Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Sonicwall drops packets from hosts on X0 to SSL VPN clients.

nimacomnimacom Newbie ✭

I need to manage SSL VPN Client devices via RDP but RDP and ICMP packets are dropped by Sonicwall. It seems to be a kind of access rule, but the access rules are configured to allow management and all other traffic from X0 to SSL VPN and the other way round. The packet gets dropped at the ingress interface (X0) already.

The other way round, from SSL VPN clients to X0 everything works fine.



Ethernet Header

 Ether Type: IP(0x800), Src=[08:92:04:67:99:4b], Dst=[18:b1:69:78:86:1c]

IP Packet Header

 IP Type: ICMP(0x1), Src=[192.168.88.139], Dst=[172.20.120.2]

ICMP Packet Header

 ICMP Type = 8(ECHO_REQUEST), ICMP Code = 0, ICMP Checksum = 19481

Value:[0]

DROPPED, Drop Code: 448(SA not found on lookup by SPI for outbound pkt), Module Id: 20(ipSec), (Ref.Id: _264_krugeQevgqpQwvrwv) 1:2)

Category: SSL VPN
Reply

Best Answer

  • CORRECT ANSWER
    BWCBWC Cybersecurity Overlord ✭✭✭
    Answer ✓

    @nimacom are you sure that 172.20.102.2 is part of your SSLVPN subnet and not any IPsec VPN? The "SA not found" confuses me in that context.

    --Michael@BWC

Answers

  • nimacomnimacom Newbie ✭

    Hi Michael,


    thanks for your response, our SSL VPN network is 172.20.102.0/24 but we had an additional route within the vpn site to site configuration.

    Thank your very much!

    Nico

Sign In or Register to comment.