Why I can't access VPN peer gateway Web GUI by remote interface IP?
Options
Zyxel_James
Posts: 809 
Zyxel Employee
Zyxel Employee
in VPN
Scenario:
I have two USG FLEX H Firewalls configured Site-to-Site tunnel between them. However, I found out I can't access the local Web GUI through the tunnel from the remote side.
Question:
Why I can't access VPN peer gateway Web GUI by remote interface IP even when a Policy Route is configured?
Answer:
Local out traffic from the firewall itself won't go into the tunnel. And Policy Route can't control the local out traffic of the firewall itself, while Static Route can.
So you need Statis Route to direct the return local traffic to the VPN tunnel.
0
Categories
- All Categories
- 441 Beta Program
- 2.9K Nebula
- 208 Nebula Ideas
- 127 Nebula Status and Incidents
- 6.4K Security
- 529 USG FLEX H Series
- 333 Security Ideas
- 1.7K Switch
- 84 Switch Ideas
- 1.3K Wireless
- 51 Wireless Ideas
- 6.9K Consumer Product
- 292 Service & License
- 461 News and Release
- 90 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.7K FAQ
- 34 Documents
- 86 About Community
- 99 Security Highlight