Create a Post
Showing results for 
Search instead for 
Did you mean: 

No connection to a VPN remote access user.

Hello, everyone.

I have a VPN user that connects through Endpoint Security VPN, which successfully logs in to the VPN (Remote Access), but once connected, he has no connectivity to the IP that is declared in the security rule (

In the logs, there are no drops packets from this user, on the contrary, everything is allowed.

In these RA VPN scenarios, is it convenient to do a traffic "trace", using TCPDUMP? Or is it better to use a FW Monitor?

Could you share with me a syntax of the FW Monitor command, for this type of scenario?

Thanks for your comments.

0 Kudos
2 Replies

I'd start with a simple tcpdump from the gateway itself (using destination IP of the system in question).
If the traffic doesn't leave the gateway, you might try fw monitor using the -F option with the specific IPs (Office Mode IP of user and destination server).
For example (to see all traffic to on port 443 from Office Mode IP fw monitor -F ",0,,443,6" -F ",443,,0.6"
More information on fw monitor:

From there, you might need to debug further.


Maybe just start with the logs check and see what you get. After, run what Phoneboy suggested.


0 Kudos


Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events