Welcome, Guest. Please login or register.
Did you miss your activation email?
Monday 09 December 2024, 05:44:45 pm

Login with username, password and session length

Visit the official Endian Community Mailinglist  HERE
14261 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  VPN Support
| | |-+  IPSEC VPN block the system endian.
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: IPSEC VPN block the system endian.  (Read 25253 times)
yhenao
Full Member
***
Offline Offline

Posts: 34


« on: Saturday 14 August 2010, 01:08:51 am »


Hello,

When I configured IPSEC VPN, I think that consumes 100% cpu resources and crashes the system. I had reboot and start again.

anyone knows how to solve it.

Regards,

Yamidt
Logged
quintard
Jr. Member
*
Offline Offline

Posts: 3


« Reply #1 on: Sunday 15 August 2010, 12:22:33 pm »

the same problems for me ! when i set a ipsec vpn tunnel ! the status  is open .bug i can't ping form red zone to the green zone .!!  should i need to set SNAT?? or  the vpn firewall Huh

to expect
regard!!!
Logged
yhenao
Full Member
***
Offline Offline

Posts: 34


« Reply #2 on: Tuesday 17 August 2010, 02:51:52 am »

Hello quintard,

Snat, how? I set snat ----> source LAN/IP  dst -----> IPSEC

But it is not working.

Regards,

Yamidt
Logged
yhenao
Full Member
***
Offline Offline

Posts: 34


« Reply #3 on: Wednesday 18 August 2010, 05:42:25 am »

When I created a  site to site IPSEC vpn, the system is blocked and I  have restart the system. The VPN is open but when I am sending traffic  through the vpn the system endian is completely blocked.

 I have create VPN to FORTINET and ENDIAN 2.3, 2.4 and 25 user lisence and always the same problem.

if I only do ping the system is stable but if I send web traffic as RDP or  WEB GUI the system is down.

Regards,
Logged
yhenao
Full Member
***
Offline Offline

Posts: 34


« Reply #4 on: Wednesday 18 August 2010, 08:55:08 am »

I tried disabling the IPS module and the vpn working properly. I think this happens when I have the IPS enabled.


Yamidt
Logged
quintard
Jr. Member
*
Offline Offline

Posts: 3


« Reply #5 on: Saturday 21 August 2010, 11:08:16 am »

hello yhenao!

    i  try to sniff the icmp packages /. the result is i can sniff the packages form red to green with esp. but i can't sniff the packages from the green to the red . maybe the esp package can‘t go through the nic, may the package have been abandon .
    i have  download a new efw. it's subverion is  '55' .when i  try to 'host to gw' ipsevpn , it's will worked  sometimes ..

about 30% sucessed!!

    will try to find the reason !!

    Regards!!!
Logged
yhenao
Full Member
***
Offline Offline

Posts: 34


« Reply #6 on: Tuesday 24 August 2010, 01:24:54 am »

thanks quintard,

Endia saying me,  they have IPSEC bug, they are working to find a solution, I am waiting..

Regards,

Yamidt
Logged
rmurthy@avantel.in
Jr. Member
*
Offline Offline

Posts: 1


« Reply #7 on: Monday 24 January 2011, 08:17:24 pm »

my worry is also the same. I have two endian community versions on Site A and Site B. I have created a tunnel from A to B and vice versa. Now I am able to ping Ste A to Site B. But after 12 hours of work I am needed to restart the IPSEC service from EB Console. Is there any solution for this.

Thanks in advance.
SRRM
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.125 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com