VPN Site to Site + Client to Site

nesh
nesh Posts: 3  Freshman Member
edited April 2021 in Security
Hi, i have a USG60 firewall with a vpn site to site configured and it works well. Now i have to configure a new L2tp/ipsec for many Windows PCs using the integrated client. Do i have to create another ipsec gateway or edit the existent gateway used for site to site changing the mode from "site to site" to "remote access (server role)"?
I've already tried adding a new gateway but i've got an error in the windows client, and in the firewall log screen i've got a "Remote IP mistmatch" error with the name of the site to site. Maybe some conflict between vpns configurations?

All Replies

  • Zyxel_Stanley
    Zyxel_Stanley Posts: 1,379  Zyxel Employee
    100 Answers 1000 Comments Friend Collector Seventh Anniversary
    Hi @nesh
    The L2TP connection should be a dynamic rule. So that’s why your connection will fail.
    You have to add a new L2TP setting for your L2TP connection.
    You can reference to FAQ and create a L2TP rule on your device.