Support Center > Search Results > SecureKnowledge Details
Internal Error from Remote Access VPN when connecting to ClusterXL configuration in Load Sharing mode Technical Level
Symptoms
  • End users cannot connect with Remote Access VPN to a Cluster XL configuration of Security Gateways in Load Sharing mode.
  • Remote Access Client shows end users "Internal Error" from Remote Access VPN.
  • legacy_ike.elg shows that one Cluster Member handles the Phase 1 traffic and the other Cluster Member handles the config_mode or Phase 2 traffic.
Cause

In R81.10, the iked process was introduced to process some Site-to-Site VPN and Remote Access VPN traffic. By default, both the new iked process and the legacy vpnd process work to establish a Remote Access VPN tunnel. The two processes do not properly share information with each other, which causes the tunnel establishment to fail.


Solution
Note: To view this solution you need to Sign In .