Manualshelf

User guide

ManualsBrandsWatchguard ManualsNetworkingV10
567891011121314
WATCHGUARD SYSTEM MANAGER AND FIREWARE WSM/FIREWARE 10.2.7
RELEASE NOTES JANUARY 22, 2009 PAGE 13
Workaround
Use WSM to remove the managed Branch Office VPN tunnel and then create the tunnel
again.
Beginning with the v8.3 release, you cannot use non-ASCII characters in BOVPN shared keys.
The UI does not allow you to enter non-ASCII characters in the shared key field.
Mobile VPN with IPSec
At the end of the Add Mobile VPN with IPSec Setup Wizard, the check box to add users to the
group may not be visible.
[27554]
Workaround
To see the check box, expand the window size of the Setup Wizard.
On very rare occasions, a large FTP transfer from a remote Mobile VPN client can get
dropped. Specifically, this can occur if a transfer is disconnected during the phase 2 rekey. The
client reconnects using the 2nd phase 2 Security Association (SA), and packets arrive from the
second SA before packets from the first SA are dropped.
[12340]
Workaround
Set the Phase 2 Proposal Forced Key Expiration threshold for byte count to 0 and
increase the timeout setting.
Mobile VPN with PPTP
When you configure Mobile User with PPTP, the lower half of the configuration page may not
be available.
[27621]
Workaround
Expand the window size to restore the full configuration page.
When you define more than one DNS or WINS server in your network configuration, PPTP
clients only get the first configured DNS and WINS server in the list.
[12575]
When the PPTP client connects to the Firebox, the connection-specific DNS suffix is not
assigned
[17394]
Mobile VPN with SSL
After the Mobile VPN with SSL client first connects, any subsequent changes made to the
Mobile VPN with SSL configuration will cause a connection problem with Windows Vista SP1
clients. The client appears to connect correctly, however the client sends a log message that it
unsuccessfully flushed the ARP table.
[29621]
Workaround
There are 2 options to work around this issue:
1. Disable User Account Control (UAC) on the Vista PC; or
2. Go to Program Files >WatchGuard >WatchGuard Mobile VPN with SSL and right-click
wgsslvpnc. Select Run as Administrator.
The Mobile VPN with SSL client may fail to connect when it is configured to have routes to 12
or more networks. The client has a limit to the number of routes it can support related to the