What firewall rules are needed to allow L2TP over IPSEC from Windows 11
All Replies
-
and the VPN is by WAN2?
Its possible the Photocopier your pinging only allows from the subnet its in so test to a PC
but if the ping makes it and a reply happens then it should do back to the VPN tunnel.
if you have "Use Policy Route to control dynamic IPSec rules" checked uncheck it
0 -
Earlier you said to disable SNAT on the policy which I did. With the firewall still down, I re-enabled it, and now I have full traffic across the VPN, directory browsing, and pinging the photocopier. It looks like SNAT is needed for the VPN?
0 -
The SNAT will make your traffic come from 192.168.0.254 from the VPN instead of the VPN IP range so if your happy with that.
It is odd that you can't ping with SNAT none as the device will see its from 192.168.50.1 use gateway 192.168.0.254 to send it back.
0
Guru Member
Freshman Member
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 149 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 264 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 41 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight
