IPSEC Site-to-Site an Dial-In L2TP simultaneously?
Freshman Member
Hi,
my VPN100 is configured to maintain a permanent site-to-site IPSec connection with another site. Works like a charm.
Now I wanted to add L2TP for Dial-In users. Unfortunately, I cannot get it to work, it seems like the VPN100 does not reply to the client. Reading through different forums and blogs, I believe plain IPSec and L2TP over IPSec cannot work simultaneously. Is that correct? If so, what whould you recommend as protocol for Dial-In users on Win 10 - IKEv2? Can that work at the same time as the IKEv1 site-to-site connection? (I would prefer to use the Win integrated VPN client, as this is the only one available when the user logs into the laptop, I believe)
Also, do you have any experience with DNS resolution in that case, as I have had quite cumbersome experiences with DNS via IPSec on Windows 10.
Thanks,
Kind Regards,
Roland
0
Accepted Solution
-
5
Zyxel Employee
All Replies
-
All the client VPN type (IKEv1 with mod-config, IKEv2, L2TP over IPSec, SSL VPN) can work with site-to-site IPsec simultaneously.
All you need is a well IP address space planning and a right routing configuration.
You can refer this post https://businessforum.zyxel.com/discussion/2259/connecitivity-between-multiple-ip-sec-vpn-connections
0 -
-
Cool, thanks to both of you - got it to work! I had to add a registry key as inthat's why it didn't work in Win10 outright.Again, thanks!
0 -
5
Master Member
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 144 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 237 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 384 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight
