Solved

Zyxel P660R and SonicWall Global VPN Client problem

Posted on 2010-08-25
8
1,313 Views
Last Modified: 2012-05-10
Hi There
We have a new Zyxel P660 router and are experiencing problems trying to connect via our Sonicwall GVPN client. We have had limited success by disabling NST traversal on the Peer information page. This was not necessary before and i was wondering if we can change any settings on the Zyxel to allow some other users to gain access.

We have port forwarding enabled for port 500 and 443 but it still does not work.

Any ideas would be appreciated.

Thanks

James
0
Comment
Question by:ilikeulike
  • 5
  • 3
8 Comments
 
LVL 33

Expert Comment

by:digitap
ID: 33522247
You say you have port forwarding enabled...does that mean you have a sonicwall behind the Zyxel?  If you want port forwarding information, here:http://www.fuzeqna.com/sonicwallkb/consumer/kbdetail.asp?kbid=4001If you have a sonicwall, how do you have it configured on the WAN interface, what is the model, are you on enhanced or standard os?
0
 

Author Comment

by:ilikeulike
ID: 33529389
Hi digitap,
Thanks for your response. Yes, we use the Zyxel purely as a router for the Internet traffic, we have a SonicWall 2040 that does our filtering. It worked perfectly before with our old router, but we changed provider and are now using their Zyxel.

The WAN interdace of the Sonicwall is DHCP, picking its settings up from the Zyxel.

We have SonicOS Enhanced 3.1.0.1-62e

Does this help?

James
0
 
LVL 33

Expert Comment

by:digitap
ID: 33532000
Yes.  What I'd recommend is you place the Zyxel in bridge mode and move the public IP to the WAN interface of the sonicwall.  You won't have to mess with trying to get the port forwards correct on the Zyxel.  Here is a link from the vendor's website with steps for this task.

http://www.zyxel.com/web/support_knowledgebase_detail.php?KnowledgeBaseID=4874&pid=20040812093058
0
 

Author Comment

by:ilikeulike
ID: 33594665
Hi Digitap
Thanks for the reply, apologies for not getting back sooner. Do i understand you correctly? Currently the Wan IP address is set to DHCP, so i need to set it back to Static with out public ip address?

With the ZyXel, do i need to clear the LAN DHCP settings, and do i need to clear the NAT Setup?

Thanks

James
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 33

Expert Comment

by:digitap
ID: 33596315
Has your ISP provided you with a static public IP address?  Either way, the first step is to login to the ZyXel and configure it in bridge mode.

P-660R-D1 can support Bridge mode.

Here is the configuration below.
Login WEB GUI -> Network -> WAN -> Internet Connection.
Change the Mode setting to <Bridge>


Once it's in bridge mode, the ZyXel is essentially "invisible" to the sonicwall.  It's job is to bridge the the sonicwall to the Internet.  This means the Sonicwall needs a public IP address on the WAN interface.  If your ISP has provided you with one, then you'll want to configure that manually.  Otherwise, you can configure the WAN interface with DHCP and your ISP will assign it an IP address.
0
 

Author Comment

by:ilikeulike
ID: 33596683
Hi Digitap
We have a static ip address, so i will give that a try this evening and check it over the weekend.

I will let you know how i get on.

James
0
 
LVL 33

Accepted Solution

by:
digitap earned 125 total points
ID: 33596702
Great!  That really does make it easier.  Also, before you get started, you'll need this information so make sure you have it before you begin.  I've made the mistake of waiting and couldn't get a hold of support because it was too late.

Static IP
Subnet Mask
Gateway
Primary DNS
Secondary DNS
0
 
LVL 33

Expert Comment

by:digitap
ID: 33904125
thx for the pts!
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Asymmetric Routing (Firewall) 3 61
Cisco Router 1841 internal memory 2 44
HSRP needed? 4 27
eBGP policy and ACL in interface 7 29
We've been using the Cisco/Linksys RV042 for years as: - an internet Gateway - a site-to-site VPN device - a leased line site-to-site subnet-to-subnet interface (And, here I'm assuming that any RV0xx behaves the same way as an RV042.  So that's …
Secure VPN Connection terminated locally by the Client.  Reason 442: Failed to enable Virtual Adapter. If you receive this error on Windows 8 or Windows 8.1 while trying to connect with the Cisco VPN Client then the solution is a simple registry f…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now