Skink
@co.uk
| Zywall 70 VPN routing question
I am doing this config for a customer, not sure if it's possible and I am not an expert!
We have the LAN configured as 10.0.0.0/24, DMZ as 192.168.0.0/24. I have one tunnel to remote gateway A connecting 192.168.0.4 on DMZ to 192.168.78.0/24 and that works fine.
Now I created a second tunnel to the same gateway A but routing to 10.0.0.6 remotely. Tunnel forms OK, I can ping in from 10.0.0.6 to 192.168.0.4 no problems. However when I try and ping the other way I can see outbound traffic matching the rule D to V in the log, but it never arrives at the remote gateway. Traceroute times out. Could the traffic be trying to route onto the LAN instead of the VPN even though the log matches it from D to V?
Any ideas appreciated. |
