I'm stuck.
Clients are doing cert auth and can download the VIA profile.
The network tab of the VIA client shows it receives an inner IP, but what is odd is the VPN Packets Sent/Received shows most often 0/and some quantity received.
So it appears the controller sends to the client but the client is not sending a reply.
Wireshark says the client is pinging the controller but no response seen.
We're using ECDSA, Suite B for auth.
Sometimes the client shows it sent data but nothing received.
If I remove the ECDSA (Which used to work) and go with User/pass auth and a more basic encryption, hash, and DH group 14 it stays online just fine.
So its not network but it's perplexing why it can't send when using the more secure configuration.
Any suggestions?
No comments:
Post a Comment