Re: Zywall IPSec VPN Client to Zywall 5 connection

Author	All Replies
superataru join:2004-12-07 07100	reply to vadar007 Re: Zywall IPSec VPN Client to Zywall 5 connection Hi. The built of the channel is a matter of agreements of parameters among the peers. After this: 1. are remote and local overlapping? 2. is local corrisponding to real lan you want to reach from remote? 3. do you allow vpn to lan in the firewall settings? 4. do targets have some firewall stopping incoming traffic? . . . and so on.
	to forum · permalink · · 2009-05-12 03:43:22 ·
vadar007 join:2005-11-28 Irvine, CA	1. are remote and local overlapping? No 2. is local corrisponding to real lan you want to reach from remote? Yes 3. do you allow vpn to lan in the firewall settings? Yes Ports 500 and 4500 (Ingress and Egress) 4. do targets have some firewall stopping incoming traffic? No Even the Xamp Authorization works like a champ.
	to forum · permalink · · 2009-05-15 15:49:29 ·
vadar007 join:2005-11-28 Irvine, CA 2 edits	Okay, found the problem. I did not have rules set for the VPN/LAN and LAN/VPN settings. When I added all services to these I can see the remote LAN devices. I am not comfortable leaving everything open. What services/ports should I leave open if I just want to VNC into my server on the remote LAN?
	to forum · permalink · · 2009-05-15 17:09:29 ·
jdmt Premium join:2002-05-06 Seattle, WA	Leaving these services open should be fine, since only VPN authenticated clients would be able to traverse over the VPN --> LAN connection. You could limit scope of the rule to specific hosts on either end if you wanted to lock it down a little. I do this with my ZyWALL to ZyWALL VPNs, permitting access to server resources only for VPN connected devices. By the way, how exactly did you configure the VPN client? I'm trying to get this to work and the documentation is somewhat thin!
	to forum · permalink · · 2009-06-25 15:35:01 ·
vadar007 join:2005-11-28 Irvine, CA	I referenced the Zywall 5 Support Notes v4.03 (Sept 2007). I also looked at documentation for the GreenBow IPSec VPN client which is very similar to Zywall's. They have a configuration guide for the Zywall 5. Just Google for it...
	to forum · permalink · · 2009-06-27 18:10:55 ·
jdmt Premium join:2002-05-06 Seattle, WA	In case you're interested, the ZyXEL VPN client is actually OEM'd from Green Bow. Not sure if there is any ZyXEL value add...
	to forum · permalink · · 2009-06-28 02:23:20 ·


Wednesday, 09-Dec 19:00:06	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com. page compression OFF