Zyxel ZyWALL 350 with existing modem/router
I need to integrate a Zyxel ZyWALL 350 usg into an existing network with the main goal of having client to site VPNs.
since I can't see the firewall from the outside, I'm asking if I did it right:
- Actual modem/router/gateway is 192.168.1.1
- I connected the wan port on the Zyxel to a router port
- I set the zyxel wan to 192.168.1.10 with gateway to 192.168.1.1
- I forwarded the TCP/UDP ports 500,4500,443 from the router to 192.168.1.10
- PCs on LAN will be connected to the firewall LAN2 port on 192.168.2.X
I followed the Zyxel guides to create both IPSec and SSL VPNs, but in no case the client sees the firewall, pointing to the router public IP. I tried the deployment of the configuration, but does not reach the server
Something conceptually wrong in the above configuration?
#Biz_Security_Dec_2018
Comments
-
Hi @mickeyrohit,Do you also open firewall rule to allow TCP/UDP ports 500,4500,443 to 192.168.1.10?I think the settings should be done on both firewall rule and NAT rule.0
Master Member
Categories
- All Categories
- 415 Beta Program
- 2.5K Nebula
- 152 Nebula Ideas
- 101 Nebula Status and Incidents
- 5.8K Security
- 296 USG FLEX H Series
- 281 Security Ideas
- 1.5K Switch
- 77 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.5K Consumer Product
- 254 Service & License
- 396 News and Release
- 85 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.6K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 87 About Community
- 76 Security Highlight
