Client L2tp connect to Ipsec tunnel on flex200

Options
Hi,
local subnet 192.168.10.0/24
VPN1 site to site remote policy 192.168.192.0/24  Server001 192.168.192.3
VPN2 L2tp over IPsec subnet range 192.168.150.10-192.168.150.15

Local subnet connection with site to site and Server001 OK
Client L2tp connection with remote local subnet OK

Remote L2tp client connection with site to site vpn and Server001 ERROR
Ping 192.168.192.3 failed

Secure policy source l2tp subnet and destination site2site subnet configured.

Help me 


All Replies

  • Zyxel_Jeff
    Zyxel_Jeff Posts: 1,104  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    Options
    Hello @Obat

    Welcome to the Zyxel community. You can add a policy route on USG Flex200 to let L2TP client can access the remote site via the site-to-site VPN tunnel.



    The incoming interface chooses to Tunnel, the member chooses to L2TP user, the Source Address chooses to L2TP IP range, the Next-Hop type chooses to VPN tunnel and choose which VPN tunnel that you would like to access.



    Thanks ;) .
  • Obat
    Obat Posts: 2
    First Comment
    Options
    Hi, with this parameters vpn client lost internet connection and the server on sitetosite vpn tunnel  is unavailable.
    Thank you

  • Zyxel_Jeff
    Zyxel_Jeff Posts: 1,104  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    Options
    Hi @Obat

    May I know whether your problem is resolved yet?
    If still not, please disable "Use Policy Route to control dynamic IPsec rules" option and see whether it is working for you.


    Or, you can provide a remote Web-GUI link to us for further checks.
    I will provide how to configure that setting via private message later.
    Thanks.

Security Highlight