• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1420
  • Last Modified:

Zyxel P660R and SonicWall Global VPN Client problem

Hi There
We have a new Zyxel P660 router and are experiencing problems trying to connect via our Sonicwall GVPN client. We have had limited success by disabling NST traversal on the Peer information page. This was not necessary before and i was wondering if we can change any settings on the Zyxel to allow some other users to gain access.

We have port forwarding enabled for port 500 and 443 but it still does not work.

Any ideas would be appreciated.

Thanks

James
0
ilikeulike
Asked:
ilikeulike
  • 5
  • 3
1 Solution
 
digitapCommented:
You say you have port forwarding enabled...does that mean you have a sonicwall behind the Zyxel?  If you want port forwarding information, here:http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=4001If you have a sonicwall, how do you have it configured on the WAN interface, what is the model, are you on enhanced or standard os?
0
 
ilikeulikeAuthor Commented:
Hi digitap,
Thanks for your response. Yes, we use the Zyxel purely as a router for the Internet traffic, we have a SonicWall 2040 that does our filtering. It worked perfectly before with our old router, but we changed provider and are now using their Zyxel.

The WAN interdace of the Sonicwall is DHCP, picking its settings up from the Zyxel.

We have SonicOS Enhanced 3.1.0.1-62e

Does this help?

James
0
 
digitapCommented:
Yes.  What I'd recommend is you place the Zyxel in bridge mode and move the public IP to the WAN interface of the sonicwall.  You won't have to mess with trying to get the port forwards correct on the Zyxel.  Here is a link from the vendor's website with steps for this task.

http://www.zyxel.com/web/support_knowledgebase_detail.php?KnowledgeBaseID=4874&pid=20040812093058
0
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

 
ilikeulikeAuthor Commented:
Hi Digitap
Thanks for the reply, apologies for not getting back sooner. Do i understand you correctly? Currently the Wan IP address is set to DHCP, so i need to set it back to Static with out public ip address?

With the ZyXel, do i need to clear the LAN DHCP settings, and do i need to clear the NAT Setup?

Thanks

James
0
 
digitapCommented:
Has your ISP provided you with a static public IP address?  Either way, the first step is to login to the ZyXel and configure it in bridge mode.

P-660R-D1 can support Bridge mode.

Here is the configuration below.
Login WEB GUI -> Network -> WAN -> Internet Connection.
Change the Mode setting to <Bridge>


Once it's in bridge mode, the ZyXel is essentially "invisible" to the sonicwall.  It's job is to bridge the the sonicwall to the Internet.  This means the Sonicwall needs a public IP address on the WAN interface.  If your ISP has provided you with one, then you'll want to configure that manually.  Otherwise, you can configure the WAN interface with DHCP and your ISP will assign it an IP address.
0
 
ilikeulikeAuthor Commented:
Hi Digitap
We have a static ip address, so i will give that a try this evening and check it over the weekend.

I will let you know how i get on.

James
0
 
digitapCommented:
Great!  That really does make it easier.  Also, before you get started, you'll need this information so make sure you have it before you begin.  I've made the mistake of waiting and couldn't get a hold of support because it was too late.

Static IP
Subnet Mask
Gateway
Primary DNS
Secondary DNS
0
 
digitapCommented:
thx for the pts!
0

Featured Post

Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

  • 5
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now