gateway remote on vpn site to site
I need for one computer ip 172.17.0.10/24 on site2 to get internet from gateway 172.21.0.1/24
to exit with router on site1
help me, thanks
sorry for my bad english.
Marco
Comments
-
For this scenario, it need to add policy route on both Site 1 and Site 2, configuration as below,
Site 1:
incoming interface = any, src ip =any, dst ip =172.17.0.10/24, service=any, next hop type = VPN tunnel. <= Routing back to site 2
incoming interface = VPN tunnel, src ip =172.17.0.10/24, dst ip =any , service=any, next type=Auto, source network address translation = outgoing-interface. <= Outgoing traffic NAT
Site 2:
incoming interface = lan, src ip =172.17.0.10/24, dst ip =any, service=any, next hopt (type=vpn tunnel, tunnel name= site to site vpn tunnel you created) <= Redirect the traffic to Site 1.
Just let me know if the host cannot access Internet by site1.
0 -
Hi thanks very much for your information, that work fine.
Now I have to test if the pc 172.17.0.10 (castellanzaprelievi) manages to follow the routes to the wan1/wan2/opt set according to the destination of the services and ip on site1:
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 147 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight