Thegreenbow ipsec vpn client configuration guide router: zyxel zywall 10 website: http://www.Thegreenbow.Com contact: support@thegreenbow.Com ipsec vpn router configuration property of thegreenbow sistech sa - © sistech 2001-2005 0/12.
Doc.Ref tgbvpn_cg_zywall10_en doc.Version 2.0 – nov.2004 vpn version 2.5x table of contents 1 introduction .................................................................................................................................................... 0 1.1 goal of this document ...................
Doc.Ref tgbvpn_cg_zywall10_en doc.Version 2.0 – nov.2004 vpn version 2.5x 1 introduction 1.1 goal of this document this document describes how to configure thegreenbow vpn client with a zyxel zywall 10. 1.2 network topology in our example, we will connect thegreenbow vpn client to the lan behind the...
Doc.Ref tgbvpn_cg_zywall10_en doc.Version 2.0 – nov.2004 vpn version 2.5x 2 zywall vpn configuration zynos firmware version release of the zyxel zywall 10 used during tests was zynos 3.52 (wa.3)
Doc.Ref tgbvpn_cg_zywall10_en doc.Version 2.0 – nov.2004 vpn version 2.5x 2.6 zywall authentication and encryption algorithms for phase 1, select the algorithm you want. Dh1 is also known as diffie-hellman 768 and dh2 as diffie-hellman 1024. For phase 2, do not forget to select "esp" as active proto...
Doc.Ref tgbvpn_cg_zywall10_en doc.Version 2.0 – nov.2004 vpn version 2.5x 3 thegreenbow ipsec vpn client configuration 3.1 vpn client phase 1 (ike) configuration in the "interface" field, you can select a star ("*"), if the client host receive a dynamic ip address from an isp for example. The "remot...
Doc.Ref tgbvpn_cg_zywall10_en doc.Version 2.0 – nov.2004 vpn version 2.5x you may define a static virtual ip address here. For use with zyxel routers, do not specify an ip address belonging to the remote lan’s enter the ip address (and subnet mask) of the remote lan. Phase2 configuration 3.3 open th...
Doc.Ref tgbvpn_cg_zywall10_en doc.Version 2.0 – nov.2004 vpn version 2.5x 4 vpn ipsec troubleshooting 4.1 « payload malformed » error 114920 default (sa zywall-p1) send phase 1 main mode [sa][vid] 114920 default (sa zywall-p1) recv phase 1 main mode [notify] 114920 default exchange_run: exchange_val...
Doc.Ref tgbvpn_cg_zywall10_en doc.Version 2.0 – nov.2004 vpn version 2.5x 4.5 « no proposal chosen » error 115911 default (sa zywall-p1) send phase 1 main mode [sa][vid] 115913 default (sa zywall-p1) recv phase 1 main mode [sa][vid] 115913 default (sa zywall-p1) send phase 1 main mode [key][nonce] 1...
Doc.Ref tgbvpn_cg_zywall10_en doc.Version 2.0 – nov.2004 vpn version 2.5x • check your isp support esp • if you still cannot ping, follow icmp traffic on vpn server lan interface and on lan computer interface (with ethereal for example). You will have an indication that encryption works. • check the...
Doc.Ref tgbvpn_cg_zywall10_en doc.Version 2.0 – nov.2004 vpn version 2.5x 5 contacts news and updates on thegreenbow web site : http://www.Thegreenbow.Com technical support by email at support@thegreenbow.Com sales contacts at +33 1 43 12 39 37 ou by email at info@thegreenbow.Com ipsec vpn router co...
