Zyxek USG VPN with OpenSwan - can you share working configurations?
I seem to have considerable issues to get a VPN between a Zyxel USG 300 and OpenSwan VPN Server on CentOS to work.
I think I have tried dozens of combinations. The main issue is to find the right encryption/authentication settings between the two VPN servers.
I would appreciate, in case one of you has a working setup, you could share that with me.
Thanks a lot
Dan
I think I have tried dozens of combinations. The main issue is to find the right encryption/authentication settings between the two VPN servers.
I would appreciate, in case one of you has a working setup, you could share that with me.
Thanks a lot
Dan
0
All Replies
-
@grokit
Regarding to your request,
you can check below as your reference.Example on USG:
Example on OpenSwan:
# basic configuration
config setup
charondebug="all"
strictcrlpolicy=no
# uniqueids = no
# Add connections here.
conn Zywall 110
type=tunnel
keyexchange=ikev1
authby=secret
left=192.168.111.20
leftid=192.168.111.20
leftsubnet=172.16.1.0/24
right=192.168.111.51
rightid=0.0.0.0
rightsubnet=192.168.1.0/24
ike=aes-sha-modp1024!
esp=aes-sha-modp1024!
keyingtries=0
ikelifetime=1d
lifetime=8h
dpddelay=30
dpdtimeout=120
dpdaction=restart
auto=route
Charlie0 -
Thanks @Zyxel_Charlie
I got it running in the meantime, but with different setup. It seems to be a bit unstable, though.
I will try your solution as well. I hope it's better :-)
Dan0
Categories
- All Categories
- 347 Beta Program
- 2.1K Nebula
- 114 Nebula Ideas
- 77 Nebula Status and Incidents
- 5K Security
- 44 USG FLEX H Series
- 246 Security Ideas
- 1.2K Switch
- 64 Switch Ideas
- 901 WirelessLAN
- 33 WLAN Ideas
- 5.8K Consumer Product
- 204 Service & License
- 326 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.8K FAQ
- 831 Nebula FAQ
- 401 Security FAQ
- 219 Switch FAQ
- 190 WirelessLAN FAQ
- 45 Consumer Product FAQ
- 136 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 71 About Community
- 61 Security Highlight