients
running the same policy and the same PSK, and authenticating via
XAUTH. Since I am a Linux user myself, I do not use the VPN, and
whenever I try it in my lab setting, everything is fine.
Once in a while, some users complain that they can correctly establish
a tunnel, but no data flows. When they ping some server on the other
side of the tunnel, they get no replies. When I look on the netscreen
and on the router in front of the netscreen, I see that the encrypted
echo request comes in from the client, the decrypted echo request goes
out to the server, the decrypted echo reply comes in from the server
and that the encrypted echo reply goes out to the client. But the
client never says to have received it.
I usually blame this on faulty NAT on the user's side, and the same
client seems to work fine again the next day.
Is there any other explanation for this behavior?
Greetings
Marc
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835
_______________________________________________
nn mailing list
nn@qorbit.net
http://qorbit.net/mailman/listinfo/nn
|