Using SoftEther VPN Server with USG/UTM firewall Zyxel
Posted: Mon Mar 11, 2024 4:55 pm
Hello everyone!
I'd like to establish a VPN tunnel between 2 remote branches (BO and MO) both connected to a third site (HQ) on cloud with Ethersoft VPN Server installed on a Windows computer. The goal it's to communicate from BO and MO bidirectionally, nothing to communicate with on HQ.
I cannot establish a direct VPN Site2Site BO-MO (it will be obviuosly the simpliest solution) because MO and BO are connected with router 4G and SIM mobiles that don't allow to open incoming ports on the router (specifically UDP 500 and 4500), so my idea is to establish outgoing connections from branches BO and MO toward the cloud (HQ).
On MO and BO there are USG FLEX 100 Zyxel firewalls.
At the moment I only configured the BO VPN Gateway and VPN Connection on firewall toward HQ and I see the VPN tunnel it's connected, but no traffic incoming, only outgoing from BO... I guess I have to setup static routes or similar, but I don't understand where...
BO
LAN: 192.168.15.0/24
GW: 192.168.15.3
MO:
LAN: 10.0.0.0/24
GW: 10.0.0.2
HQ (Cloud)
LAN: 192.168.1.29/24
GW: 192.168.1.1
Thank you in advance for your attention
P.S.: If anyone has better ideas to reach the goal, I accept any suggestions!
Greetings
Roberto
I'd like to establish a VPN tunnel between 2 remote branches (BO and MO) both connected to a third site (HQ) on cloud with Ethersoft VPN Server installed on a Windows computer. The goal it's to communicate from BO and MO bidirectionally, nothing to communicate with on HQ.
I cannot establish a direct VPN Site2Site BO-MO (it will be obviuosly the simpliest solution) because MO and BO are connected with router 4G and SIM mobiles that don't allow to open incoming ports on the router (specifically UDP 500 and 4500), so my idea is to establish outgoing connections from branches BO and MO toward the cloud (HQ).
On MO and BO there are USG FLEX 100 Zyxel firewalls.
At the moment I only configured the BO VPN Gateway and VPN Connection on firewall toward HQ and I see the VPN tunnel it's connected, but no traffic incoming, only outgoing from BO... I guess I have to setup static routes or similar, but I don't understand where...
BO
LAN: 192.168.15.0/24
GW: 192.168.15.3
MO:
LAN: 10.0.0.0/24
GW: 10.0.0.2
HQ (Cloud)
LAN: 192.168.1.29/24
GW: 192.168.1.1
Thank you in advance for your attention
P.S.: If anyone has better ideas to reach the goal, I accept any suggestions!
Greetings
Roberto