请教：远程办公室的多台电脑通过sygate拨号ADSL上网，访问公司的Netscreen50。测试后，安装了sygate的机器能访问公司的VPN，但其它机器用sygate作网关也能与VPN建立通道，即图标上key出现，但无法ping通，也不能访问。请高手指点，应该如何配置

set auth-server "Local" id 0
set auth-server "Local" server-name "Local"
set auth-server "DefL2TPAuthServer" id 1
set auth-server "DefL2TPAuthServer" account-type l2tp
set auth default auth server "Local"
set clock "timezone" 8
set admin format dos
set admin name "netscreen"
set admin password nGSpODrGGQ0HcCjHrsIBuxMtCMAWRn
set admin user "hnroger" password "nJnIMUriCBgGceCO7sXLvqNtopOfnn" privilege "all"
set admin auth timeout 10
set admin auth server "Local"
set vrouter trust-vr sharable
unset vrouter "trust-vr" auto-route-export
set zone "Trust" vrouter "trust-vr"
set zone "Untrust" vrouter "trust-vr"
set zone "DMZ" vrouter "trust-vr"
set zone "Trust" tcp-rst
set zone "Untrust" block
unset zone "Untrust" tcp-rst
set zone "DMZ" tcp-rst
set zone "MGT" block
set zone "MGT" tcp-rst
set zone Untrust screen icmp-flood
set zone Untrust screen udp-flood
set zone Untrust screen winnuke
set zone Untrust screen port-scan
set zone Untrust screen ip-sweep
set zone Untrust screen tear-drop
set zone Untrust screen syn-flood
set zone Untrust screen ip-spoofing
set zone Untrust screen ping-death
set zone Untrust screen ip-filter-src
set zone Untrust screen land
set zone Untrust screen syn-frag
set zone Untrust screen tcp-no-flag
set zone Untrust screen unknown-protocol
set zone Untrust screen ip-bad-option
set zone Untrust screen ip-record-route
set zone Untrust screen ip-timestamp-opt
set zone Untrust screen ip-security-opt
set zone Untrust screen ip-loose-src-route
set zone Untrust screen ip-strict-src-route
set zone Untrust screen ip-stream-opt
set zone Untrust screen icmp-fragment
set zone Untrust screen icmp-large
set zone Untrust screen syn-fin
set zone Untrust screen fin-no-ack
set zone Untrust screen limit-session source-ip-based
set zone Untrust screen syn-ack-ack-proxy
set zone Untrust screen block-frag
set zone Untrust screen limit-session destination-ip-based
set zone V1-Untrust screen tear-drop
set zone V1-Untrust screen syn-flood
set zone V1-Untrust screen ip-spoofing
set zone V1-Untrust screen ping-death
set zone V1-Untrust screen ip-filter-src
set zone V1-Untrust screen land
set interface "ethernet1" zone "Trust"
set interface "ethernet2" zone "DMZ"
set interface "ethernet3" zone "Untrust"
unset interface vlan1 ip
set interface ethernet1 ip 10.105.1.5/21
set interface ethernet1 nat
set interface ethernet3 ip 61.144.64.47/24
set interface ethernet3 route
unset interface vlan1 bypass-others-ipsec
unset interface vlan1 bypass-non-ip
set interface ethernet1 manage-ip 10.105.1.254
set interface vlan1 ip manageable
unset interface ethernet1 ip manageable
unset interface ethernet2 ip manageable
set interface ethernet3 ip manageable
set interface ethernet3 vip 61.144.64.48
set domain www.gznetscreen.com
set hostname gznetscreen50
set address "Trust" "10.105.1.0" 10.105.1.0 255.255.248.0 "Created by vpn wizard"
set address "Trust" "10.105.1.0/255.255.248.0" 10.105.1.0 255.255.248.0
set address "Trust" "10.105.1.1/255.255.255.255" 10.105.1.1 255.255.255.255
