SSLvpn connection problem with public IP
Hi, I have configured the SSL vpn on a WG xtm25 following the steps of the tutorials.
The problem is outside the internal network VPN client fails to connect.
I have reviewed all the configuration but still does not connect.
SSLvpn rules were created automatically and I have not moved any of them
Log error:
5: 41: 07.797 WatchGuard Mobile VPN with SSL client is already running. Passing command line to process.
5: 41: 24.910 Requesting client configuration from 190.187.33.178:443
5: 41: 34.926 FAILED: 2020-05-08T15: 41: 39.918 FAILED: Cannot perform http request, timeout 12002
5: 41: 39.918 failed to get domain name
0
Sign In to comment.
Comments
Is the public IP addr assigned to your firewall external interface or does your firewall external interface have a private IP addr from your ISP device ?
Review this:
Troubleshoot Mobile VPN with SSL
https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/mvpn/ssl/mvpn_ssl_tshoot_c.html
You can turn on diagnostic logging for SSLVPN which may show something to help:
In WSM Policy Manager: Setup -> Logging -> Diagnostic Log Level -> VPN -> SSL
In the Web UI: System -> Diagnostic Log
Set the slider to Information or higher
What do you get if you enter https://yoursslvpnpublicipaddress into a browser on an external computer? I get a protocol warning using the IP you posted, when I should be getting the SSLVPN login page. An SSL scan of that IP shows an expired self-signed Fireware web CA cert as well, "Valid from June 22, 2013 to August 20, 2016."
Gregg Hill