SSL VPN stopped working on TZ 670
For some reason, our SSL VPN with NetExtender has stopped working. Users now are given the error "The server is not reachable. The server may be down or your Internet settings may be down." Previous users who were already connected have still been able to connect. However, if the previous user uninstalls and reinstalls, they are now in the same position receiving the error.
Settings on the firewall have not been changed.
Firmware SonicOS 7.0.1-5051
We have not rebooted the firewall yet. Was hoping to see if there were any logs that could be pointing to what the issue is first.
Best Answer
-
CORRECT ANSWER
BWC
Cybersecurity Overlord ✭✭✭
@AF30KK Device -> Users -> Status -> Show Count should tell you how much Users are online, you need to compare with the max. Number of licensed Users. Another option would be Network -> SSL VPN -> Status.
You could also download a TSR, this holds the information as well, a single line holds max. licensed and current used Users. And the Section "#SSL VPN : Status_START" shows some detailed Infos in the TSR.
Exchausted Pool space is IMHO only visible in the log, resulting in a corresponding entry. You could check in the TSR, maybe in the section "#SSL VPN : Client Device Profile_START".
Do you have a chance to update the Firmware? This would be my initial recommendation.
--Michael@BWC
0
Answers
@AF30KK your firmware is way to old, go ahead and install 7.0.1-5095 which fixes lots of issues. A common problem is the exhaustion of licenses or sslvpn pool addresses.
--Michael@BWC
Where can I check if the pool and license are exhausted?
Agree with @BWC. Update your firmware!