Hi
I have tried to configure a VPN from my RB450G v4.11 to a Trustgate 160 Firewall using this guide witch is for a Zywall and have just changed the required configurations so that the matched in moth ends.
http://www.potato-people.com/blog/2009/ ... -routeros/
The Tunnel is up running but I have no traffic thru it.
And since I am 100% sure that everything is configured right in the Trustgate the problem most bi in the RB.
I can also see in the Trustgate management that its transmitting traffic thru the VPN Tunnel but has received nothing.
So I must assume that it’s a routing problem that the RB doesn’t know how to route the traffic.
Does anyone have experience making a site 2 site VPN to other firewalls and know where the problem can be ?
My Local network on the RB is : 192.168.200.0/24
And on the Trustgate its : 192.168.10.0/24
Re: Site 2 Site VPN from RB to other Router (Routing problem
Senyor you must traverse in nat and please post post your current setup lots of people here will help you.Hi
I have tried to configure a VPN from my RB450G v4.11 to a Trustgate 160 Firewall using this guide witch is for a Zywall and have just changed the required configurations so that the matched in moth ends.
http://www.potato-people.com/blog/2009/ ... -routeros/
The Tunnel is up running but I have no traffic thru it.
And since I am 100% sure that everything is configured right in the Trustgate the problem most bi in the RB.
I can also see in the Trustgate management that its transmitting traffic thru the VPN Tunnel but has received nothing.
So I must assume that it’s a routing problem that the RB doesn’t know how to route the traffic.
Does anyone have experience making a site 2 site VPN to other firewalls and know where the problem can be ?
My Local network on the RB is : 192.168.200.0/24
And on the Trustgate its : 192.168.10.0/24
Re: Site 2 Site VPN from RB to other Router (Routing problem
Hi
My configs is mate like then following
192.168.200.0/24 ------- RB450G ---------- Internet ---------- Trustgate 160 ------- 192.168.10.0/24
/ip ipsec policy
add action=encrypt comment="" disabled=no dst-address=192.168.10.0/24:any \
ipsec-protocols=esp level=require priority=0 proposal=default protocol=\
all sa-dst-address=95.154.16.174 sa-src-address=95.154.16.242 \
src-address=192.168.200.0/24:any tunnel=yes
/ip ipsec peer
add address=95.154.16.174/32:500 auth-method=pre-shared-key comment="" \
dh-group=modp1024 disabled=no dpd-interval=disable-dpd \
dpd-maximum-failures=1 enc-algorithm=des exchange-mode=main \
generate-policy=no hash-algorithm=md5 lifebytes=0 lifetime=8h \
nat-traversal=no proposal-check=obey secret=12345678 \
send-initial-contact=yes
/ip firewall nat
add action=accept chain=srcnat comment="VPN til Gidion" disabled=no \
dst-address=192.168.10.0/24 src-address=192.168.200.0/24
My configs is mate like then following
192.168.200.0/24 ------- RB450G ---------- Internet ---------- Trustgate 160 ------- 192.168.10.0/24
/ip ipsec policy
add action=encrypt comment="" disabled=no dst-address=192.168.10.0/24:any \
ipsec-protocols=esp level=require priority=0 proposal=default protocol=\
all sa-dst-address=95.154.16.174 sa-src-address=95.154.16.242 \
src-address=192.168.200.0/24:any tunnel=yes
/ip ipsec peer
add address=95.154.16.174/32:500 auth-method=pre-shared-key comment="" \
dh-group=modp1024 disabled=no dpd-interval=disable-dpd \
dpd-maximum-failures=1 enc-algorithm=des exchange-mode=main \
generate-policy=no hash-algorithm=md5 lifebytes=0 lifetime=8h \
nat-traversal=no proposal-check=obey secret=12345678 \
send-initial-contact=yes
/ip firewall nat
add action=accept chain=srcnat comment="VPN til Gidion" disabled=no \
dst-address=192.168.10.0/24 src-address=192.168.200.0/24
Who is online
Users browsing this forum: GoogleOther [Bot] and 42 guests