[ATP/FLEX] How to Configure Multiple IP Segments Routing in Non-Nebula VPN scenario?

Zyxel_Stanley
Posts: 1,388
Zyxel Employee





To connect remote LANs with non-Nebula IPSEC VPN, you need to set up a VTI interface in "Non-Nebula VPN" setting.
1. Navigate to the Non-Nebula VPN settings and click "IPSec Policy" Setting button.
—> Under VPN tunnel interface, enter a custom IP address for the VPN tunnel.
2. Set up routing policies for your VPN traffic specifying the Intranet IP segments as the source and Peer IP segments as the destination.
Make sure to configure corresponding settings on the peer VPN gateway for traffic routing.
Note: On branch VPN gateway needs to configuring VTI interface and corresponding route rules to routes multiple IP segments in VPN tunnel.
Example on ZyWALL.
1. VTI Interface setting
2. Route rules:
0
Categories
- All Categories
- 432 Beta Program
- 2.6K Nebula
- 170 Nebula Ideas
- 114 Nebula Status and Incidents
- 6K Security
- 388 USG FLEX H Series
- 294 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 43 Wireless Ideas
- 6.7K Consumer Product
- 267 Service & License
- 412 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight