search cancel

VPN connection cannot be established


Article ID: 174527


Updated On:


Cloud Secure Web Gateway - Cloud SWG


The Cloud Connect Defense client cannot establish a VPN connection to the Web Security Service.

VPN connection cannot be established


Cloud Connect Defense Client integrated with the Web Security Service


You can try the following solutions:

  • Check for network connectivity.
  • Check if the VPN certificate is installed on the endpoint.
  • Check whether corporate network or ISP is preventing connections.
  • Check whether the firewall is blocking ports. UDP port 500 and 4500.
    • UDP ping to on 500 and 4500 ports can be run to verify connectivity.
      Tools such as PsPing can be used and verify the router is not blocking requests.

    • Wireshark can also be used to capture and trace UDP connections. Capture filters: dns and udp port 500 and udp port 4500.
  • Collect Cloud Connect Defense client logs and submit them to the Symantec Technical Support team.