Usg110 to usg60 ipsec Tunnel
Freshman Member
Hello i m try in to setup an ipsec Tunnel. From A Usg110 with A static Adress to A usg60 which is behind a nat Router with A dynamic Adress.
Is this even possible? Can i use dyndns on the side of the dynamic Adress for the NAT Router or the usg60?
If this would Work i could build A site to. Site Tunnel.
If not can i build A site with dynamic peer Tunnel?
0
Comments
-
If USG60W is behind NAT,
Here the recommend solution,
- On the NAT router need to configure port forwarding UDP500,UDP4500 mapping to WAN IP of USG. On USG110, you can use site-to-site with static IP or DDNS for USG60W.
- If you cannot configure the NAT router. Then, on USG110 using site-to-site with dynamic peer for USG60W.
Note: Please configure the IPSec Phase 1 local id on USG60W to type DNS and give a
unique string as id. So that USG110 can easy identify the peer.
1
Master Member
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 144 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 239 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 384 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight
