Is it possible to add several subnet in a remote policy?
Freshman Member
Hello.
I have a tunnel, between a zyxel usg 20 and a sonicwall firewalls. The tunnel is up. What I need to do next is to allow zyxel side to access several subnets on the sonicwall side. As I see, when defining the VPN connection, in the remote policy section, I can choose only one subnet. It is not possible to choose, for example, a group objects which contains several subnets.
Does anyone know how to bypass this issue and configure several subnets on a VPN tunnel on a zyxel usg?
Thank you in advance!
Accepted Solution
-
Hi @alexia_net
You can base on same VPN phase 1 profile to create multiple phase 2 profile for each subnet.
Both VPN phase 2 profile based on same phase 1 VPN Gateway, one is for remote subnet 192.168.20.1/24, another is for subnet 192.168.10.0/24
5
Zyxel Employee
All Replies
-
Hi @alexia_net
Welcome to the forum :)
You can see a procedure how to do it on the following document:
https://www.conetec.su/upload/iblock/ed1/ZyWALL_USG_ZLD.pdf
Page 44
I hope it helps
Regards
1 -
Hi @alexia_net
You can base on same VPN phase 1 profile to create multiple phase 2 profile for each subnet.
Both VPN phase 2 profile based on same phase 1 VPN Gateway, one is for remote subnet 192.168.20.1/24, another is for subnet 192.168.10.0/24
5 -
Hello Cooldia,
This is what I have done as well. :)
Thank you all for your answers.
Best regards!
0
Master Member
Categories
- All Categories
- 431 Beta Program
- 2.6K Nebula
- 164 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 364 USG FLEX H Series
- 292 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 262 Service & License
- 407 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight
