Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Pulse Secure Client v9.1.8

jgun98
New Contributor
‎10-20-2020 11:22:PM
‎10-20-2020 11:22:PM

Pulse Secure Client v9.1.8

Hi there,

I am using a pulse secure client 9.1.8, previously also using versions 9.1.4 to 9.1.7.
There is a strange behavior in Pulse Secure lately which is the status connected and if I ping the ip server, it replies. But when I remote to the server using a remote desktop connection or access to the database server using database client tools or doing any activity related to the resources in VPN, everything becomes inaccessible. Ping results in a request time out even though the secure pulse status is still connected.

 

Help me to figure out what's when wrong. It's happen since three days ago.

0 Kudos
4 REPLIES 4
cbrauckmiller
Frequent Contributor
‎10-21-2020 09:27:AM
‎10-21-2020 09:27:AM

Re: Pulse Secure Client v9.1.8

Thank you for the question.

 

This type of question is probably better answered via our support team.  We will need client and server logs from your endpoint and PCS appliance.  

 

Please open a case with us and we can get to the bottom of what the issue is.

 

Thank you.

 

Craig Brauckmiller

Global Escalation Manager

Pulse Secure

0 Kudos
jgun98
New Contributor
‎10-21-2020 05:35:PM
‎10-21-2020 05:35:PM

Re: Pulse Secure Client v9.1.8

I've got this message on log 

VPN tunnel transport for connection mob2 (ID 37b8b17ffa924c44a4e2122832846498) switched from ESP to SSL mode due to missing ESP heartbeats

0 Kudos
cbrauckmiller
Frequent Contributor
‎10-22-2020 11:58:AM
‎10-22-2020 11:58:AM

Re: Pulse Secure Client v9.1.8

This message is an indication that the UDP packets between your endpoint that the PCS appliance are getting dropped.  We will fall back to SSL (TCP 443) to try and recover.  This type of drop is common on cellular networks when roaming between towers as well as basic ISP problems.  

 

To properly troubleshoot this, you'd need a packet capture from the endpoint on the physical interface as wel as a capture on the public facing interface of the PCS appliance.  You'll need to match up the ESP packets by using the sequence number and see if there are large gaps in the sequence numbers. You should check to see if the endpoint is sending them and if the PCS is receiving them.  

 

Make sense?

 

Thanks

 

Craig Brauckmiller

Escalation Manager

Pulse Secure

0 Kudos
r@yElr3y
Moderator
Moderator
‎11-01-2020 08:45:AM
‎11-01-2020 08:45:AM

Re: Pulse Secure Client v9.1.8

@jgun98 

# When you do a traceroute to the remote resource IP address, do you see the first hop as 10.200.200.200?

# Are you using WiFi or LAN? if using WiFi, whats the driver model?

PCS Expert
Pulse Connect Secure Certified Expert
0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.