Problem with port forwarding
Freshman MemberHello Zyxel Community,
I have an USG20-VPN. I made a rule that ALLOW acces to my ZYWALL device from ANY.
When I do a test from our VPN, I can't access . However, the logs indicate that the access is FORWARD with my vpn ip address.
I have another USG20-VPN with similary rules, same version and I didn't have any problem.
Have you any idea for my problem ?
Z
All Replies
-
Hi @suppBNJ,
What is the type of the VPN? Is it site to site VPN, L2TP VPN or SSL VPN?
We don't suggest you use the rule from any to ZyWALL for all services because of security concerns.
Make sure the action of default security policy rules IPSec_VPN_to_Device and SSL_VPN_to_Device are allow for any source/destination/service/user.
For site to site VPN and L2TP VPN, the zone of the VPN connection must be "IPSec_VPN".
The assign IP pool for L2TP VPN users cannot conflict with any WAN/LAN/DMZ subnet.
For SSL VPN, make sure the LAN subnet is moved to the selected address objects.
The assign IP pool for SSL VPN users cannot conflict with any WAN/LAN/DMZ subnet.
If all settings are configured correctly but it is still unable to work, share the network topology including the IP/subnet of the VPN and the startup-config.conf with me in private message.
0
Zyxel Employee
Categories
- All Categories
- 426 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 5.9K Security
- 343 USG FLEX H Series
- 288 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 261 Service & License
- 404 News and Release
- 86 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 82 Security Highlight
