Zyxel ZyWALL 350 with existing modem/router
I need to integrate a Zyxel ZyWALL 350 usg into an existing network with the main goal of having client to site VPNs.
since I can't see the firewall from the outside, I'm asking if I did it right:
- Actual modem/router/gateway is 192.168.1.1
- I connected the wan port on the Zyxel to a router port
- I set the zyxel wan to 192.168.1.10 with gateway to 192.168.1.1
- I forwarded the TCP/UDP ports 500,4500,443 from the router to 192.168.1.10
- PCs on LAN will be connected to the firewall LAN2 port on 192.168.2.X
I followed the Zyxel guides to create both IPSec and SSL VPNs, but in no case the client sees the firewall, pointing to the router public IP. I tried the deployment of the configuration, but does not reach the server
Something conceptually wrong in the above configuration?
#Biz_Security_Dec_2018
Comments
-
Hi @mickeyrohit,Do you also open firewall rule to allow TCP/UDP ports 500,4500,443 to 192.168.1.10?I think the settings should be done on both firewall rule and NAT rule.0
Master Member
Categories
- All Categories
- 388 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 78 Nebula Status and Incidents
- 5.1K Security
- 51 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 914 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 330 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 875 Nebula FAQ
- 414 Security FAQ
- 220 Switch FAQ
- 193 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 61 Security Highlight
