search cancel

Your current network is preventing connection to the VPN

book

Article ID: 174525

calendar_today

Updated On:

Products

Web Security Service - WSS

Issue/Introduction

The Cloud Connect Defense client is unable to establish a VPN connection to the Web Security Service.

Your current network is preventing connection to the VPN

Environment

Cloud Connect Defense Client integrated with the Web Security Service

Resolution

Ensure that the endpoint is connected to a network that allows VPN connections or UDP ports 500 and 4500 are allowed at the firewall level.

  • Verify that these ports are allowed, check the endpoint's software firewall, as well as the network's edge firewall.
  • UDP ping to 500 and 4500 ports can be run to verify connectivity. Tools such as PsPing can be used and verify router not blocking requests.
  • Wireshark can also be used to capture and trace UDP connections. Capture filters: udp port 500 and udp port 4500