我有一台 TP-Link MR6400 路由器,我正尝试通过 IPSec VPN 将其连接到我们的 Azure 环境。问题是它永远无法连接。
设置如下 -
Azure 连接设置
Use Azure Private IP Address: Disabled
BGP: Disabled
IPSec /IKE Policy: custom
Phase 1: AES256 SHA1 DHGroup2048
Phase 2: AES256 SHA1 PFS2048
TP-Link IPSec VPN 设置
IPSec connection name: MattHome
Remote IPSec Gateway (URL): 20.26... (public IP of Azure gateway)
Tunnel access from local IP addresses: subnet address
IP Address for VPN: 192.168.1.0
Subnet Mask: 255.255.255.0
Tunnel access from remote IP addresses: subnet address
IP Address for VPN: 10.1.0.0
Subnet Mask: 255.255.0.0
Key exchange method: AUto (IKE)
Authentication Method: Pre-Shared Key
Pre-Shared Key: abc123
Perfect Forward Secrecy: Enable
==Phase 1==
Mode: Main
Local Identifier Type: Local Wan IP
Remote Identifier Type: Remote Wan IP
Encryption Algorithm: AES - 256
Integrity Algorithm: SHA1
Diffie-Hellman Group for Key Exchange: 2048bit
Key Life Time(Seconds): 3600
==Phase 2==
Encryption Algorithm: AES - 256
Integrity Algorithm: SHA1
Diffie-Hellman Group for Key Exchange: 2048bit
Key Life Time(Seconds):3600
更新
我尝试将 DrayTek(非 4G)连接到 VPN,但在 SysLog 中收到错误
[IPSEC][L2L][1:Azure][@0.0.0.0]网络错误:没有到对等方的路由
在我看来,这听起来像是 Azure 中的一个问题......