IPSEC Site-to-Site an Dial-In L2TP simultaneously?
Hi,
my VPN100 is configured to maintain a permanent site-to-site IPSec connection with another site. Works like a charm.
Now I wanted to add L2TP for Dial-In users. Unfortunately, I cannot get it to work, it seems like the VPN100 does not reply to the client. Reading through different forums and blogs, I believe plain IPSec and L2TP over IPSec cannot work simultaneously. Is that correct? If so, what whould you recommend as protocol for Dial-In users on Win 10 - IKEv2? Can that work at the same time as the IKEv1 site-to-site connection? (I would prefer to use the Win integrated VPN client, as this is the only one available when the user logs into the laptop, I believe)
Also, do you have any experience with DNS resolution in that case, as I have had quite cumbersome experiences with DNS via IPSec on Windows 10.
Thanks,
Kind Regards,
Roland
0
Accepted Solution
-
5
Zyxel Employee
All Replies
-
All the client VPN type (IKEv1 with mod-config, IKEv2, L2TP over IPSec, SSL VPN) can work with site-to-site IPsec simultaneously.
All you need is a well IP address space planning and a right routing configuration.
You can refer this post https://businessforum.zyxel.com/discussion/2259/connecitivity-between-multiple-ip-sec-vpn-connections
0 -
-
Cool, thanks to both of you - got it to work! I had to add a registry key as inthat's why it didn't work in Win10 outright.Again, thanks!
0
Master Member
Categories
- All Categories
- 164 Beta Program
- 1.7K Nebula
- 86 Nebula Ideas
- 62 Nebula Status and Incidents
- 4.7K Security
- 236 Security Ideas
- 1.1K Switch
- 50 Switch Ideas
- 908 WirelessLAN
- 27 WLAN Ideas
- 5.3K Consumer Product
- 172 Service & License
- 294 News and Release
- 65 Security Advisories
- 14 Education Center
- 911 FAQ
- 399 Nebula FAQ
- 249 Security FAQ
- 90 Switch FAQ
- 100 WirelessLAN FAQ
- 18 Consumer Product FAQ
- 55 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 68 About Community
- 51 Security Highlight
