Jarno_Smits  Freshman Member

Good Morning Melen, It looke like it has something to do with the certificate / Enable Extended Authentication Protocol I deleted the profile / Certificate from my iphone and configured manualy the VPN. I changed from certificate to Pre-shared key, but still it didn't work, the same errors, then i disabled the "Enable…

Hi Melen, i used the provisioning script, and downloaded the profile and certificate to the IPhone by pressing the IKEv2 button at the login page of the ATP in safari on the Iphone. I will try tomorrow tonmake a manual login to test. kind regards, Jarno

Hi Peter, No, when changing Domain name/ IPv4 to 0.0.0.0 still got the same error in de debug logging.

Hello Melen, Thank you for the feedback, i changed the phase 1 and 2 settings as described in the document, but still the same issue. I also created a new certificate wit the WAN IP, and changed the setting to use the WAN IP instead but thas also don't make any diferense. So I changed it but to the old settings with the…

Hi Peter, i searched for strongswan VPN client in the appstore, i only found Brooog IKEv2 instaled it, but here i can't use the certificate , so maybe i'm doing something wrong. It is very strange, maybe more people are reading this problem on the forum, so i'm courious if more people got the same issue when using a ATPxxx…

Yes certificate is self signed and imported to the iphone, i already created a new certificate and imported it, but the same problem. for testing also disconected the other site to site vpn's and the VPN for the laptop, but stil no connection, every time the Peer ID mismatch, very strange can't find the root cause, it…

Hi Peter, It is already on "ANY" see screenshot below, i already found a topic online about this, but it doesn't solve my problem.

Hello James, I tried this procedure already, i did it again exactly as you descriped, see below the messages i get from the Zywall: ZyWALL 110> atcd 1Change Boot Number=1 ZyWALL 110> atkz -f -l 192.168.1.1 -f -l 192.168.1.1OK ZyWALL 110> atgof Booting...mount: wrong fs type, bad option, bad superblock on /dev/sda4,…

hello James, Sorry for the delayed answer, i also tried to upload the .db file in the simalair way, but still no success, almost every time i get the message that if a file is uploaded that the format is wrong?? that it must be binary?? I'm using the ftp function from Windows 11 in the command prompt, as descriped in the…

Hello Peter, Thank you for the 4.10 firmware, i tried to upload it into the zywall, but still after the reboot i got the same error messages. I'm not sure what is the right procedure now. The steps i did to upload the firmware: - first i selected a image with command atcd 1 ( for image 1) - rebooted the device with…

good morning, i tried already the 20 second reset procedure, but without any success.. Also i disabled the firewall from the pc, one time i got the message that the file transfer with version 4.20 is succeeded, but after the reboot i still get the same messages, after every reboot: Could not write 8 blocks in inode table…

Everyting is working now, I changed the VPN client settings to the certificate authorisation instead of only a key, and now it worsk correct now i'm able when opening a VPN to site 1, to access the clients on site 2, and i have also internet access on the VPN client when the VPN is enabled. Everybody thanks for the fast…

Hi Emily, your solution fixed the issue. the local policy of the vpn client, needed to be changed to ( HOST:0.0.0.0 ) instead of subnet 192.168.1.0/24. I also had a wrong setting in the Policy route of site B. Now when i have a vpn client connection to site 1, i'm able to acces the subnet of site 2 also. Only thing is now,…

the client vpn connection is a ipsec IKEv2 connection. below some screenshots from the policy routes and screenshots from the site to site vpn connection from site 1 and site 2: Site 1(usg210) Policy route: VPN client setup at site1 (usg210): Site1 to site2 vpn settings on the USG210 (site1) Site1 to site2 vpn settings on…

Good moring Jasailafan, Sorry for my delayed answer, I added the rules as descriped in the given documents, but still no connetions from the VPN client connected to site 1 to the site 2 subnet. I also searced the internet and more people having the same issue, also when adding the rules as descriped. Could be the problem…