SSL client access problem
HI.
Scenario: I created two VPN tunel:
Branch office1 to HQ site-to-site /usg60W-usg310/
Branch office2 to HQ site-to-site with dynamic peer /ISP dont have static IP/
VPN tunnels established and works.
Policy route created on all routers:
When SSL clients connect to HQ, can access Branch1, but cannot browse Branch2.
They must log in HQ computers and then to Branch2
Full tunnel enabled, all Network site is in Selected Address Objects
Thx.
Ondrej
0
Comments
-
Hi @Ondrej
For routes SSL VPN client traffic into Branch2, then site to site VPN tunnel is required.
If WAN connection is dynamic IP address, then you can use “DDNS” first. (i.g. No-IP, DDNS.....etc)
And enter the FQDN into VPN setting. Then the rule can change as site to site rule.
After setup it, then SSL VPN client traffic should able route to Branch2 without problem.
0 -
THX.Ondrej0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 147 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight