How could I access to domain shares through IPsec VPN?
Options
Hi,
I'd like to connect "travelling employees" to the local office domain network.
- USG20-VPN device, ZyWALL IPSec VPN client program
- we have a Gateway (supplied by our ISP, it’s a router configured as gateway set to DMZ mode) in front of the ZyXEL USG20 device
- Windows Server 2016 Essential DC, Win10 clients
First I have tried with IKEv1 IPSec connection. Every connecting lights are green but it stops in "Sending Phase2 hash".
Than I've tried IKEv2, everything is fine, all lights are green, VPN is "open", but than nothing happens. I can't connect to shared objects, I couldn't find the local dc or other pc even (IP address or computer name - doesn't matter).
Funny thing, that I succeeded to establish the VPN connection earlier on my home laptop, but I upgraded from win10 home to pro with OS reinstall, after that I couldn't repeat it.
Although, I guess it's rather a server side problem, some setting on the DC...but I'm not an expert at all.
I've tried over many tutorials to set up the VPN again in several variations (made policy route or not, add DNS suffix and dc IP address as DNS or not vice versa), same results.
I would appreciate any help.
Thank you in advance.
I'd like to connect "travelling employees" to the local office domain network.
- USG20-VPN device, ZyWALL IPSec VPN client program
- we have a Gateway (supplied by our ISP, it’s a router configured as gateway set to DMZ mode) in front of the ZyXEL USG20 device
- Windows Server 2016 Essential DC, Win10 clients
First I have tried with IKEv1 IPSec connection. Every connecting lights are green but it stops in "Sending Phase2 hash".
Than I've tried IKEv2, everything is fine, all lights are green, VPN is "open", but than nothing happens. I can't connect to shared objects, I couldn't find the local dc or other pc even (IP address or computer name - doesn't matter).
Funny thing, that I succeeded to establish the VPN connection earlier on my home laptop, but I upgraded from win10 home to pro with OS reinstall, after that I couldn't repeat it.
Although, I guess it's rather a server side problem, some setting on the DC...but I'm not an expert at all.
I've tried over many tutorials to set up the VPN again in several variations (made policy route or not, add DNS suffix and dc IP address as DNS or not vice versa), same results.
I would appreciate any help.
Thank you in advance.
0
All Replies
-
@Szatimu
The 2016 AD server is not fully supported by Zywall yet. Zywall can support 2012 AD Server currently.
Charlie
0
Zyxel Employee
Categories
- All Categories
- 384 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 79 Nebula Status and Incidents
- 5.1K Security
- 74 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 332 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 886 Nebula FAQ
- 415 Security FAQ
- 228 Switch FAQ
- 198 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 63 Security Highlight
