[vpn-help] No packets going through Watchguard
Matthew Grooms
mgrooms at shrew.net
Tue Feb 14 20:13:34 CST 2012
On 2/6/2012 11:55 PM, Mike Pacifico wrote:
> Hello,
>
> Just installed a watchguard XTM 510 4.2.1. Exported the the .vpn,
> imported the config file into the VPN client. According the the
> watchguard, I am authenticated as an client, or am I? No packets are
> being moved.
>
> I apologize in advance if I'm overlooking the obvious, but it's been a
> very long day.
>
...
> 12/02/06 21:38:35 DB : config resend event scheduled ( ref count = 2 )
> 12/02/06 21:38:35 ii : building config attribute list
> 12/02/06 21:38:35 ii : - IP4 Address
> 12/02/06 21:38:35 ii : - Address Expiry
> 12/02/06 21:38:35 ii : - IP4 Netamask
> 12/02/06 21:38:35 ii : - IP4 DNS Server
> 12/02/06 21:38:35 ii : - IP4 WINS Server
> 12/02/06 21:38:35 ii : - IP4 Subnet
> 12/02/06 21:38:35 == : new config iv ( 8 bytes )
> 12/02/06 21:38:35 ii : sending config pull request
> 12/02/06 21:38:35 >> : hash payload
> 12/02/06 21:38:35 >> : attribute payload
> 12/02/06 21:38:35 == : new configure hash ( 20 bytes )
> 12/02/06 21:38:35 >= : cookies f88412956c4b60da:93e25c78b27cfdea
> 12/02/06 21:38:35 >= : message 6a213b7c
> 12/02/06 21:38:35 >= : encrypt iv ( 8 bytes )
> 12/02/06 21:38:35 == : encrypt packet ( 84 bytes )
> 12/02/06 21:38:35 == : stored iv ( 8 bytes )
> 12/02/06 21:38:35 DB : config resend event canceled ( ref count = 1 )
> 12/02/06 21:38:35 -> : send NAT-T:IKE packet 192.168.1.6:4500
>
It would appear that the client is requesting modecfg information but
doesn't receive a response from the gateway. This would typically point
to a configuration mismatch between the client and the server. You say
you exported the .vpn file. Was that from another working client?
-Matthew
More information about the vpn-help
mailing list