Manualshelf

User guide

ManualsBrandsWatchguard ManualsComputer equipmentXTM 33
12345678910
2
Property of TheGreenBow Sistech S.A. © 2014
IPsec VPN Router Configuration
Configuration Guide
Table of Contents
1 Introduction ............................................................................................................................................ 3
1.1 Goal of this document.................................................................................................................... 3
1.2 VPN Network topology .................................................................................................................. 3
1.3 WatchGuard XTM 33 Restrictions .................................................................................................. 3
1.4 WatchGuard XTM 33 VPN Gateway ............................................................................................... 3
1.5 WatchGuard XTM 33 VPN Gateway product info .......................................................................... 3
2 WatchGuard XTM 33 VPN configuration ................................................................................................ 4
2.1 Add VPN using Wizard ................................................................................................................... 4
2.2 Add VPN User ................................................................................................................................. 8
3 TheGreenBow IPsec VPN Client configuration ....................................................................................... 9
3.1 VPN Client Phase 1 (IKE) Configuration ......................................................................................... 9
3.2 VPN Client Phase 2 (IPsec) Configuration .................................................................................... 11
3.3 Open IPsec VPN tunnels ............................................................................................................... 11
4 Tools in case of trouble ......................................................................................................................... 12
4.1 A good network analyser: Wireshark ........................................................................................... 12
5 VPN IPsec Troubleshooting ................................................................................................................... 13
5.1 “PAYLOAD MALFORMED” error (wrong Phase 1 [SA]) ................................................................ 13
5.2 “INVALID COOKIE” error .............................................................................................................. 13
5.3 no keystate error ...................................................................................................................... 13
5.4 “received remote ID other than expected” error ........................................................................ 13
5.5 “NO PROPOSAL CHOSEN” error ................................................................................................... 14
5.6 “INVALID ID INFORMATION” error .............................................................................................. 14
5.7 I clicked on “Open tunnel”, but nothing happens. ...................................................................... 14
5.8 The VPN tunnel is up but I can’t ping ! ........................................................................................ 15
6 Contacts ................................................................................................................................................ 16