I've been beating my head all morning on this. I have various XG firewalls all running 17.5.
On the firewall in question, I had a basic SSLVPN for Remote access configured and working fine. I haven't used the VPN in last month or two very much and when I have, it hasn't worked. This morning I decided to try to figure it out. I can connect and get a green traffic light, but no traffic will flow. In the end, I rebuilt the SSLVPN config on the XG from scratch, uninstalled and reinstalled the client on the remote PC, all to no avail.
Then I got to thinking what has changed. In the beginning of the summer I setup some SSLVPN Site-to-Site connections on the impacted XG. It is the server for 1 link and is the client for 2 other XG links. When I disable the Site-to-Site CLIENT links (while pinging XG ip from remote SSLVPN client having problems) ping immediately start working. If I re-enable either Site-to-Site client link, traffic stops flowing from the remote access client within about 30 seconds. The link where the XG is the server does not impact the remote access vpn client at all, it still works when the XG is connected as the server.
So good news is that I have the remote acesss SSLVPN working again. The problem is that now both of my SSLVPN Site-to-Site client connections are disabled.
Is this scenario not supported or is there a misconfiguration somewhere? I haven't found any support or KB articles at all here about this issue.
This thread was automatically locked due to age.
