Connect CentOs To Zyxel USG 100 via VPN IPSEC
Hello I have Zyxel USG 100 and I need to connect my ContOS.
I have a many windows 10 connected to Zyxel with this software: "ZyWALL IPSec VPN Client" and it's works.
How I can connect my centOS ?
I no have GUI on CentOS. Only CLI.
I connect windows client with IPSEC IKEv1 whit password.
thanks
I have a many windows 10 connected to Zyxel with this software: "ZyWALL IPSec VPN Client" and it's works.
How I can connect my centOS ?
I no have GUI on CentOS. Only CLI.
I connect windows client with IPSEC IKEv1 whit password.
thanks
0
Accepted Solution
-
Here you are, https://gist.github.com/D4R4/ed236da8e7a1e72fe142f1d7d10870fe
Good luck.0
All Replies
-
I thought you should use L2TP instead of IPSec Client on CentOS.
It seem they will work with xl2tp,ppp package. And you don't need GUI as well.0 -
Hello, thank you for response.
Con you give me an installation and configure procedure ?
0 -
Here you are, https://gist.github.com/D4R4/ed236da8e7a1e72fe142f1d7d10870fe
Good luck.0 -
Thanks you very much.
Can i implement this guide on my CentOS without username e password for VPN ?
I have only PSK and server IP
0 -
In line 56, you might declare PSK for varaibles "VPN_IPSEC_PSK" first, I'll try that as well .0
-
Ok. I try and give you a response.
Have a good day.0 -
Hello, I have tried only today.i have configured all from your url. I no have insered two lines because I no have this.
name e password
when up the vpn I received this info:strongswan up myvpninitiating Main Mode IKE_SA myvpn[2] to x.x.x.xgenerating ID_PROT request 0 [ SA V V V V V ]sending packet: from 192.168.1.22[500] to x.x.x.x[500] (212 bytes)received packet: from x.x.x.x[500] to 192.168.1.22[500] (102 bytes)parsed INFORMATIONAL_V1 request 208613349 [ N(NO_PROP) ]received NO_PROPOSAL_CHOSEN error notifyestablishing connection 'myvpn' failed0 -
Sorry, I forget to update my test result.
I can connect via CentOS CLI. find following screenshot.
Here are my Suite:
Phase1: LocalID: Interface IP , Main mode , AES128-SHA1 ,DH2, No NAT-T,No DPD,No X-Auth
Phase2: Full tunnel, ESP, Transport, AES128-SHA1 ,DH2
0
Categories
- All Categories
- 347 Beta Program
- 2.1K Nebula
- 114 Nebula Ideas
- 77 Nebula Status and Incidents
- 5K Security
- 44 USG FLEX H Series
- 246 Security Ideas
- 1.2K Switch
- 65 Switch Ideas
- 901 WirelessLAN
- 33 WLAN Ideas
- 5.8K Consumer Product
- 204 Service & License
- 326 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.8K FAQ
- 831 Nebula FAQ
- 401 Security FAQ
- 219 Switch FAQ
- 190 WirelessLAN FAQ
- 45 Consumer Product FAQ
- 136 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 71 About Community
- 61 Security Highlight