Question : Cannot connect to Symantec Firewall/VPN 200 Appliance via VPN...

I have installed a Symantec Firewall/VPN 200 appliance at my office. Everything pertaining to firewalling the internet and allowing just those users I wish through works fine. However, I cannot sucessfully connect a remote client to the Gateway via VPN. I have setup everthing EXACTLY as the manual states (using dynamic keys), but the client times out trying to retrieve the tunnels. Below is a listing of the log (note that I have modified the IP address)...

Jan 18 12:55:41.620 house emapi[1932]: 100 nsetup Trace: Session Notification enabled.
Jan 18 12:55:41.630 house emapi[1932]: 100 nsetup Trace: Connecting security gateway xxx.xxx.xxx.xxx
Jan 18 12:55:41.630 house emapi[1932]: 100 nsetup Trace: Retrieving configuration for gateway xxx.xxx.xxx.xxx
Jan 18 12:55:43.112 house isakmpd[2020]: 120 isakmpd Info: Initiator, Established ISAKMP SA (Lsg=xxx.xxx.xxx.xxx, Rsg=xxx.xxx.xxx.xxx), [tunTemplate=Universal]
Jan 18 12:55:50.393 house emapi[1932]: 300 Symantec Enterprise VPN Client Warning: There was an error communicating with the VPN driver.
Jan 18 12:59:50.398 house emapi[1932]: 300 Symantec Enterprise VPN Client Warning: There was an error communicating with the VPN driver.
Jan 18 13:00:15.183 house isakmpd[2020]: 343 isakmpd Warning: RETRY LIMIT REACHED for the remote security gateway xxx.xxx.xxx.xxx
Jan 18 13:00:15.183 house isakmpd[2020]: 120 isakmpd Info: Initiator, Failed downloading tunnels with peer xxx.xxx.xxx.xxx
Jan 18 13:00:15.193 house emapi[1932]: 400 Symantec Enterprise VPN Client Error: Communications with the ISAKMP daemon failed.
Jan 18 13:01:37.582 house emapi[1932]: 100 nsetup Trace: Error retrieving information. Terminating connect operation to gateway xxx.xxx.xxx.xxx

The remote client is a Windows XP Pro system running version 7.01 of Symantec's Client software. Any ideas? Thanks-a-mil.

MAK

Answer : Cannot connect to Symantec Firewall/VPN 200 Appliance via VPN...

Im assuming that you have a Symantec Firewall/VPN 200R instead of just model "200" from your posting.

We are currently using a 200R Appliance in our office and XP Pro in the remote client's computer, it works great except for continual disconnection if tunnel remains inactive. I have set the "disconnect inactive tunnels to 0" but still disconnects. If you come across this, let me know if you find a solution.

As per your question, while troubleshooting, disable all your firewall software installed in your win xp pro.

If I recall properly, the problem is from the creation of your tunnel. Double check the Secure Tunnel Gateway IP is the local network ip on the other side of the tunnel. Also check the Encryption/Authentication Method and Pre-Shared key in the appliance. That has to match with your VPN client setting. Remove tunnel and re-configure one more time.

If you have additional questions on the appliance, email me at [email protected].

Random Solutions

What is softgrid in Windows 2008.Will it support all softwares.?

missing SQL Server 2000 Developer Edition CD

Can't run Activex, restrictions in effect error

Something's preventing me from changing Internet Explorer 7 Homepage

Invalid Request (Bad Verb)

How to configure exchange 2007/2003 to redirect external users to external url

How to change IP Address permanently in Linux OpenWRT?

Using Active X Control in Access Froms Generates License Error??

how to write a cursor to loop through the records of one table and insert them into another table?