VPN access problem

Jason210
Jason210 used Ask the Experts™
on
Hi

We have a Zywall USG 300 security device (firewall) at work. I have just finished configuring for it a VPN tunnel using Greenbow IPSec software.

The problem is that it only works when I turn off the Firewall functionality of the USG 300. This indicates that the IKE and IPSec configurations are working correctly, and points to a port problem. I wouldn't have thought a firewall rule was needed, but it seems that it is. I've tried opening ports 500, 50 and 51 but to no avail.

Anyone got any ideas?

Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
I am not a Zywall person but, IPSEC when configured by default is not a Port but is a protocol. Is it possible to open the IPSEC protocol in a Zywall?  Otherwise the only way around this that I am aware of is to us NAT-T and open port 4500 for IPSEC to use.

Hopefully a Zywall person willbe able to shed some light but I thought you could start with this info.

Regards,

3nerds

Author

Commented:
Thanks. Opening port 45000 for NAT translation did the trick.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial