TheGreenBow IPSec VPN Client Zyxel ZyWall 10 Скачать руководство пользователя

Страница: 5 / 12

Doc.Ref tgbvpn_cg_ZyWall10_en
Doc.version

2.0 – Nov.2004

VPN version

2.5x

2.3

ZyWall Phase 2 IDs

The settings "Local" and "Remote" are in fact Phase 2 IDs. In Local Address Type, you must select "Subnet
Address" and fill the field “Starting IP Address” with the IP addresses of your LAN.

2.4

ZyWall Phase 1 IDs

Phase 1 IDs are set in the following view of the configuration interface. We choose to use IP Addresses as IDs.

2.5

ZyWall IPSec Protocol

Next step consists into selecting IPSec Protocol. TheGreenBow VPN client do not accept AH protocol. Set the
Pre-Shared Key and click on "Advanced".

IPSec VPN Router Configuration

Property of TheGreenBow Sistech SA - © Sistech 2001-2005

5/12

Содержание IPSec VPN Client Zyxel ZyWall 10

Страница 1: ...IPSec VPN Client Configuration Guide Router Zyxel ZyWall 10 WebSite http www thegreenbow com Contact support thegreenbow com IPSec VPN Router Configuration Property of TheGreenBow Sistech SA Sistech 2001 2005 0 12 ...

Страница 2: ...eGreenBow IPSec VPN Client configuration 0 3 1 VPN Client Phase 1 IKE Configuration 0 3 2 VPN Client Phase 2 IPSec Configuration 0 3 3 Open the IPSec VPN tunnels 0 4 VPN IPSec Troubleshooting 0 4 1 PAYLOAD MALFORMED error 0 4 2 INVALID COOKIE error 0 4 3 no keystate error 0 4 4 received remote ID other than expected error 0 4 5 NO PROPOSAL CHOSEN error 0 4 6 INVALID ID INFORMATION error 0 4 7 I cl...

Страница 3: ...heGreenBow VPN client to the LAN behind the Zyxel ZyWall Router The VPN client is connected to the Internet by a dialup connection from an ISP The client will have a virtual IP address in the remote LAN All the addresses in this document are given for example purpose 192 168 1 3 Internet Zyxel ZyWall 10 192 168 1 78 192 168 1 1 155 2 4 36 80 11 8 4 192 168 100 57 IPSec VPN Router Configuration Pro...

Страница 4: ...all VPN configuration can be achieved with a web browser Read Zyxel ZyWALL 10 documentation for more information Once connected to your VPN gateway click on VPN link in the Zyxel ZyWALL 10 VPN configuration interface Select a VPN connection and click on Edit 2 2 ZyWall IKE Mode Click on Active Select IKE and Main if you want to use IKE Main mode exchange IPSec VPN Router Configuration Property of ...

Страница 5: ... Address with the IP addresses of your LAN 2 4 ZyWall Phase 1 IDs Phase 1 IDs are set in the following view of the configuration interface We choose to use IP Addresses as IDs 2 5 ZyWall IPSec Protocol Next step consists into selecting IPSec Protocol TheGreenBow VPN client do not accept AH protocol Set the Pre Shared Key and click on Advanced IPSec VPN Router Configuration Property of TheGreenBow ...

Страница 6: ...on algorithms For Phase 1 select the algorithm you want DH1 is also known as Diffie Hellman 768 and DH2 as Diffie Hellman 1024 For Phase 2 do not forget to select ESP as active protocol Click on Apply once you have finished IPSec VPN Router Configuration Property of TheGreenBow Sistech SA Sistech 2001 2005 6 12 ...

Страница 7: ...PN Client Phase 2 IPSec Configuration In this window you define IPSec VPN Policy VPN Client address is the virtual IP address of the client inside the LAN With Zyxel VPN gateways this address must not belong to the remote LAN Take as example the choice of 192 168 1 100 for virtual IP address When the VPN client is sending a TCP or an UDP packet to a target remote computer 192 168 0 x this target w...

Страница 8: ...n configured accordingly you are ready to open VPN tunnels First make sure you enable your firewall with IPSec traffic 1 Click on Save Apply to take into account all modifications we ve made on your VPN Client configuration 2 Click on Open Tunnel or generate traffic that will automatically open a secure IPsec VPN Tunnel e g ping IE browser 3 Select Connections to see opened VPN Tunnels 4 Select Co...

Страница 9: ...e error 115315 Default SA ZyWALL P1 SEND phase 1 Main Mode SA VID 115317 Default SA ZyWALL P1 RECV phase 1 Main Mode SA VID 115317 Default SA ZyWALL P1 SEND phase 1 Main Mode KEY NONCE 115319 Default SA ZyWALL P1 RECV phase 1 Main Mode KEY NONCE 115319 Default SA ZyWALL P1 SEND phase 1 Main Mode ID HASH NOTIFY 115319 Default ipsec_get_keystate no keystate in ISAKMP SA 00B57C50 If you have an no ke...

Страница 10: ...SEND phase 1 Main Mode ID HASH NOTIFY 122626 Default SA ZyWALL P1 RECV phase 1 Main Mode ID HASH NOTIFY 122626 Default phase 1 done initiator id c364cd70 195 100 205 112 responder id c364cd72 195 100 205 114 src 195 100 205 112 dst 195 100 205 114 122626 Default SA ZyWALL ZyWALL P2 SEND phase 2 Quick Mode SA KEY ID HASH NONCE 122626 Default RECV Informational HASH NOTIFY with INVALID_ID_INFORMATIO...

Страница 11: ...efault gateway value in VPN Server LAN A target on your remote LAN can receive pings but does not answer because there is a no Default gateway setting You cannot access to the computers in the LAN by their name You must specify their IP address inside the LAN We recommend you to install ethereal http www ethereal com on one of your target computer You can check that your pings arrive inside the LA...

Страница 12: ...s News and updates on TheGreenBow web site http www thegreenbow com Technical support by email at support thegreenbow com Sales contacts at 33 1 43 12 39 37 ou by email at info thegreenbow com IPSec VPN Router Configuration Property of TheGreenBow Sistech SA Sistech 2001 2005 12 12 ...

Результаты поиска

Содержание IPSec VPN Client Zyxel ZyWall 10

Отзывы:

Похожие инструкции для IPSec VPN Client Zyxel ZyWall 10

Бренды по названию

Популярные бренды

TheGreenBow IPSec VPN Client Zyxel ZyWall 10, Руководство по настройке

Результаты поиска

Содержание IPSec VPN Client Zyxel ZyWall 10

Отзывы:

Похожие инструкции для IPSec VPN Client Zyxel ZyWall 10

Бренды по названию

Популярные бренды