VPN - Zyxel Community

Windows 10 can not establish l2TP over IPSEc VPN to the FLEX/ATP
SCENARIO DESCRIPTION: I set up L2TP over IPSec VPN on USG, all the settings are correct, and it works perfectly on every device, for example windows 7, android phone, iPhone etc except for Windows 10 where Windows 10 will have VPN connection issue. It just hangs for no reason. No error message pops up while I connect to…
Implement Split Tunnel on Windows Client
Symptom: By default, when using the L2TP service, clients will go through a Full Tunnel. However, In certain situations, you may not want all traffic to go through the VPN tunnel Workaround: 1)Find the L2TP profiles in Control Panel->Network and Internet->Network Connections. Right-click it and go to properties >…
What can we do when SecuExtender IPsec VPN client does not work on macOS
Symptom The status always remains grayed out or turns into a red light and back to gray within a second after clicking “Open tunnel”. And the console is empty after you change anything or fail to open tunnel. Root Cause If SecuExtender IPsec VPN client cannot work on your macOS, it's likely the default security settings…
Configure Site-to-Site IPSec VPN between Zyxel Gateway and AWS Virtual Private Gateway
This article describes the procedure to create a site-to-site IPsec connection between an AWS VPN gateway and Zyxel ATP500 gateway. Please note that this configuration assumes that the public IP address is directly configured on the Zyxel gateway. Your configuration will be slightly different if your Zyxel gateway sits…
How to check IKEv2 settings when it is not working
Sometimes the VPN settings which is created by wizard does not work at every device because the default proposal does not suit each device. It is important to modify the firewall proposal to apply in the customer environment. The article explains how to check your devices and firewall when you have IKEv2 issue.…
How to setup L2TP VPN for remote access
The following is a sample configuration how to build up VPN tunnel with the remote access VPN wizard. Remote access VPN Wizard is an easy way to quick set up VPN tunnel. Do not need complex configuration to build up VPN tunnel, all you need is to follow the steps on the VPN Wizard. Here are the steps to build L2TP over…
Remote Access VPN Wizard for SecuExtender IPSec and Non-SecuExtender IPSec VPN Clients
With USG FLEX/ ATP( since ZLD 5.20) you are able to provision predefined settings on your device to SecuExtender IPSec as well as non-SecuExtender IPSec VPN clients. This article will show you how to use Remote Access VPN Setup Wizard to quick setup VPN tunnel using IKEv2 with EAP-MSCHAPv2 authentication. Set up VPN Tunnel…
How to Use Two Factor with Google Authenticator for VPN Access?
How to Use Two Factor with Google Authenticator for VPN Access? In previous firmware versions, USG supports pin code by SMS/Email as two-factor authentication method. However, SMS-based two-factor authentication is not safe. Compared to SMS-based method, Google authenticator is the most secure method to receive…
How to access device Web GUI remotely via SSL VPN tunnel?
(1) Add a new access policy for SSL VPN in CONFIGURATION > VPN > SSL VPN > Access Privilege. (2) Move the SSL VPN user to "Selected User/Group Objects". Set a proper IP pool for SSL VPN users. Select the address from Network List to allow SSL VPN user access to local network. In this example, SSL VPN users can access…
How to access device WebGUI remotely via L2TP VPN tunnel
(1) Create VPN Gateway for L2TP (2) Create VPN connection for L2TP (3) Setup L2TP VPN setting (4) Create policy route for Intranet/Internet routing Since client already built L2TP VPN tunnel, so all of traffic will pass into VPN tunnel. So you can access device WebGUI by any activated interface IP address. You can check…
How to establish SSL VPN tunnel from Windows PC
Step 1 – User Account Setup Login to the Zyxel router and go to menu, Configuration → Object → User/Group. Click the Add button to insert user accounts for SSL VPN access. SSL VPN users CANNOT be administrator account "User Type". Step 2 – User Group Setup If you have created multiple user accounts you may want to group…
How to setup L2TP VPN
Setup L2TP VPN configuration on USG (1) Create VPN Gateway for L2TP (2) Create VPN connection for L2TP (3) Setup L2TP VPN setting (4) Create policy route for Intranet/Internet routing
How to Configure Site-to-site IPSec VPN with a SonicWALL router
This example shows how to use the VPN Setup Wizard to create a site-to-site VPN between a ZYWALL/USG and a SonicWALL router. The example instructs how to configure the VPN tunnel between each site. When the VPN tunnel is configured, each site can be accessed securely. Set Up the IPSec VPN Tunnel on the ZyWALL/USG In the…
GRE over IPSec VPN Tunnel –VPN Failover
Application scenario We want to use VPN tunnels to transfer important files between the branch Office and HQ. To prevent the network from getting disconnected , we configure four WAN interfaces to do redundancy. Now, we want to establish two VPN tunnels between the two USGs to perform failover, to ensure that the transfer…
How to forward traffic to branch site server after client established VPN tunnel
Scenario: Site#A and SiteB are established site to site VPN tunnel. How to forward traffic to Site#B after client connected VPN tunnel to Site#A. VPN client can be L2TP/SSL VPN/ IPSec VPN. Client will get the IP address which assigned by Site#A router. In this scenario, VPN client got IP 10.10.10.1 after established L2TP…
How to Configure Route-based IPsec VPN to Azure (BGP over IKEv2/IPSec)
Azure Multi-Site connection This type of connection is a variation of the Site-to-Site connection. You create more than one VPN connection from your virtual network gateway, typically connecting to multiple on-premises sites. When working with multiple connections, you must use a Route-based VPN type (known as a dynamic…
How to Configure Route-based IPsec VPN to Azure (VTI over IKEv2/IPSec)
Azure Multi-Site connection This type of connection is a variation of the Site-to-Site connection. You create more than one VPN connection from your virtual network gateway, typically connecting to multiple on-premises sites. When working with multiple connections, you must use a Route-based VPN type (known as a dynamic…
How to configure L2TP on ZyWALL
Go to Configuration > VPN > IPSec VPN > VPN Gateway > Click "Add" button to add L2TP VPN phase 1. Go to Configuration > VPN > IPSec VPN > VPN Connection and click add button to add L2TP VPN phase 2. Go to Configuration > VPN > L2TP to configure your L2TP address setting.
SecuExtender 4.0.3.0 for Windows failed to access ZyWALL's LAN
The fix will be merged to the next official firmware version 4.33 which will be released in January 2019. Before the official firmware is released, you can use subnet instead of range for SSL_pool as the temporary solution if you got the same issue.
How to configure IKEv2 with MS-CHAPv2 on ZyWALL?
The USG1100 must join an AD domain. In the following example, domain name is usg.com. Go to CONFIGURATION > System > DNS > Address/PTR Record and add a record. In this example, the IP of AD server is 10.214.48.71. Go to AAA Server > Active Directory > AD object. Configure Domain Authentication for MSChap.The user in this…

Welcome!

It looks like you're new here. Sign in or register to get started.