Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 4 replies
  • Subscribers 4 subscribers
  • Views 7512 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Remote Access IPSec - Client IP Changes on rekey

Padraig O'Reilly

Hi All,

I have setup a certificate based Remote Access IPSec tunnel for some users.

The tunnel works perfectly and behaves as expected.

However I have noticed that while a user is logged in they may be assigned more than 1 IP from the VPN DHCP pool.

E.G after 3.5 hours hours of usage the client has been assigned 3 different IPs in the DHCP range, this is without every having disconnected.

 

Anybody got any ideas ?

 

Thanks



This thread was automatically locked due to age.
Parents
  • 0

    What problem is this causing, Padraig?

    Cheers - Bob

  • 0 in reply to BAlfson

    Hi Bob,

    This should be a normal IPSec Remote Access tunnel, nothing fancy.

    The behaviour I'm getting however is far normal normal.

    1
    user
    IPsec
    x.x.x.x
    2017-05-19 20:30:33
    01:33:08
    10.242.5.4
    ::
    330.5 kB
    353.6 kB
    2
    user
    IPsec
    x.x.x.x
    2017-05-19 18:58:16
    03:05:10
    10.242.5.3
    ::
    340.3 kB
    365.0 kB
    3
    user
    IPsec
    x.x.x.x
    2017-05-19 17:25:59
    04:37:37
    10.242.5.2
    ::
    343.3 kB
    368.5 kB
    4
    user
    IPsec
    x.x.x.x
    2017-05-19 15:53:44
    06:09:37
    10.242.5.1
    ::
    354.3 kB
    386.3 kB

     

    Table above is what happened after connecting and letting a simple ping run to an internal client (table is in reverse order).

    Whats even weirder is that client is still running and thinks its connected even though the UTM does not see it as connected.

    Any ideas.

    I'm using the Sophos IPSec client.

     

    Thanks

  • 0 in reply to Padraig O'Reilly

    Hi Padraig, 

    Where do you see those logs? I tested it in my local lab and could find any logs showing IPSec protocol.

    Cheers-

  • +1 in reply to sachingurung

    Hi All,

     

    Got to the bottom of this, the issue was being caused by a carrier with lousy connectivity.

    The link was dropping intermittently but we had no visibility over it.

    Switched over to a proper carrier and its running like a train.

Reply Children
No Data