IP address range is smaller than the maximum permitted number of VPN client connections

Applies To: Forefront Threat Management Gateway (TMG)

Cause

The IP address range in the static pool for assignment to remote site virtual private network (VPN) clients and roaming client connections is smaller than the maximum permitted number of VPN client connections.

Solution

Do either of the following:

• Extend the static address pool IP range. To do this, from the Remote Access Policy node, select the Remote Sites tab. On the Tasks tab, click Define Address Assignments, and then click Add to assign addresses to the static address pool.

  Note

  The addresses you assign to the pool must first be removed from other defined networks, because overlapping of IP addresses between networks is not allowed. The static address pool must provide one more address than the maximum number of VPN connections allowed.

• Alternatively, from the Remote Access Policy node, select the Remote Sites tab. On the Tasks tab, click Configure VPN Client Access. On the General tab, reduce the number specified in Maximum number of VPN clients allowed.