Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".


Sonicwall drops packets from hosts on X0 to SSL VPN clients.

nimacomnimacom Newbie ✭

I need to manage SSL VPN Client devices via RDP but RDP and ICMP packets are dropped by Sonicwall. It seems to be a kind of access rule, but the access rules are configured to allow management and all other traffic from X0 to SSL VPN and the other way round. The packet gets dropped at the ingress interface (X0) already.

The other way round, from SSL VPN clients to X0 everything works fine.

Ethernet Header

 Ether Type: IP(0x800), Src=[08:92:04:67:99:4b], Dst=[18:b1:69:78:86:1c]

IP Packet Header

 IP Type: ICMP(0x1), Src=[], Dst=[]

ICMP Packet Header

 ICMP Type = 8(ECHO_REQUEST), ICMP Code = 0, ICMP Checksum = 19481


DROPPED, Drop Code: 448(SA not found on lookup by SPI for outbound pkt), Module Id: 20(ipSec), (Ref.Id: _264_krugeQevgqpQwvrwv) 1:2)

Category: SSL VPN

Best Answer

  • Options
    BWCBWC Cybersecurity Overlord ✭✭✭
    Answer ✓

    @nimacom are you sure that is part of your SSLVPN subnet and not any IPsec VPN? The "SA not found" confuses me in that context.



  • Options
    nimacomnimacom Newbie ✭

    Hi Michael,

    thanks for your response, our SSL VPN network is but we had an additional route within the vpn site to site configuration.

    Thank your very much!


Sign In or Register to comment.