Environment
Novell BorderManager 3.9
Novell BorderManager 3.9 Support Pack 1
Novell BorderManager 3.9 Support Pack 1
Situation
After a few day of utilization, when a vpn client tries to make a vpn
connection it will get:
Failing receiving server DH value.
The connection was terminated by the authentication gateway.
This user has worked fine and a reboot of the server will allow the users to
connect again for few day.
nmas shows that authentication is successfully but authgw is failing to look up
the user.
IKE is not started either on the client nor the server
Resolution
The problem was that between vpn client and vpn
server, there were two nat routers: The first one was changing src ip
and port, while the second one was changing the src ip. That was causing
an issue in authgw to timeout after to get the success auth from nmas
and this is why is was failing before even ike was started.
To verfiry this issue, a simultaneous lan traces have to be taken at server and client.
Fix is in two parts:
1. Authgw.nlm included in NBM39SP2 support pack
2. VPN client, version 3.9.2, included in NBM39SP2 support pack
To verfiry this issue, a simultaneous lan traces have to be taken at server and client.
Fix is in two parts:
1. Authgw.nlm included in NBM39SP2 support pack
2. VPN client, version 3.9.2, included in NBM39SP2 support pack