Why I can't access VPN peer gateway Web GUI by remote interface IP?
Options
Zyxel_James
Posts: 809 
Zyxel Employee
Zyxel Employee
in VPN
Scenario:
I have two USG FLEX H Firewalls configured Site-to-Site tunnel between them. However, I found out I can't access the local Web GUI through the tunnel from the remote side.
Question:
Why I can't access VPN peer gateway Web GUI by remote interface IP even when a Policy Route is configured?
Answer:
Local out traffic from the firewall itself won't go into the tunnel. And Policy Route can't control the local out traffic of the firewall itself, while Static Route can.
So you need Statis Route to direct the return local traffic to the VPN tunnel.
0
Categories
- All Categories
- 442 Beta Program
- 2.9K Nebula
- 219 Nebula Ideas
- 127 Nebula Status and Incidents
- 6.5K Security
- 589 USG FLEX H Series
- 344 Security Ideas
- 1.7K Switch
- 84 Switch Ideas
- 1.4K Wireless
- 52 Wireless Ideas
- 7K Consumer Product
- 298 Service & License
- 478 News and Release
- 91 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.8K FAQ
- 34 Documents
- 87 About Community
- 105 Security Highlight