Jump to content


Photo

Client VPN: Handshake timeout due to ACL mismatch

VPN

  • Please log in to reply
2 replies to this topic

#1 Jens Hildenbeutel

Jens Hildenbeutel
  • Members
  • 53 posts
  • LocationKaiserslautern, Germany

Posted 08 January 2015 - 05:15 AM

Hello @ll,

 

I am implementing client-VPN and cannot get a connection established. The logfile at MyVServer\VPN\VPN shows:

 

Session PERS-99-1: ACL mismatch on (public client IP)

 

I am quite stuck here as the ACL in the personal license at box\Virtual Servers\vServer\Assignes Services\VPN\Client to Site shows all the routes.

 

I am using F280 5.4.1

 

Thank you for your help!



#2 Stefan Hora

Stefan Hora
  • Barracuda Guru
  • 142 posts

Posted 08 January 2015 - 06:06 AM

Hi Jens,

if you are using ACL's in the Client to Site Config, then these are not the secure routes that the client will get after successfull connection.

It is the public IP from where the client connects.

The ACL-Section in the client to site is normally not used except you really know from which public IP-Range the client trys to connect to the VPN-Server.

 

The routes which the client should get are in the template section.



#3 Jens Hildenbeutel

Jens Hildenbeutel
  • Members
  • 53 posts
  • LocationKaiserslautern, Germany

Posted 08 January 2015 - 07:46 AM

Many, thanks, that was just it!