How to establish L2TP tunnel from LAN side
Zyxel_Stanley
Posts: 1,377 
Zyxel Employee
Zyxel Employee
Topology:
Background:
The VPN is a popular function for encrypting packets when transmitting the data.
In ZyWALL/USG/ATP’s current design, when the VPN interface is based on WAN1 interface, VPN request must coming from WAN1 interface (interface restricted), otherwise the request will be denied. (e.g. VPN connection came from LAN1)
However, in some scenarios, users may need to make the VPN tunnel from not only the WAN side but also LAN side.
This scenario is also supported by ZyWALL/USG/ATP. Users can follow the operating procedure below to turn off the VPN interface restriction so that the VPN connection can come from both WAN/LAN side afterward.
USG Firmware Version:
4.32 or above
USG configuration:
Router> configure terminal
Router(config)# vpn-interface-restriction deactivate
Router(config)# write
Reboot device.
Router(config)# vpn-interface-restriction deactivate
Router(config)# write
Reboot device.
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 145 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 239 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 384 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight