Forum Discussion
hmian_178112
Nimbostratus
NimbostratusTCP Connection Reset between VIP and Client
Topology:
Pulse Authentication Servers <--> F5 <--> FORTIGATE <--> JUNOS RTR <--> Internet <--> Client/users.
Background:
Clients on the internet attempting to reach a VPN app VIP (load-balance...
What are the Pulse/VPN servers using as their default gateway? They should be using the F5 if SNAT is not in use to avoid asymmetric routing.
I would do the following then test:
- Change the VIP to use SNAT. Test.
- If it works, reverse the VIP configuration in step 1 (e.g. no SNAT)
- Disable all pool members in POOL_EXAMPLE except for 30.1.1.138
- Change the gateway for 30.1.1.138 to 30.1.1.132. Test.
AceDawg1Nimbostratus
NimbostratusExcellent! I'll post said response as an answer to your question.
Could you "Accept" for me please?
