Accessing another site from mobile tunnel
Options
I have a site to site VPN setup between two USG20-VPN's.
Headquarters - 10.72.177.0/24
Branch Office - 10.72.188.0/24
I also host a VPN for mobile users at each office.
Mobile to Headquarters Tunnel - 10.72.10.0/24
Mobile to Branch Office Tunnel - 10.72.20.0/24
Computers in each office can reach each other (10.72.177.0 - 10.72.188.0), but I would like a mobile laptop connected to the Branch Office Tunnel on 10.72.20.0 to be able to reach computers on the Headquarters network (10.72.177.0).
Thank you.
Headquarters - 10.72.177.0/24
Branch Office - 10.72.188.0/24
I also host a VPN for mobile users at each office.
Mobile to Headquarters Tunnel - 10.72.10.0/24
Mobile to Branch Office Tunnel - 10.72.20.0/24
Computers in each office can reach each other (10.72.177.0 - 10.72.188.0), but I would like a mobile laptop connected to the Branch Office Tunnel on 10.72.20.0 to be able to reach computers on the Headquarters network (10.72.177.0).
Thank you.
0
All Replies
-
Hi @Marcusgtd
You can use policy route to realized your scenario and both of device must be Site to Site VPN tunnel.
(10.72.177.0/24)HQ=====[VPN]=====Branch(10.72.188.0/24)------L2TP(10.72.20.0/24)
After client established tunnel to branch will received 10.72.20.0/24 IP address. And then add policy route on both of device.
On Branch device add policy route:
On HQ device add policy route:
0
Zyxel Employee
Categories
- All Categories
- 384 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 79 Nebula Status and Incidents
- 5.1K Security
- 70 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 332 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 884 Nebula FAQ
- 415 Security FAQ
- 226 Switch FAQ
- 198 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 63 Security Highlight