set address "Trust" "10.105.1.58/255.255.255.255" 10.105.1.58 255.255.255.255
set address "Untrust" "10.105.2.0/255.255.255.0" 10.105.2.0 255.255.255.0
set scheduler "ysvpn" recurrent friday start 8:30 stop 17:0
set snmp name "gznetscreen50"
set group address "Trust" "zx_group"
set group address "Trust" "zx_group" add "10.105.1.30/255.255.255.255"
set group address "Trust" "zx_group" add "10.105.1.58/255.255.255.255"
set user "test" uid 3
set user "test" ike-id fqdn "testvpn" share-limit 1
set user "test" type  ike
set user "test" "enable"
set ike gateway "gw_test" dialup "test" Aggr outgoing-interface "ethernet3" preshare "123456789" proposal "pre-g1-des-md5"
set ike gateway "gw_test" nat-traversal udp-checksum
set ike gateway "gw_test" nat-traversal keepalive-frequency 10
set ike policy-checking
set ike respond-bad-spi 1
set vpn "vpn_test" id 5 gateway "gw_test" no-replay tunnel idletime 0 proposal "nopfs-esp-des-md5"
set ike id-mode subnet
set xauth lifetime 480
set xauth default auth server Local
set policy id 0 name "fj" from "Trust" to "Untrust"  "10.105.1.36/255.255.255.255" "Any" "ANY" Permit
set policy id 3 name "tws" from "Trust" to "Untrust"  "10.105.1.37/255.255.255.255" "Any" "ANY" Permit count
set policy id 4 name "yuanjimin" from "Trust" to "Untrust"  "10.105.1.51/255.255.255.255" "Any" "ANY" Permit count
set policy id 5 name "ylz" from "Trust" to "Untrust"  "10.105.1.33/255.255.255.255" "Any" "ANY" Permit count
set policy id 6 name "zhangxu" from "Trust" to "Untrust"  "10.105.1.55/255.255.255.255" "Any" "ANY" Permit count
set policy id 7 name "zhongzhao" from "Trust" to "Untrust"  "10.105.1.30/255.255.255.255" "Any" "ANY" Permit count
set policy id 8 name "zlf" from "Trust" to "Untrust"  "10.105.1.31/255.255.255.255" "Any" "ANY" Permit count
set policy id 10 name "meihl" from "Trust" to "Untrust"  "10.105.1.56/255.255.255.255" "Any" "ANY" Permit count
set policy id 11 name "zhenke" from "Trust" to "Untrust"  "10.105.1.53/255.255.255.255" "Any" "ANY" Permit count
set policy id 12 name "lwc" from "Trust" to "Untrust"  "10.105.1.35/255.255.255.255" "Any" "ANY" Permit count
set policy id 13 name "zyb" from "Trust" to "Untrust"  "10.105.1.34/255.255.255.255" "Any" "ANY" Permit count
set policy id 14 name "chenhao" from "Trust" to "Untrust"  "10.105.1.58/255.255.255.255" "Any" "ANY" Permit count
set policy id 15 from "Trust" to "Untrust"  "10.105.1.32/255.255.255.255" "Any" "ANY" Permit count
set policy id 17 from "Untrust" to "Trust"  "Any" "VIP(61.144.64.48)" "HTTP" Permit log count
set policy id 17 disable
set policy id 20 from "Untrust" to "Trust"  "Dial-Up VPN" "10.105.1.0/255.255.248.0" "ANY" Tunnel vpn "ys" id 9
set policy id 21 from "Untrust" to "Trust"  "Dial-Up VPN" "10.105.1.0/255.255.248.0" "ANY" Tunnel vpn "vpn_test" id 10 log count
unset global-pro policy-manager primary outgoing-interface
unset global-pro policy-manager secondary outgoing-interface
set pki authority default scep mode "auto"
set pki x509 default cert-path "partial"
set dns host schedule 00:00
set vrouter "untrust-vr"
exit
set vrouter "trust-vr"
unset add-default-route
set route 0.0.0.0/0 interface ethernet3 gateway 61.144.64.1
exit

楼上朋友好厉害啊，我什麽时候也能有这样的本领就好了。