Connection site to site with peer dynamic
Freshman Member
I have created a connection site to site but i have a problem.
The vpn is created and activated but I have not access from the other site.
the connection is between HQ and my home. I used usg20 and usg40.
In my Home, the Zyxel is located after the router (ISP). I have a subnet 192.168.0.0/24 in my router and 192.168.16.0/24 in my Zyxel
In VPN Gateway in my Zyxel, I choose wan1 (DHCP 192.168.0.5)
In HQ, there are already VPN's to connect.
I probably forgot to configure a few things but I don't see
Thks for your help
Accepted Solution
-
Hi @delescja
Welcome to Zyxel community
Is this your topology below?
Is there any additional policy route on both USG20 and USG40 ?
Or there is any Security Policy rule blocked the traffic from the HQ site to home?
Can you have a check on the HQ site log if there is any blocked message on it when access from the other site?
5
Zyxel Employee
All Replies
-
Hi @delescja
Welcome to Zyxel community
Is this your topology below?
Is there any additional policy route on both USG20 and USG40 ?
Or there is any Security Policy rule blocked the traffic from the HQ site to home?
Can you have a check on the HQ site log if there is any blocked message on it when access from the other site?
5 -
first, thks for drawing. it's perfect. (which program did you use ?)
I have not configured any policy route (only those included because I reset it)
In HQ, in log, I see "no rules DROP" and I see address IP 192.168.16.33 (My PC at home)
*I would like 2 VPN in different places (14.0/24 and 16.0/24)
In my Home when I use command Ping 192.168.1.20
In HQ
thks for your help
0 -
Hi @delescja
I do a simple test on our site, if there is no policy route and no security policy blocked the packet, ping should works fine.
I suspect that there might be some setting is not correctly.
Can you share your configuration on VPN settings on both device?
0 -
Hi @Zyxel_Jerry
Yes, it's possible. What exactly do you need ?
Or would you like a connection with Teamviewer ?
0 -
Hi @delescja
Can you private message configuration file of both devices for check further?
The startup-config.conf file is the configuration file that the Zyxel Device is currently using.
Here is step to download startup-config.conf on the device.
Go to Maintenance > File Manager > Configuration File > select startup-config.conf > click Download
0 -
?
0 -
Hi @delescja
I do not received your private message, can you try to send your configuration file to us again ?
0
Categories
- All Categories
- 415 Beta Program
- 2.5K Nebula
- 152 Nebula Ideas
- 101 Nebula Status and Incidents
- 5.8K Security
- 296 USG FLEX H Series
- 281 Security Ideas
- 1.5K Switch
- 77 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.5K Consumer Product
- 254 Service & License
- 396 News and Release
- 85 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.6K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 87 About Community
- 76 Security Highlight
