Hello
Direct, access stopped working a while ago for all out clients and i'm struggling to find out why.
On the server side Operation status of DA server appears to work properly but no active clients, it appears the clients are trying to establish a session.
I see event id 4653 an IPSec main mode negotiation failed with Failure Reason: Sent DoS cookie notify to initiator.
In terms of Certificate, antivirus, updates nothing has changed to explain this.
On the client side, the windows firewall is enabled on all profiles and i can see the client Outside corporate network with DA settings configured and enabled.
IPHTTPS interface is active but i cannot ping any server, no ping reply from Direct Access/DNS using IPv4 or IPv6 addresses.
Under Windows Firewall - Security Associations there are no tunnels created under Main or Quick Node.
nslookup on client using
- server IPv6 address of the DNS server configured in DirectAccess
- internal domain name
fails , with can;t find domain, Non-existent domain.
UDP 500 and 4500 ports are allowed through the firewall and firewall is on for all profiles.
in event viewer on client i see event 4653 with Failure reason: Negotiation times out or No policy configured.
Also No SAs match the specified criteria.
Any help would be appreciated.
many thanks,
Mihai