How can remote access VPN (full tunnel) reach remote sites by site-to-site VPN?
Options
Zyxel_Melen
Posts: 4,835 
Zyxel Employee
Zyxel Employee
Assume the remote access VPN connects to site a. To reach the requirement, we need to setup static route on side b, so side b firewall knows where it should send the packet back to remote access VPN client.
Here are the setup steps for full tunnel mode (side a use test#1 as example, side b use test#2 as example):
- Navigate to Nebula side b > Menu > Monitor > firewall > VPN connection. Find the VTI IP of side a.
- Navigate to Menu > Site-wide > Configure > Firewall > Routing. Add the static routing rule like below.
- Connect remote access VPN and ping side b. Test result should be success.
Zyxel Melen
0
Categories
- All Categories
- 442 Beta Program
- 3K Nebula
- 229 Nebula Ideas
- 130 Nebula Status and Incidents
- 6.6K Security
- 662 USG FLEX H Series
- 359 Security Ideas
- 1.8K Switch
- 86 Switch Ideas
- 1.4K Wireless
- 56 Wireless Ideas
- 7.1K Consumer Product
- 305 Service & License
- 497 News and Release
- 95 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 5K FAQ
- 34 Documents
- 89 About Community
- 110 Security Highlight