Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Zyxel P660R and SonicWall Global VPN Client problem

Posted on 2010-08-25
8
Medium Priority
?
1,396 Views
Last Modified: 2012-05-10
Hi There
We have a new Zyxel P660 router and are experiencing problems trying to connect via our Sonicwall GVPN client. We have had limited success by disabling NST traversal on the Peer information page. This was not necessary before and i was wondering if we can change any settings on the Zyxel to allow some other users to gain access.

We have port forwarding enabled for port 500 and 443 but it still does not work.

Any ideas would be appreciated.

Thanks

James
0
Comment
Question by:ilikeulike
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
8 Comments
 
LVL 33

Expert Comment

by:digitap
ID: 33522247
You say you have port forwarding enabled...does that mean you have a sonicwall behind the Zyxel?  If you want port forwarding information, here:http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=4001If you have a sonicwall, how do you have it configured on the WAN interface, what is the model, are you on enhanced or standard os?
0
 

Author Comment

by:ilikeulike
ID: 33529389
Hi digitap,
Thanks for your response. Yes, we use the Zyxel purely as a router for the Internet traffic, we have a SonicWall 2040 that does our filtering. It worked perfectly before with our old router, but we changed provider and are now using their Zyxel.

The WAN interdace of the Sonicwall is DHCP, picking its settings up from the Zyxel.

We have SonicOS Enhanced 3.1.0.1-62e

Does this help?

James
0
 
LVL 33

Expert Comment

by:digitap
ID: 33532000
Yes.  What I'd recommend is you place the Zyxel in bridge mode and move the public IP to the WAN interface of the sonicwall.  You won't have to mess with trying to get the port forwards correct on the Zyxel.  Here is a link from the vendor's website with steps for this task.

http://www.zyxel.com/web/support_knowledgebase_detail.php?KnowledgeBaseID=4874&pid=20040812093058
0
Looking for the Wi-Fi vendor that's right for you?

We know how difficult it can be to evaluate Wi-Fi vendors, so we created this helpful Wi-Fi Buyer's Guide to help you find the Wi-Fi vendor that's right for your business! Download the guide and get started on our checklist today!

 

Author Comment

by:ilikeulike
ID: 33594665
Hi Digitap
Thanks for the reply, apologies for not getting back sooner. Do i understand you correctly? Currently the Wan IP address is set to DHCP, so i need to set it back to Static with out public ip address?

With the ZyXel, do i need to clear the LAN DHCP settings, and do i need to clear the NAT Setup?

Thanks

James
0
 
LVL 33

Expert Comment

by:digitap
ID: 33596315
Has your ISP provided you with a static public IP address?  Either way, the first step is to login to the ZyXel and configure it in bridge mode.

P-660R-D1 can support Bridge mode.

Here is the configuration below.
Login WEB GUI -> Network -> WAN -> Internet Connection.
Change the Mode setting to <Bridge>


Once it's in bridge mode, the ZyXel is essentially "invisible" to the sonicwall.  It's job is to bridge the the sonicwall to the Internet.  This means the Sonicwall needs a public IP address on the WAN interface.  If your ISP has provided you with one, then you'll want to configure that manually.  Otherwise, you can configure the WAN interface with DHCP and your ISP will assign it an IP address.
0
 

Author Comment

by:ilikeulike
ID: 33596683
Hi Digitap
We have a static ip address, so i will give that a try this evening and check it over the weekend.

I will let you know how i get on.

James
0
 
LVL 33

Accepted Solution

by:
digitap earned 500 total points
ID: 33596702
Great!  That really does make it easier.  Also, before you get started, you'll need this information so make sure you have it before you begin.  I've made the mistake of waiting and couldn't get a hold of support because it was too late.

Static IP
Subnet Mask
Gateway
Primary DNS
Secondary DNS
0
 
LVL 33

Expert Comment

by:digitap
ID: 33904125
thx for the pts!
0

Featured Post

Manage your data center from practically anywhere

The KN8164V features HD resolution of 1920 x 1200, FIPS 140-2 with level 1 security standards and virtual media transmissions at twice the speed. Built for reliability, the KN series provides local console and remote over IP access, ensuring 24/7 availability to all servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've written this article to illustrate how we can implement a Dynamic Multipoint VPN (DMVPN) with both hub and spokes having a dynamically assigned non-broadcast multiple-access (NBMA) network IP (public IP). Here is the basic setup of DMVPN Pha…
Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question