Connection site to site with peer dynamic
I have created a connection site to site but i have a problem.
The vpn is created and activated but I have not access from the other site.
the connection is between HQ and my home. I used usg20 and usg40.
In my Home, the Zyxel is located after the router (ISP). I have a subnet 192.168.0.0/24 in my router and 192.168.16.0/24 in my Zyxel
In VPN Gateway in my Zyxel, I choose wan1 (DHCP 192.168.0.5)
In HQ, there are already VPN's to connect.
I probably forgot to configure a few things but I don't see
Thks for your help
Accepted Solution
-
Hi @delescja
Welcome to Zyxel community
Is this your topology below?
Is there any additional policy route on both USG20 and USG40 ?
Or there is any Security Policy rule blocked the traffic from the HQ site to home?
Can you have a check on the HQ site log if there is any blocked message on it when access from the other site?
5
All Replies
-
Hi @delescja
Welcome to Zyxel community
Is this your topology below?
Is there any additional policy route on both USG20 and USG40 ?
Or there is any Security Policy rule blocked the traffic from the HQ site to home?
Can you have a check on the HQ site log if there is any blocked message on it when access from the other site?
5 -
first, thks for drawing. it's perfect. (which program did you use ?)
I have not configured any policy route (only those included because I reset it)
In HQ, in log, I see "no rules DROP" and I see address IP 192.168.16.33 (My PC at home)
*I would like 2 VPN in different places (14.0/24 and 16.0/24)
In my Home when I use command Ping 192.168.1.20
In HQ
thks for your help
0 -
Hi @delescja
I do a simple test on our site, if there is no policy route and no security policy blocked the packet, ping should works fine.
I suspect that there might be some setting is not correctly.
Can you share your configuration on VPN settings on both device?
0 -
Hi @Zyxel_Jerry
Yes, it's possible. What exactly do you need ?
Or would you like a connection with Teamviewer ?
0 -
Hi @delescja
Can you private message configuration file of both devices for check further?
The startup-config.conf file is the configuration file that the Zyxel Device is currently using.
Here is step to download startup-config.conf on the device.
Go to Maintenance > File Manager > Configuration File > select startup-config.conf > click Download
0 -
?
0 -
Hi @delescja
I do not received your private message, can you try to send your configuration file to us again ?
0
Categories
- All Categories
- 384 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 80 Nebula Status and Incidents
- 5.1K Security
- 78 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 209 Service & License
- 335 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 898 Nebula FAQ
- 415 Security FAQ
- 234 Switch FAQ
- 205 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 73 About Community
- 62 Security Highlight