Fixing Nortel Contivity Client VPN issue: Login failure due to remote host not responding

I have been receiving this error for a few days now fueling my laziness to connect at the office. But unfortunately last week I was asked to assist in implementing a major change so I need to connect from home prompting me to fix this issue or else I need wake up early and haul my *ss to the office on a weekend.

The setup is I connect to the office VPN via the Nortel Contivity client utilizing SecureID token. I keep getting the error “Login failure due to remote host not responding” when I tried to connect. I didn’t have this problem before and can connect from my “virtualized” laptop (I did a Physical-to-Virtual (p2v) migration of my office laptop so that I don’t have to bring the laptop home often).

Going through the Nortel Contivity Client document, I found this:

This is typically caused by UDP500 traffic not getting back to the requesting client through a firewall and/or router.  If your firewall/router supports IPSec passthrough you must enable IP50, IP51, UDP500 on both the source and destination (i.e. bidirectional) in order for the client to establish the connection.  Some firewalls/routers have a generic setting "Enable IPSec" or "Enable IPSec Passthrough" and simply turning this on will usually solve the problem.

The keyword here is IPSec Passthrough. In order for IPsec to work through a NAT, the following protocols need to be allowed on the firewall:

  • Internet Key Exchange (IKE) – User Datagram Protocol (UDP) port 500
  • Encapsulating Security Payload (ESP) – IP protocol number 50
  • Authentication Header (AH) – IP protocol number 51

I immediately login to my router administration panel and there it is, the IPSec Passthrough was disabled.  This might have been disabled after a recent upgrade of the router’s firmware. After enabling this feature, the VPN client connected immediately.

DD-WRT –> Security -> VPN Passthrough

By the way, I have a Linksys WRT320N using a third-party firmware called DD-WRT.

image

Enhanced by Zemanta

1,021 Comments

  1. Pingback: ??????? ????? ??

  2. Pingback: ???? ????? ????

  3. Pingback: replica rolex

  4. Pingback: ¥¨¥¢¥¸¥ç©`¥À¥ó4 ¥ª¥ê¥¸¥Ê¥ë¥«¥é©`

  5. Pingback: ¥¨¥¢¥¸¥ç©`¥À¥ó ¥·¥ê©`¥º

  6. Pingback: louboutin pas cher forum

  7. Pingback: ¥×¥é¥À ¥Ð¥Ã¥° Ö±?Óµê

  8. Pingback: ¥¨¥¢¥¸¥ç©`¥À¥ó4 Óè¼s

  9. Pingback: celine éLØ?²¼ Ü¿ÄÜÈË

  10. Pingback: ¥¬¥¬¥ß¥é¥Î ¥¿¥¤¥× Íó?rÓ?

  11. Pingback: cheap rolex

  12. Pingback: ¥¸¥ç©`¥À¥ó¥Ö¥é¥ó¥É ¥¹¥Ë©`¥«©`

  13. Pingback: ¥×¥é¥À ÈýÌ異¥¦¥È¥ì¥Ã¥È

  14. Pingback: ¥¬¥¬¥ß¥é¥Î ¥«¥¹¥¿¥à

  15. Pingback: doudoune longue femme avec capuche

  16. Pingback: ¥ß¥å¥¦¥ß¥å¥¦ µêÅn

  17. Pingback: ¥È¥ê©`¥Ð©`¥Á ¥Á¥§©`¥ó ¥Ð¥Ã¥°

  18. Pingback: ¥¨¥ë¥á¥¹ ¥Ï¥ï¥¤

  19. Pingback: Ç°Ìï¶Ø×Ó ¥ß¥å¥¦¥ß¥å¥¦ ¥Ð¥Ã¥°

  20. Pingback: ?SÌì ¥Ð¥Ã¥¯

  21. Pingback: éLØ?²¼ ¥È¥ê©`¥Ð©`¥Á

  22. Pingback: ¥¬¥¬¥ß¥é¥Î ?rÓ? ?SÌì

  23. Pingback: miumiu ¤ªØ?²¼

  24. Pingback: travelstyletours reviews

  25. Pingback: ¥¬¥¬¥ß¥é¥Î ÎÄ×Ö±P Íâ¤ì

  26. Pingback: ugg ??? ????prop

  27. Pingback: ugg ????prop

  28. Pingback: ¥È¥ê©`¥Ð©`¥Á ¥·¥ç¥ë¥À©`¥Ð¥Ã¥° ¥¢¥¦¥È¥ì¥Ã¥È

  29. Pingback: ugg?????prop

  30. Pingback: ???ugg????prop

  31. Pingback: miu miu ¥¯¥í¥³ éLØ?²¼

  32. Pingback: zobacz oferte

  33. Pingback: zobacz tutaj

  34. Pingback: ugg ??????prop

  35. Pingback: ugg ????prop

  36. Pingback: ¥¬¥¬¥ß¥é¥Î ¥Ó¥Ã¥¯¥«¥á¥é

  37. Pingback: ¥È¥ê©`¥Ð©`¥Á »¨±ú Ø?²¼

  38. Pingback: Hermes ¥¨¥Ô Ø?²¼ ¥Ö¥ë©`

  39. Pingback: ¥ß¥å¥¦¥ß¥å¥¦Ø?²¼ÈË?Ý

  40. Pingback: éLØ?²¼ ¥Ö¥é¥ó¥É ¼¤°²

  41. Pingback: ugg kenton?prop

  42. Pingback: ¥¬¥¬¥ß¥é¥Î ¥ß¥Ã¥­©`

  43. Pingback: ugg ????prop

  44. Pingback: ugg ????????????prop

  45. Pingback: ¥ß¥å¥¦¥ß¥å¥¦ miumiu éLØ?²¼

  46. Pingback: piumini moncler collezione 2013

  47. Pingback: ¥¬¥¬¥ß¥é¥Î ¥è¥ó¥¢

  48. Pingback: cheap rolex

  49. Pingback: ¥È¥ê©`¥Ð©`¥Á ¥Ð¥Ã¥° ½CÉ«

  50. Pingback: gucci¥­©`¥±©`¥¹ ¥¢¥¤¥Ü¥ê©`

Leave a Comment

Your email address will not be published. Required fields are marked *