IPSEC Site-to-Site an Dial-In L2TP simultaneously?
Hi,
my VPN100 is configured to maintain a permanent site-to-site IPSec connection with another site. Works like a charm.
Now I wanted to add L2TP for Dial-In users. Unfortunately, I cannot get it to work, it seems like the VPN100 does not reply to the client. Reading through different forums and blogs, I believe plain IPSec and L2TP over IPSec cannot work simultaneously. Is that correct? If so, what whould you recommend as protocol for Dial-In users on Win 10 - IKEv2? Can that work at the same time as the IKEv1 site-to-site connection? (I would prefer to use the Win integrated VPN client, as this is the only one available when the user logs into the laptop, I believe)
Also, do you have any experience with DNS resolution in that case, as I have had quite cumbersome experiences with DNS via IPSec on Windows 10.
Thanks,
Kind Regards,
Roland
0
Accepted Solution
-
5
All Replies
-
All the client VPN type (IKEv1 with mod-config, IKEv2, L2TP over IPSec, SSL VPN) can work with site-to-site IPsec simultaneously.
All you need is a well IP address space planning and a right routing configuration.
You can refer this post https://businessforum.zyxel.com/discussion/2259/connecitivity-between-multiple-ip-sec-vpn-connections
0 -
-
Cool, thanks to both of you - got it to work! I had to add a registry key as inthat's why it didn't work in Win10 outright.Again, thanks!
0 -
5
Categories
- All Categories
- 426 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 5.9K Security
- 343 USG FLEX H Series
- 288 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 261 Service & License
- 404 News and Release
- 86 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 82 Security Highlight