Usg110 to usg60 ipsec Tunnel
Freshman Member
Hello i m try in to setup an ipsec Tunnel. From A Usg110 with A static Adress to A usg60 which is behind a nat Router with A dynamic Adress.
Is this even possible? Can i use dyndns on the side of the dynamic Adress for the NAT Router or the usg60?
If this would Work i could build A site to. Site Tunnel.
If not can i build A site with dynamic peer Tunnel?
0
Comments
-
If USG60W is behind NAT,
Here the recommend solution,
- On the NAT router need to configure port forwarding UDP500,UDP4500 mapping to WAN IP of USG. On USG110, you can use site-to-site with static IP or DDNS for USG60W.
- If you cannot configure the NAT router. Then, on USG110 using site-to-site with dynamic peer for USG60W.
Note: Please configure the IPSec Phase 1 local id on USG60W to type DNS and give a
unique string as id. So that USG110 can easy identify the peer.
1
Master Member
Categories
- All Categories
- 434 Beta Program
- 2.7K Nebula
- 172 Nebula Ideas
- 117 Nebula Status and Incidents
- 6.1K Security
- 407 USG FLEX H Series
- 297 Security Ideas
- 1.6K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 43 Wireless Ideas
- 6.7K Consumer Product
- 268 Service & License
- 416 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 82 About Community
- 83 Security Highlight
