Possible Cause: SSL VPN full tunnel connection might disconnect due to no keepalive response if Novell Access Manager setup is on a host-only network, on a VMware interface of the client.
Explanation: After full tunnel is enabled, a new route entry would be added to the client routing table to route the keepalive packet to SSL VPN server through default gateway. Because SSL VPN gateway is on host-only network on a VMware, keepalive packet might not reach the SSL VPN server through default gateway.
Action:
Add a virtual address to the SSL VPN gateway.
For example, if the primary address is 200.200.200.140, add 200.200.200.141.
Disconnect physical network from client to make sure that there is no default gateway to the Internet.
Manually add a default route.
For example, route add 0.0.0.0 mask 0.0.0.0 200.200.200.141 metric 5.