G04. Vpn Connections Are Dialed Successfully, And The Policy Route Is Set. But The Traffic Is Lost Or There Is No Response From Remote Site; G05. Why Don't The Inbound/Outbound Traffic Nat In Vpn Work - ZyXEL Communications ZYWALL 1050 Support Notes
Internet security appliance
Hide thumbs
Also See for ZYWALL 1050:
- User manual (892 pages) ,
- Support notes (298 pages) ,
- Cli reference manual (284 pages)
Table of Contents
Advertisement
ZyWALL 1050/ZyWALL USG 300 Support Notes
ZyWALL 1050/ZyWALL USG 300 GUI > Configuration > Policy > Route > Policy Route
and check if there is a rule that direct the traffic to VPN tunnel. The VPN tunnel candidates
must be preconfigured in VPN connection menu.
The traffic from local subnet can send to VPN remote subnet and get reply successfully after
configured VPN tunnel and policy route.
G04. VPN connections are dialed successfully, and the policy route is set. But
the traffic is lost or there is no response from remote site.
There are two possibilities. One is that the traffic is blocked by firewall, Anti-Virus,
Anti-Spam, IDP...etc. Please check the configuration of these services or search the related
dropped logs. Another option is that the remote gateway doesn't know how to route the replied
traffic. Please check the route rules of the remote gateway.
G05. Why don't the Inbound/Outbound traffic NAT in VPN work?
Check the modified traffic for whether the outbound traffic SNAT still matches the VPN
connection policy. If the traffic doesn't match the policy and the policy enforcement is active,
it will be dropped by the VPN. For Inbound traffic SNAT/DNAT, check if there is a directly
connected subnet or a route rule to the destination.
326
All contents copyright (c) 2007 ZyXEL Communications Corporation.
Advertisement
Table of Contents
