SBG3600 > VPN > Radius not working

When VPN > IPSec > XAUTH > Radius is set the SBG does not send a single packet to the Radius server. At least it looks like that because sniffing at the server's port 1812 doesn't show a single packet.

We also got NWA1123 AC Pro APs connecting to the same Radius server and that works perfectly. The Server receives packets from the APs at port 1812, server answers > connected.

Answers

  • AlfonsoAlfonso Member Posts: 53  Ally Member
    Before authentication, IPSec phases 1 and 2 should complete.

    Try to verify it. 
  • In the meantime I figured out that the SGB ist not using XAUTH at all - no matter what settings are used. It does exactly the same thing when XAUTH is unchecked or XAUTH is checked with either Local DB or Radius.

    I'm testing that with two users, a local one (myname) and an AD / Radius user (my.name). As far as I understand, if XAUTH / Radius is checked, myname should fail because it's a local user - but it still works. On the other hand my.name fails (No CHAP secret found for authenticating my.name) because the SBG ist not asking the Radius server, it's still testing against the local users.

  • Zyxel_VicZyxel_Vic Zyxel Official Agent Posts: 31  mod
    jörg_giencke
    What firmware version are you using? Did you upgrade your SBG3600 firmware to the latest? 

Sign In to comment.