After the SSL VPN was authenticated and network extension was started, the SVN3000 client failed to access the intranet servers. The virtual IP address of the intranet could be obtained.
Alarm Information
None
Handling Process
1. Log in to the SVN3000 and ping an intranet server. If the intranet server cannot be pinged through, check whether the network is reachable.
2. Log in to the SVN3000 management interface. Display the Client Routing Mode page. If the client routing mode is manual, check whether the IP address of the intranet server or its network segment is configured with a static route.
3. Check whether the intranet server has a backhaul route to the virtual IP address of network extension. If the intranet server has not he backhaul route, add a static route to the virtual IP address or add a default route to the SVN3000.
4. Check whether the default route is configured on the SVN3000. If the default route is not configured, add a default route to the gateway (generally the IP address of the interface through which the firewall or router connects to the SVN3000).
5. If the SVN3000 and the intranet server are directly connected to different interfaces of a firewall, ensure that the interzone packet filtering rules are enabled for the zones where the two interfaces reside.
Root Cause
f the client fails to access the intranet when the configuration is correct and the virtual IP address can be obtained, the possible cause is that the virtual IP address has no reachable route to the intranet. Solution
Suggestions
Ensure that the SVN3000 is configured with a reachable route to the intranet.
Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
Politically sensitive content
Content concerning pornography, gambling, and drug abuse
Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."
* Including Third Party’s Trade Secret or No:?
Third Party’s Trade Secret
Third Party’s Trade Secret refers to Third Party’s (other than Huawei’s) technical or commercial information which is unknown to the public, with commercial value, and kept confidential by Third Party. It may include without limitation Price Information, Roadmap, Commercial Authorization, Core Algorithm and Source Code. Should you have any questions, please contact e.support@huawei.com.