[ATP/FLEX] How to Configure Multiple IP Segments Routing in Non-Nebula VPN scenario?
Options

Zyxel_Stanley
Posts: 1,397
Zyxel Employee





To connect remote LANs with non-Nebula IPSEC VPN, you need to set up a VTI interface in "Non-Nebula VPN" setting.
1. Navigate to the Non-Nebula VPN settings and click "IPSec Policy" Setting button.
—> Under VPN tunnel interface, enter a custom IP address for the VPN tunnel.
2. Set up routing policies for your VPN traffic specifying the Intranet IP segments as the source and Peer IP segments as the destination.
Make sure to configure corresponding settings on the peer VPN gateway for traffic routing.
Note: On branch VPN gateway needs to configuring VTI interface and corresponding route rules to routes multiple IP segments in VPN tunnel.
Example on ZyWALL.
1. VTI Interface setting
2. Route rules:
0
Categories
- All Categories
- 434 Beta Program
- 2.7K Nebula
- 174 Nebula Ideas
- 117 Nebula Status and Incidents
- 6.1K Security
- 417 USG FLEX H Series
- 297 Security Ideas
- 1.6K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 43 Wireless Ideas
- 6.7K Consumer Product
- 269 Service & License
- 416 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.1K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 87 Security Highlight