|reply to StorminNorm |
Re: VPN client from DrayTek
Hi, can you detail your setup on the zywall ?
I've tried to get it to work on my zywall 35 but keep getting:
[ID] : Rule [test] Verifying Remote ID failed:
Recv ID: SINGLE, [192.168.0.2]-[192.168.0.2]
vs. My Remote [0.0.0.0]-[0.0.0.0]
It seems there is no way to configure the Remote ID on the draytek client and for some reason the zywall isn't see 0.0.0.0 as a wildcard !!
For a dynamic IP rule on the ZyWALL, don't attempt to use IP ID - use DNS or email instead (which are just text strings). I have no experience of this client, but this same ID mismatch issue prevents the use of the MS client in Windows XP.
If using certificates, it's best to use the Subject Name / Distinguished Name information from the certificates.
There's more detail on this, including setup details for the ZyXEL / Safenet client, in »ZyWALL 3.64 firmware / ZyWALL VPN client setup
The problem I see with the Draytek client is that you can't configure the ID. It seems to just pick the IP and that's it.
Maybe I missed something though