[AF] SSL VPN single-arm deployment releases the internal network port management address as l3vpn resources cannot be accessed
Problem Description
SSL VPN single-arm deployment publishes the internal network port management address as l3vpn resources cannot be accessed
Warning Info
Connecting through an SSL client, route print does not have a corresponding route entry and cannot access the L3 resource
Effective troubleshooting steps
- Check that the basic configuration is correct, resources are obtained normally, and the virtual network card is working normally.
- Use route print All Routes route bar and there is no corresponding route entry.
- Use VPN to access the address + /por/rclist.csp to check that the resources are indeed sent by Services server:
solution
In single-arm deployment, AF resources are released through TCP. L3vpn is not supported yet.
Gateway deployment does not have this problem.
Operation Impact Scope
The single-arm deployment access Local currently only supports TCP mode, and L3VPN mode is not currently supported.
Original Link
https://support.sangfor.com.cn/cases/list?product_id=13&type=1&category_id=1617&isOpen=true