Knowledgebase

Knowledgebase > Product information > Internet Security Appliance

PC with ZyWALL IPsec VPN client is behind a NAT router and its IP is in the same subnet as the server in LAN of ZyNOS ZyWALL.

Article ID: 9659
Views: 32
Type: App/Conf Example
Firmware: n/a

Problem:














Network
Topology:



src="/system/kb_upload/9659_q/index.files/image001.jpg" alt=topo.jpg>



 



Application of the customer: The customer
has a PC installed ZyWALL IPsec VPN client. The
customer wants to access the server via the LAN of ZyWALL
35. So he needs to build a VPN tunnel between ZyWALL
IPsec VPN client and ZyWALL 35.



 



The challenge of this application: The
PC is behind a NAT router. The IP of this PC is in the same subnet as the
server in LAN of ZyWALL 35. We use Virtual Address
Mapping to achieve this.



 



 









Solution:














Configuration
Steps



 



To fulfill this application, we can
follow the below steps.



 



Part 1. Configure style='color:#00B0F0'>ZyWALL IPsec VPN client.



Phase1



src="/system/kb_upload/9659_a/index.files/image001.jpg" alt=c1.jpg>



 



Advanced Settings...



src="/system/kb_upload/9659_a/index.files/image002.jpg" alt=2.jpg>



 



Phase2



src="/system/kb_upload/9659_a/index.files/image003.jpg" alt=c3.jpg>



 



 



 



Part 2. Configure style='color:#00B0F0'>ZyWALL 35



Step1. Configure in style='color:#00B0F0'>ZyWALL - VPN - GATEWAY POLICY - EDIT.



src="/system/kb_upload/9659_a/index.files/image004.jpg" alt=2.jpg>



 



 



Step3. Configure in style='color:#00B0F0'>ZyWALL - VPN - NETWORK POLICY - EDIT.



src="/system/kb_upload/9659_a/index.files/image005.jpg" alt=3.jpg>