ZyXEL forum - dslreports.com community

ZyXEL forum - dslreports.com community http://www.dslreports.com/forum/zyxel ZyXEL forum current topics en Copyright 2007, dslreports.com Wed, 08 Feb 2012 22:19:42 EDT Wed, 08 Feb 2012 22:19:42 EDT dslreports.com http://i.dslr.net/bbrdisc1.gif http://www.dslreports.com 19 18 bbr disc VPN Tunnel - Accesing remote side servers from USG device. http://www.dslreports.com/forum/remark,26863213 ping 192.168.0.5 PING 192.168.0.5 (192.168.0.5) 56(84) bytes of data. From xx.xx.xx.xxx icmp_seq=1 Destination Host Unreachable From xx.xx.xx.xxx icmp_seq=2 Destination Host Unreachable From xx.xx.xx.xxx icmp_seq=3 Destination Host Unreachable /Where xx.xx.xx.xxx is next hop to internet./ I susspect that problem is that packets outgoing from USG are not router through VPN Tunnel but are send through default gateway not encrypted so I added Policy Route: INCOMING SOURCE DESTINATION DSCP CODE SERVICE NEXT-HOP DSCP SNAT BWM ------------------------------------------------------------------------------------------------------------------------------------------------------------------ ZyWALL any NET:192.168.0.0/24 any any VPN Tunnel Preserve none 0 After that result of ping command is as follows: Router> ping 192.168.0.5 PING 192.168.0.5 (192.168.0.5) 56(84) bytes of data. --- 192.168.0.5 ping statistics --- 3 packets transmitted, 0 received, 100% packet loss, time 2016ms I feel that i am missing something. Any help will be very appreciated. Gadulowaty PS. I also need to mention that: 1. "Use Policy Route to Override Direct Route" is SET (CONFIGURATION->NETWORK->ROUTING) 2. "Use Policy Route to control dynamic IPSec rules" is SET (CONFIGURATION->VPN->IPSEC VPN->VPN Connection)]]> http://www.dslreports.com/forum/remark,26863213 2012-02-07 08:31:22 usg50, vlans, switch http://www.dslreports.com/forum/remark,26855331 http://www.dslreports.com/forum/remark,26855331 2012-02-04 23:14:01 Need P-660R-D1 firmware upgrade advice? http://www.dslreports.com/forum/remark,26854612 http://www.dslreports.com/forum/remark,26854612 2012-02-04 18:31:26 Zyxel NBG334W for just wireless access http://www.dslreports.com/forum/remark,26839630 http://www.dslreports.com/forum/remark,26839630 2012-02-01 12:36:57 Wireless NWA3560-N central management mode http://www.dslreports.com/forum/remark,26621830 http://www.dslreports.com/forum/remark,26621830 2011-12-05 13:15:39 New USG Datasheet on Zyxel.com shows better performance http://www.dslreports.com/forum/remark,26819842 http://www.dslreports.com/forum/remark,26819842 2012-01-27 10:01:57 Port opening on Zywall USG100 http://www.dslreports.com/forum/remark,26806352 http://www.dslreports.com/forum/remark,26806352 2012-01-24 06:18:48 Which model for ip tunnel http://www.dslreports.com/forum/remark,26825274 http://www.dslreports.com/forum/remark,26825274 2012-01-28 16:11:17 thinking about buying this- VLAN Support http://www.dslreports.com/forum/remark,26691126 http://www.dslreports.com/forum/remark,26691126 2011-12-23 15:47:14 DHCP pool size issue http://www.dslreports.com/forum/remark,26794250 http://www.dslreports.com/forum/remark,26794250 2012-01-20 19:08:19 Zyxel USG 300 and multiple public ip addresses http://www.dslreports.com/forum/remark,26814787 http://www.dslreports.com/forum/remark,26814787 2012-01-26 03:46:01