Depletion of the SSL VPN IP pool, leading to connectivity issues for SSL VPN users. Even if the IP pool is configured with a sufficient number of addresses, customers may encounter problems when only a few users are connected. This article explains the symptoms, causes and fix for this issue.
On the SSLVPN > Status page, there are indications of unauthenticated users showing up with a login pending message with 0 minutes of login time.
NOTE: The users display N/A for the Inactivity Time and 0 mins for the Login Time. So they are not the actual authenticated users.
SonicWall engineering team has successfully identified and addressed the SSL VPN IP pool exhaustion issue. A hotfix labeled "GEN6-2333" has been released to resolve this problem.
Please create a web ticket for the Issue How to submit a support case online at MySonicWall.com | SonicWall with the following details:
After applying the HotFix firmware, follow the below steps to secure the SSL VPN connections further:
In SSLVPN server settings, secure the SSLVPN authentication more by changing the SSLVPN port to something different than the default SSLVPN port which is 4433. Along with the port, please consider changing the User Domain name. This is just a passphrase so you can keep something tough.
Users must have the correct port and domain name for authentication.
If the issue persists after hotfix upgrade and the steps mentioned above, please contact support.