Table of Contents
Advertisement
www.zyxel.com
What Could Go Wrong?
If you see [alert] log message such as below, please check ZyWALL/USG L2TP
Allowed User or User/Group Settings. Windows 10 users must use the same
Username and Password as configured in ZyWALL/USG to establish the L2TP VPN.
If you see [info] or [error] log message such as below, please check ZyWALL/USG
Phase 1 Settings. Windows 10 operating system users must use the same Pre-
Shared Key as configured in ZyWALL/USG to establish the IKE SA.
If you see that Phase 1 IKE SA process has completed but still get [info] log
message as below, please check ZyWALL/USG Phase 2 Settings. ZyWALL/USG unit
must set correct Local Policy to establish the IKE SA.
Ensure that the L2TP Address Pool does not conflict with any existing LAN1, LAN2,
DMZ, or WLAN zones, even if they are not in use.
If you cannot access devices in the local network, verify that the devices in the
local network set the USG's IP as their default gateway to utilize the L2TP tunnel.
Make sure the ZyWALL/USG units' security policies allow IPSec VPN traffic. IKE uses
UDP port 500, AH uses IP protocol 51, and ESP uses IP protocol 50.
296/810
Advertisement
Table of Contents
