You may not be able to reach the Tunnel gateway if device is unable to communicate with the Tunnel server on the mentioned port.

Solution

  1. From the device connected network, ensure that the device connects to the Tunnel server on the port that is mentioned in the tunnel configuration.The device must get connected and display the Tunnel server Front-end SSL certificate.
  2. In the command prompt, enter the following command: openssl s_client -connect <dest_fqdn>:<port> -servername <server_fqdn> .
  3. In the Tunnel server, enter the following command: netstat -tlpn

    The server must display the port that is mentioned in the tunnel configuration.

  4. In the Tunnel server, enter the following command: systemctl status vpnd. The service must be active and running.
    Note:
    • Verify the Firewall and the load balancer rules.
    • SSL Offloading and SSL Bridging are not supported for the Per-App Tunnel component.