No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Data Transfer Fails When the USG5320 Works In Transparent Mode

Publication Date:  2012-07-17 Views:  64 Downloads:  0
Issue Description
Environment: USG2130---Internet---USG3040
Description:
The USG2130 and the USG3040 are connected to each other over an IPSec VPN. Intranet users of the USG2130 can access the intranet consulting service of the USG3040, but they have to withstand a latency of more than 400 ms when they access an address on the 200.100.100.1 intranet segment of the USG3040. Intranet users on the 200.100.100.1 intranet segment of the USG3040 do not suffer a latency when they access the intranet segments 172.17.0.0 and 192.168.0.0 of the USG2130.
Alarm Information
None.
Handling Process
Change the public IP addresses used by the intranet users of the USG3040 to private IP addresses. The problem of a long latency disappears. Alternatively, you can configure a detailed route pointing to the destination IP address on the 200.100.100.1 network segment on the USG2130.
Root Cause
At first, it is suspected that the physical link to the server is problematic, but server can normally access the intranet of the USG2130, so the problem is not caused by a server link fault. Therefore, the problem occurs because intranet users of the USG3040 uses public IP addresses on the 200.100.100.1 as private IP addresses.
Suggestions
When a public IP address is used as a private one on the intranet, the peer end searches for the IP address on the public network when the IP address is pinged from the peer end. This exerts a great impact on intranet IP addresses. Therefore, it is recommended not to use public IP addresses as private IP addresses during communication with the public network.

END