Ered  Freshman Member

Hello, @Zyxel_Charlie! In the process of communicating with technical support, it was revealed that there is a problem with v4.35 firmware. I was recommended to upgrade it to version V4.35 (AAKZ.3) ITS-WK13-r92843. Which I did. But this did not solve the problem. In support of provided packet capture and updated…

It is resolved. The problem was user properties.

Hi warwickt! I also tried using PAP for TEST. With technical support, we communicate slowly). If there is any result, I will definitely publish it here. Thanks for participating! P.s. There was a problem with the vpn session lifetime, I created a separate question. You may be interested.There was a problem with the vpn…

In L2tp vpn? - Didn't work

Hi warwickt, i will try to answer without repeating the same actions over and over. PAP and MS-Chapv2 I have 2 client connections: 1) With saved local admin and PAP data 2) For ad-users and mschapv2 protocol testVPN was checked through the second connection with mschapv2. But the admin I out of habit connected through the…

Hi warwickt. Of course I tried using different users. Below I will attach the data that you requested. They are attended by admin (local) and testVPN (testVPN@rincom.com) (ad user). And yes, I know that using an admin is a bad idea. I will change after installation is complete. Thanks) debug - I used 2 different…

warwickt, I set up the default method by including group advertising in it. I wrote about this in the last post, look, there is a conclusion from the team. aaa authentication default No. Method =============================================================================== 0 VPNAD 1 local #vpnad = group ad But if this is…

Hi warwickt! Here is our one: PS C:\Users\Ered> Get-ItemProperty -Path HKLM:\SYSTEM\CurrentControlSet\Services\RasMan\Parameters\ AllowL2TPWeakCrypto : 0 AllowPPTPWeakCrypto : 0 KeepRasConnections : 0 Medias : {rastapi} ServiceDll : C:\WINDOWS\System32\rasmans.dll ServiceDllUnloadOnStop : 1 MiniportsInstalled : 65535…

Hi warwickt! I already solved the connection problem. Windows 10 was to blame. The problem was in the registry. Here is my post about it. Now another problem. Only a local user can connect. When connecting AD users, an “invalid log / password” error occurs. I familiarized myself with this topic and implemented the…

warwickt, i solved this problem! The registry key is to blame: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Rasman\Parameters "ProhibitIpSec"=dword:00000001 Deleted it and was able to establish a connection! Unfortunately that's not all. Now I need to organize authentication for domain users and provide access to…

Hi warwickt! Thanks. Zyxel USG Settings L2TP_Gateway_rincom IKE policy: L2TP_Gateway_rincom IKD_ID: 2 negotiation mode: main proposal: 1 encryption: 3des authentication: sha proposal: 2 encryption: des authentication: sha proposal: 3 encryption: 3des authentication: md5 SA lifetime: 86400 key group: group2 NAT traversal:…

Hi warwickt! Embedded client. I tried to connect from different devices located in different networks and knowledge with direct access to the Internet. The same mistake. The client connects, since there were blocking entries in the firewall before the ports were resolved Get-VpnConnection -name "Ered_Test" | Format-List…