A SERVICE OF

logo

Open as PDF
next previous
Chapter 25 IPSec VPN
ZyWALL USG 300 User’s Guide
493
VPN Connection (VPN Tunnel 1):
Local Policy: 192.168.1.0/255.255.255.0
Remote Policy:192.168.11.0/255.255.255.0
Disable Policy Enforcement
VPN Gateway (VPN Tunnel 2):
My Address: 10.0.0.1
Peer Gateway Address: 10.0.0.3
VPN Connection (VPN Tunnel 2):
Local Policy: 192.168.1.0/255.255.255.0
Remote Policy: 192.168.12.0/255.255.255.0
Disable Policy Enforcement
Concentrator
Add VPN tunnel 1 and VPN tunnel 2 to an IPSec VPN concentrator.
Firewall
Block traffic from VPN tunnel 2 from accessing the LAN.
Branch Office B (ZyWALL USG):
VPN Gateway (VPN Tunnel 2):
My Address: 10.0.0.3
Peer Gateway Address: 10.0.0.1
VPN Connection (VPN Tunnel 2):
Local Policy: 192.168.12.0/255.255.255.0
Remote Policy: 192.168.1.0/255.255.255.0
Disable Policy Enforcement
Policy Route
Source: 192.168.12.0
Destination: 192.168.11.0
Next Hop: VPN Tunnel 2
25.4.1.1 VPN Concentrator Requirements and Suggestions
Consider the following when using the VPN concentrator.