VPN L2TP AND CLOUD AUTHETICATION USERS

snowbikesnowbike Member Posts: 6  Freshman Member
HI all
i have upgraded my nsg50 to latest firmware..
i have created a new vpn user in cloud user, i have setup l2tp config on nsg (preshared, subnet etc)
i have created a new connection on my win10 laptop.. it doesn't work, i receive an error with this connection..
on gateway logs i receive this error: [ID] : Tunnel [L2TP_Client_VPN] Phase 2 Local policy mismatch
how can i resolve this issue??
thanks
«1

Comments

  • iversivers Member Posts: 8  Freshman Member
    @snowbike
    I can dial-up the tunnel like below, is your NSG use the private IP and locate behind the NAT server?


  • snowbikesnowbike Member Posts: 6  Freshman Member
    hi ivers..
     yes my nsg use private ip ... on internet router i have created a dmz from router to my nsg.. so all port are redirect on my private ip.. 
    on security config in client side, i tryed all possible configuration but it doesn't work
  • Nebula_ChrisNebula_Chris Zyxel Official Agent Posts: 91  mod
    edited July 25, 2018 4:12PM
    Hello @snowbike
    In current stage we do not support the scenario that NSG behind the NAT server, however, don't worry we got the workaround for it. I will PM you.
    We'll soon have the feature enhancement on this part, as well!
  • snowbikesnowbike Member Posts: 6  Freshman Member
    thanks for all Nebula_Chris
  • snowbikesnowbike Member Posts: 6  Freshman Member
    @Nebula_Chris
    can you please email me a list of nebula command cli??
    thanks
  • Nebula_ChrisNebula_Chris Zyxel Official Agent Posts: 91  mod
    @snowbike
    We actually don't have the CLI list, the L2TP case is just the workaround to support this scenario temporary it's not a long term solution, but if you have any application that NCC cannot do then it's welcome to have the converstaion in here or go to the support channel.
    We'll also listen to what the customer need and have the future improvement on those limitations. :) 

    BTW, is your L2TP can work now ?
  • snowbikesnowbike Member Posts: 6  Freshman Member
    no chris, but is not urgent, so i think that i wait future improvement.. thanks a lot fro support  
  • Nebula_ChrisNebula_Chris Zyxel Official Agent Posts: 91  mod
    edited July 27, 2018 9:07AM
    Hello @snowbike
    I have private message you on yesterday and have attached the relevant document, too.
    Have you receive it?
    Please private message me If you have encounter any difficulty with the SOP.
  • Nicola_PNicola_P Member Posts: 3
    Hello I have the same scenario, can I have more info on the workaroud?
  • Nebula_ChrisNebula_Chris Zyxel Official Agent Posts: 91  mod
    Hello @Nicola_P
    Sure! I will PM you, please check your inbox~  :3
«1
Sign In to comment.