sslvpn inconsistencies

sjonesin1

Good Morning,

I have several clients set up to use the WG SSLVPN with LDAP authentication. Over the last few months, i've had an increasing number of these connections fail. They typically fail during the authentication phase and if the user keeps trying, their IP eventually gets locked out. If I remove the client fully, re-download and re-install it, the connection will work. But an increasing number of them fail again. I've just moved those folks to IKE without too much difficulty....except now i appear to be facing a t-mobile 5g hotspot issue that seems to be blocking the IKE traffic/ports.

Not trying to seek multiple resolutions here...I'm most curious if others have had similar experiences with the SSLVPN recently. I've cranked up logging and may open a support ticket....but just looking for other input initially.

NOTE: I do use port 444 as opposed to 443 for the connection...long leftover from natting exchange servers

thanks in advance...steve

james.carson

Hi @sjonesin1

Without seeing any of the logs from the client side when they are disconnecting/failing to connect, it's difficult to suggest any reason.

If you haven't done so, I'd suggest upgrading your firewall to v12.11 if you haven't done so already. There were some fixes for the authentication process in that version over 12.10.4.

Since most logs will contain IP addresses, I'd suggest opening a support case (you can do that via the support center button at the top right of this page.) Logs can be securely attached via the case.

Thank you,