Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 1 subscriber
  • Views 5665 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ZyXel UTM Site-to-Site VPN advice?

SSzretter
I am looking for advice, or hopefully sample settings on getting a ZyXEL USG 50 to connect site-to-site to an astaro gateway.    I happen to be running UTM 9 of astaro.     Has anyone done this, and would you be able to share settings on both sides (astaro/zyxel)?   It would be greatly appreciated!


This thread was automatically locked due to age.
Parents
  • 0
    Andreas, in the log when the UTM was initiating, are there lines from before where an ISAKMP SA was established? I guess so since Main Mode was initiated.
    Possible authentication failure: no acceptable response to our first encrypted message

    I'm thinking this is a VPN ID issue, a mismatched PSK or a policy conflict.
    • First, try with a simple PSK.
    • If that doesn't fix the problem, please show pictures of the Edits of the IPsec Connection, Remote Gateway and Policy.
    • Also pictures of the corresponding configuration from the other side.
    • Confirm that both sides have the public IP on the external interfaces of the VPN endpoints.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Andreas, in the log when the UTM was initiating, are there lines from before where an ISAKMP SA was established? I guess so since Main Mode was initiated.
    Possible authentication failure: no acceptable response to our first encrypted message

    I'm thinking this is a VPN ID issue, a mismatched PSK or a policy conflict.
    • First, try with a simple PSK.
    • If that doesn't fix the problem, please show pictures of the Edits of the IPsec Connection, Remote Gateway and Policy.
    • Also pictures of the corresponding configuration from the other side.
    • Confirm that both sides have the public IP on the external interfaces of the VPN endpoints.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML