Usg110 to usg60 ipsec Tunnel
Hello i m try in to setup an ipsec Tunnel. From A Usg110 with A static Adress to A usg60 which is behind a nat Router with A dynamic Adress.
Is this even possible? Can i use dyndns on the side of the dynamic Adress for the NAT Router or the usg60?
If this would Work i could build A site to. Site Tunnel.
If not can i build A site with dynamic peer Tunnel?
0
Comments
-
If USG60W is behind NAT,
Here the recommend solution,
- On the NAT router need to configure port forwarding UDP500,UDP4500 mapping to WAN IP of USG. On USG110, you can use site-to-site with static IP or DDNS for USG60W.
- If you cannot configure the NAT router. Then, on USG110 using site-to-site with dynamic peer for USG60W.
Note: Please configure the IPSec Phase 1 local id on USG60W to type DNS and give a
unique string as id. So that USG110 can easy identify the peer.
1
Master Member
Categories
- 6.8K All Categories
- 1.3K Nebula
- 26 Nebula Ideas
- 27 Nebula Status and Incidents
- 3.8K Security
- 199 Security Ideas
- 690 Switch
- 24 Switch Ideas
- 564 WirelessLAN
- 8 WLAN Ideas
- 4.5K Consumer Product
- 95 Service & License
- 211 New and Release
- 34 Security Advisories
- 476 FAQ
- 216 Nebula FAQ
- 106 Security FAQ
- 72 Switch FAQ
- 66 WirelessLAN FAQ
- Documents
- 20 Nebula Monthly Express
- 40 About Community
- 29 Security Highlight
