Comments
-
Hi @Zyxel_Jerry PM to you yesterday
-
-
Hi @Zyx@Zyxel_Jerry the remote host can connect to the device if it is pinging to internal LAN Interface of the Zyxel. I think that The Zyxel should present itself with the Internal LAN IF IP address, not with the VTI IP. in Static Routes scenario when the Zyxel try to connect remote host, it does with the Internal IP…
-
Hi @Zyxel_Jerry the host in AWS site does receive packet from the zyxel here is the relevant log 2021-07-12 12:36:25 ALLOW ICMP a.b.c.d 172.31.15.1 - - 0 - - - - 8 0 - RECEIVE (a.b.c.d is the IP Address of one of the two vti of the zyxel for the AWS VPN) so it seems that the Zyxel can contact the host but it does not…
-
No @ Zyxel_Jerry It does not work the router is connected via VPN to two AWS VPC (BGP over VTI) and via VPN to one Azure Virtual Network (Static Route over VTI) the AWS VPN is configured according the parameters supplied by AWS because of this, I have 4 VTI for 2 VPN (AWS require redundancy) and I cannot satsfay the first…
-
VPN is UP and running un brief topology is as follow: LAN - Zyxel - VPN - remote Firewall - DC from LAN it is possible to contact remote DC VPN Clients (once L2TP VPN is connected) can contact remote DC no error is present in log monitoring
