VPN L2TP with NAT and DDNS
Options
Comments
-
Hi Alan, yes you can use IPSEC VPN site to site with a WAN port on each of the USG's with a dynamic-dns (e.g. no-ip.com ) broadcasting the IPV4 (dynamic IP address) or IPV6 9/64 and host name) .
I use a VTI tunnel between the USG's.... so much easier for routing etc.
The DDNS service used in our implementations with dynamic IPV4 WANs AND with block /64 IPV6s is no-ip.com
USE what ever you like as you see fit.......
Here's the basics...
use something unique to identify the gateways on each end .. refer to parameters 2-5 below.
parameter #1 is of course the remote dynamics-dns host you use.... make sure the ISG's have it active.... works great!
Site 1 - ddns host name= "site1.dyndns.org'- VPN Gateway / Peer Gateway Address / Status Address --> "site2.dyndns.org"
- VPN Gateway / Authentication Local ID Type: "E-Mail"
- VPN Gateway / Content: "any_email@site1.dyndns.org" (any concocted string will do)
- VPN Gateway / Peer ID Type : E-mail
- VPN Gateway / Content: "any_email@site2.dyndns.org" (any concocted string will do)
Site 2 - ddns host name= "site2.dyndns.org'- VPN Gateway / Peer Gateway Address / Status Address --> " site1.dyndns.org"
- VPN Gateway / Authentication Local ID Type: "E-Mail"
- VPN Gateway / Content: "any_email@site2.dyndns.org" (any concocted string will do)
- VPN Gateway / Peer ID Type : E-mail
- VPN Gateway / Content: "any_email@site1.dyndns.org" (any concocted string will do)
HTH
warwick
Hong Kong1
Categories
- All Categories
- 396 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 81 Nebula Status and Incidents
- 5.1K Security
- 86 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 916 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 211 Service & License
- 337 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 2K FAQ
- 912 Nebula FAQ
- 419 Security FAQ
- 237 Switch FAQ
- 207 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 139 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 62 Security Highlight