Policy route to wan via specified wan
Hello!
We use USG 1100 with 2 wan interface in trunk. Added policy route for ipsec with other office via vpn gates and to wan via trunk.
Now need to add special routes for some device via specified wan. I add policy route, in interface set interface with device, set device address, set next hop is needed wan interface. Destination haven't option wan-zone. So i set any. And device route to wan via specific wan, but don't see remote office via ipsec.
How can i set policy route for the device only to wan zone, to ipsec via standart routes?
We use USG 1100 with 2 wan interface in trunk. Added policy route for ipsec with other office via vpn gates and to wan via trunk.
Now need to add special routes for some device via specified wan. I add policy route, in interface set interface with device, set device address, set next hop is needed wan interface. Destination haven't option wan-zone. So i set any. And device route to wan via specific wan, but don't see remote office via ipsec.
How can i set policy route for the device only to wan zone, to ipsec via standart routes?
0
Comments
-
Hi @alexey,
You have to create another policy route for site to site VPN connection.
e.g.
Incoming interface = ge3
Source = ge3 local lan subnet
Destination = Remote site lan subnet
Next Hop = Site to Site VPN connection.Prioiry = This policy route rule proiority must higher than other policy route0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 147 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight