Any VPN related issue in 5.39(ABWC.1)?
Ally Member
I am running an USGFLEX100W and after upgrading to 5.39(ABWC.1), my dynamic IKEv2 IPSec VPN is not working anymore. I thought it might be some configuration change, so I went back 2 months (I have weekly backups), but it still don't work. It don't work on any of the mobiles it used to, and the laptop I used to connect is giving me a similar error. This is what I see in the firewall:
[SA] : No proposal chosen
[ID] : Tunnel [IPSec] Local IP mismatch
I am using a domain name, but this is set in the certificate, and the client is also set like this. It used to work normally.
The mobile log shows this:
[ENC] parsed IKE_AUTH response 1 [ N(AUTH_FAILED) ]
[IKE] received AUTHENTICATION_FAILED notify error
Any idea what could be wrong?
All Replies
-
Is VPN Local Policy set to IP 0.0.0.0 ? give that a go
0 -
It turned out to be a faster resolution than I thought. A rookie issue apparently…
The certificate expired on 8th of November… Interesting though, that it drops local IP mismatch.
0
Guru Member
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 145 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.6K Security
- 240 USG FLEX H Series
- 268 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 386 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 72 Security Highlight
