Zyxel ZyWALL 350 with existing modem/router

I need to integrate a Zyxel ZyWALL 350 usg into an existing network with the main goal of having client to site VPNs.
since I can't see the firewall from the outside, I'm asking if I did it right:
- Actual modem/router/gateway is 192.168.1.1
- I connected the wan port on the Zyxel to a router port
- I set the zyxel wan to 192.168.1.10 with gateway to 192.168.1.1
- I forwarded the TCP/UDP ports 500,4500,443 from the router to 192.168.1.10
- PCs on LAN will be connected to the firewall LAN2 port on 192.168.2.X
I followed the Zyxel guides to create both IPSec and SSL VPNs, but in no case the client sees the firewall, pointing to the router public IP. I tried the deployment of the configuration, but does not reach the server
Something conceptually wrong in the above configuration?
#Biz_Security_Dec_2018
Comments
-
Hi @mickeyrohit,Do you also open firewall rule to allow TCP/UDP ports 500,4500,443 to 192.168.1.10?I think the settings should be done on both firewall rule and NAT rule.0
Categories
- All Categories
- 299 Beta Program
- 1.9K Nebula
- 102 Nebula Ideas
- 72 Nebula Status and Incidents
- 4.8K Security
- 2 USG FLEX H Series
- 242 Security Ideas
- 1.1K Switch
- 53 Switch Ideas
- 807 WirelessLAN
- 29 WLAN Ideas
- 5.5K Consumer Product
- 178 Service & License
- 307 News and Release
- 68 Security Advisories
- 18 Education Center
- 4 [Campaign] Zyxel Network Detective
- 1.3K FAQ
- 541 Nebula FAQ
- 338 Security FAQ
- 117 Switch FAQ
- 146 WirelessLAN FAQ
- 29 Consumer Product FAQ
- 104 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 70 About Community
- 56 Security Highlight