Zyxel ZyWALL 350 with existing modem/router
I need to integrate a Zyxel ZyWALL 350 usg into an existing network with the main goal of having client to site VPNs.
since I can't see the firewall from the outside, I'm asking if I did it right:
- Actual modem/router/gateway is 192.168.1.1
- I connected the wan port on the Zyxel to a router port
- I set the zyxel wan to 192.168.1.10 with gateway to 192.168.1.1
- I forwarded the TCP/UDP ports 500,4500,443 from the router to 192.168.1.10
- PCs on LAN will be connected to the firewall LAN2 port on 192.168.2.X
I followed the Zyxel guides to create both IPSec and SSL VPNs, but in no case the client sees the firewall, pointing to the router public IP. I tried the deployment of the configuration, but does not reach the server
Something conceptually wrong in the above configuration?
#Biz_Security_Dec_2018
Comments
-
Hi @mickeyrohit,Do you also open firewall rule to allow TCP/UDP ports 500,4500,443 to 192.168.1.10?I think the settings should be done on both firewall rule and NAT rule.0
Master Member
Categories
- All Categories
- 431 Beta Program
- 2.6K Nebula
- 165 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 365 USG FLEX H Series
- 292 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 262 Service & License
- 407 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight
