Best Of
Re: Difference between Zywall 110 and USG 110
My reply may not be exactly what you asked for, but it is as close as I could get on short notice. A similar question was asked and replied to in the following discussion from 2020-01-23:
Re: Accessing shared folders over IPSec Site to site VPN
Yes that could be one reason because you don't have either USG having the WAN IP behind other NAT routers that you need to forward ports.
Have you a rule to allow inbound UDP port 500, 1701, 4500 and protocol 50 from WAN to Zywall?
PeterUK
Re: Accessing shared folders over IPSec Site to site VPN
that is the problem! i dont get the logs at all, i disabled the firewall on my ISP router for sure and nothing. i have included the screenshot from my policy control rules.
Thank you for your time.
The ipsec site to site vpn gives that the connected is established.
Tunnel [GW_To_OldOffice:Con_To_OldOffice:0x6884d946] built successfully
Office 2 (New_Office):
Office1 routing:
Office2 routing:
Re: Accessing shared folders over IPSec Site to site VPN
By default windows will not allow another subnet to access a shared folder there are two ways around this but as to have disable the windows firewall this is likely but the problem.
You need and firewall rule on Office 2
from LAN1
to IPSec_VPN
You need and firewall rule on Office 1
from IPSec_VPN
to LAN2
PeterUK
Re: Accessing shared folders over IPSec Site to site VPN
Have you tested the shared folder on the same network?
Windows firewall might be blocking it
test by
\\192.168.2.33
PeterUK
Re: LTE5388-M804 loses network after some time
Wrong guess, sorry: issue was back again today, even with IPv6 activated. And this time changing and reverting the band selection from the GUI was not enough, log were cycling and no IP address was assigned. I had to restart the Zyxel for good.
Finally, I'm afraid that only a watchdog to monitor an IP address and restart the connection, and then the whole Zyxel if if fails again, would be required to fix this 😥
Re: [Solved] LTE5398-M904 does not connect using a Vodafone Italy SIM
I solved the problem.
For some reasons seems that with this SIM and/or provider a manual PLMN selection is required. 😕
BruCom
Re: LTE5388-M804 loses network after some time
@RobTheNetworkGuy I have several SIMs and noticed the bug may occure mainly with one of them (not 100% sure, but I don't remember having the issue with the other SIM). As one difference is this LTE provider is IPv4 by default, I asked this LTE provider to enable IPv6 and changed APN configuration to IPv4+IPv6. FYI my network behind (pfSense) is IPv4 only, so IPv6 is only on LTE side. For now, every 12 hours the Zyxel detects "RILCMD: ConnState[0] is not attach in RS_READY." and then restarts the whole connection process including DHCP (udhcpc) with a new IPv4 address… but yet no connection loss during the last 36 hours.
Do you have an IPv6 address assigned, and if not maybe you could give it a try? Again, only on LTE side: no need to enable IPv6 on your pfSense.
Addendum: 48h and yet no network loss, except a few seconds every 12h. It seems to be that Zyxel fails to handle the DHCP IPv4 new address, but detects it if IPv6 is enabled and restarts the connection properly. My 2 cents.