SSL client access problem
Options
HI.
Scenario: I created two VPN tunel:
Branch office1 to HQ site-to-site /usg60W-usg310/
Branch office2 to HQ site-to-site with dynamic peer /ISP dont have static IP/
VPN tunnels established and works.
Policy route created on all routers:
When SSL clients connect to HQ, can access Branch1, but cannot browse Branch2.
They must log in HQ computers and then to Branch2
Full tunnel enabled, all Network site is in Selected Address Objects
Thx.
Ondrej
0
Comments
-
Hi @Ondrej
For routes SSL VPN client traffic into Branch2, then site to site VPN tunnel is required.
If WAN connection is dynamic IP address, then you can use “DDNS” first. (i.g. No-IP, DDNS.....etc)
And enter the FQDN into VPN setting. Then the rule can change as site to site rule.
After setup it, then SSL VPN client traffic should able route to Branch2 without problem.
0 -
THX.Ondrej0
Categories
- All Categories
- 390 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 78 Nebula Status and Incidents
- 5.1K Security
- 51 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 70 Switch Ideas
- 907 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 332 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 880 Nebula FAQ
- 415 Security FAQ
- 220 Switch FAQ
- 195 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 63 Security Highlight