I'm seeing a similar symptom to the issue in thread 3436679 (connection failed with FWM20030 error), in my case I'm going from a Windows client to a Linux server. I have checked the network, VPN tunnel, and firewall configuration and can confirm I'm getting a network connection to the repository server (I have a 'tcpdump' of the full interaction) and messages are exchanged, but the repository looks like its sending something to the IDT client that results in the error being issues before even a username and password are exchanged. I too can login to the CMC (via a web session).
What gets exchanged from client to server looks like this in summary:
Client Server
SYN
SYN+ACK
ACK
'aps' +PUSH (3)
ACK
0x00000178 +PUSH (4)
'IOR'... then hex data +FIN +PUSH (493)
ACK
FIN
ACK
The connection is made using an IP address, but one of the strings returned by the repository server in the "IOR" message contains a what looks like a domain name and port (corresponding to the address connected to) -- does the client verify this to prevent spoofing?
The desired action is to be able to push a relational connection to the repository.
Thanks in Advance,
Donn