How to setup complete VPN solution for USG110?
All Replies
-
Hi @mrwee
You can refer to this FAQ for setup L2TP VPN on different platform.
It include Windows/ IOS/ Android to setup L2TP VPN tunnel in your environment.
Also you can refer to handbook for different VPN types for different scenarios.0 -
Having 8 WAN IP addresses, I assume a physical or virtual WAN interface must exist? Seems like I can only define 4 virtual WAN addresses in additionl to wan1
0 -
You don't need to setup virtual interface for many wan IPs you use routing rules with SNAT
0 -
Hi @mrwee
In current design, user can only add up to 4 virtual interfaces per Ethernet interface.
So it means, you can configure 5 static public IP address on 1 WAN interface.
In VPN Gateway setting, "Interface" have to own the public address. And 1 interface can add multiple VPN rules.
The other 3 public IP addresses, you can create port forwarding rules or policy route with SNAT for different scenario.0 -
@Zyxel_Stanley Thought there were some kind of limitation. Can't get VPN to work, but I'll dig some more.
0 -
Hi @mrwee
What kind of VPN type that you would like to configure on your device? You may explain your scenario first, then we can give you some of suggestion.0 -
Sry, I can see that it wasn't that clear. I'm looking for enabling what I think should be (Not an VPN expert):L2TP/IPsec with IKE2 (Assume it's the most secure encryption) for e.g. iOS +Android + w10 / Zyxel VPN ClientSSL/SecuExtender when L2TP/IPsec is blocked/doesn't work.The lack of virtual wan interface, surely messed it up for me, when trying different things, but I still haven't managed to get my head around it0
-
Hi @mrwee
If you would like to setup and configure IKEv2 on Win10 & IOS client, you can follow this thread.
It has guide how to setup them on native client without others software.
According to L2TP/ SecuExtender are using for different protocol.
L2TP is using for IKEv1.
SecuExtender is for SSL VPN tunnel the packet is encrypted by HTTPS packets.0 -
Hi @Zyxel_Charlie ...And this brings me back to somewhat fragmented documentation.I (and hopefully others) would appreciate a complete "remote worker" manual, covering all these scenarios in one guide. If all was covered in one, it would probably also minimize the error risk in merging multiple configuration suggestions0
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 141 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 218 USG FLEX H Series
- 262 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 245 Service & License
- 382 News and Release
- 81 Security Advisories
- 27 Education Center
- 8 [Campaign] Zyxel Network Detective
- 3.1K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight