ZyXEL Communications USG40 User Manual page 936
Zywall/usg series
Hide thumbs
Also See for USG40:
- User manual (742 pages) ,
- Handbook (810 pages) ,
- Reference manual (665 pages)
Table of Contents
Advertisement
• Make sure regular security policies allow traffic between the VPN tunnel and the rest of the
network. Regular security policies check packets the ZyWALL/USG sends before the ZyWALL/USG
encrypts them and check packets the ZyWALL/USG receives after the ZyWALL/USG decrypts
them. This depends on the zone to which you assign the VPN tunnel and the zone from which and
to which traffic may be routed.
• If you set up a VPN tunnel across the Internet, make sure your ISP supports AH or ESP
(whichever you are using).
• If you have the ZyWALL/USG and remote IPSec router use certificates to authenticate each other,
You must set up the certificates for the ZyWALL/USG and remote IPSec router first and make
sure they trust each other's certificates. If the ZyWALL/USG's certificate is self-signed, import it
into the remote IPsec router. If it is signed by a CA, make sure the remote IPsec router trusts
that CA. The ZyWALL/USG uses one of its Trusted Certificates to authenticate the remote
IPSec router's certificate. The trusted certificate can be the remote IPSec router's self-signed
certificate or that of a trusted CA that signed the remote IPSec router's certificate.
• Multiple SAs connecting through a secure gateway must have the same negotiation mode.
The VPN connection is up but VPN traffic cannot be transmitted through the VPN tunnel.
If you have the Configuration > VPN > IPSec VPN > VPN Connection screen's Use Policy
Route to control dynamic IPSec rules option enabled, check the routing policies to see if they
are sending traffic elsewhere instead of through the VPN tunnels.
I uploaded a logo to show in the SSL VPN user screens but it does not display properly.
The logo graphic must be GIF, JPG, or PNG format. The graphic should use a resolution of 103 x 29
pixels to avoid distortion when displayed. The ZyWALL/USG automatically resizes a graphic of a
different resolution to 103 x 29 pixels. The file size must be 100 kilobytes or less. Transparent
background is recommended.
I logged into the SSL VPN but cannot see some of the resource links.
Available resource links vary depending on the SSL application object's configuration.
I cannot download the ZyWALL/USG's firmware package.
The ZyWALL/USG's firmware package cannot go through the ZyWALL/USG when you enable the
anti-virus Destroy compressed files that could not be decompressed option. The ZyWALL/
USG classifies the firmware package as not being able to be decompressed and deletes it.
You can upload the firmware package to the ZyWALL/USG with the option enabled, so you only
need to clear the Destroy compressed files that could not be decompressed option while you
download the firmware package. See
Destroy compressed files that could not be decompressed option.
Chapter 49 Troubleshooting
Section 38.2.1 on page 672
ZyWALL/USG Series User's Guide
936
for more on the anti-virus
- Quick Links:
- Web Configurator
- Web Configurator Access
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
Related Manuals for ZyXEL Communications USG40
Related Products for ZyXEL Communications USG40
- ZyXEL Communications ZYWALL USG 300
- ZyXEL Communications USG-50 - V2.21 ED 1
- ZyXEL Communications USG-100@USG-200 - V2.20 ED 2
- ZyXEL Communications USG-300 - V2.20 ED 2
- ZyXEL Communications ZYWALL USG 20W
- ZyXEL Communications UAG Series
- ZyXEL Communications ZyWALL USG100-Plus
- ZyXEL Communications ZyWALL USG 2000