configuring remote access vpn

Options
Dpj
Dpj Posts: 213 image  Master Member
Zyxel Certified Network Administrator - Nebula Zyxel Certified Network Administrator - Security First Comment Friend Collector
in USG FLEX H Series

When i try to configure an remote access vpn, i get this error:

There were errors saving this configuration.

  • ERR_LOCAL_CERTIFICATE_NAME_UNEXIST

any ideas?

All Replies

  • Lucas_Wilson
    Lucas_Wilson Posts: 14 image  Freshman Member
    Zyxel Certified Network Engineer Level 1 - Nebula First Comment Friend Collector
    edited February 16

    Hi,

    I think I remember having a similar issue before. Have you tried creating a new self-signed certificate for the VPN?

    1. Go to System > Certificate > Add
    2. Name the certificate something… I normally just name it RemoteAccess_VPN
    3. Update the following values, leave all other settings as default
      1. Enter the Host IP Address/Domain Name. This should be, or resolve to, the Public IP of the interface the VPN is configured on.
      2. Extended Key Usage —> Server Authentication
      3. Lifetimes —> 10 year (I think this is optional).
    4. Then, select this certificate from VPN > IPSec VPN > Remote Access VPN > Certificate for VPN Validation > Manual

    That always fixed it for me.

    In most cases, once you create and save the manual certificate, the firewall will accept it. After that, you can switch Certificate Validation back to Auto, and the USG will automatically generate a new certificate for you.

    Hope that helps!

  • Dpj
    Dpj Posts: 213 image  Master Member
    Zyxel Certified Network Administrator - Nebula Zyxel Certified Network Administrator - Security First Comment Friend Collector

    seems working! thx

Categories

Security Help Center

EnglishTiếng ViệtРусскийไทย中文(台灣)