Zyxek USG VPN with OpenSwan - can you share working configurations?
Options
I seem to have considerable issues to get a VPN between a Zyxel USG 300 and OpenSwan VPN Server on CentOS to work.
I think I have tried dozens of combinations. The main issue is to find the right encryption/authentication settings between the two VPN servers.
I would appreciate, in case one of you has a working setup, you could share that with me.
Thanks a lot
Dan
I think I have tried dozens of combinations. The main issue is to find the right encryption/authentication settings between the two VPN servers.
I would appreciate, in case one of you has a working setup, you could share that with me.
Thanks a lot
Dan
0
All Replies
-
@grokit
Regarding to your request,
you can check below as your reference.Example on USG:
Example on OpenSwan:
# basic configuration
config setup
charondebug="all"
strictcrlpolicy=no
# uniqueids = no
# Add connections here.
conn Zywall 110
type=tunnel
keyexchange=ikev1
authby=secret
left=192.168.111.20
leftid=192.168.111.20
leftsubnet=172.16.1.0/24
right=192.168.111.51
rightid=0.0.0.0
rightsubnet=192.168.1.0/24
ike=aes-sha-modp1024!
esp=aes-sha-modp1024!
keyingtries=0
ikelifetime=1d
lifetime=8h
dpddelay=30
dpdtimeout=120
dpdaction=restart
auto=route
Charlie0 -
Thanks @Zyxel_Charlie
I got it running in the meantime, but with different setup. It seems to be a bit unstable, though.
I will try your solution as well. I hope it's better :-)
Dan0
Categories
- All Categories
- 383 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 76 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 209 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 890 Nebula FAQ
- 415 Security FAQ
- 233 Switch FAQ
- 203 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 62 Security Highlight