The VPN is a popular function for encrypting packets when transmitting data.
In ZyWALL/USG/ATP’s current design, when the VPN interface is based on WAN1 interface, VPN request must come from WAN1 interface (interface restricted), otherwise, the request will be denied. (e.g. VPN connection came from LAN1)
However, in some scenarios, users may need to establish the VPN tunnel from not only the WAN but also LAN.
This scenario is also supported by ZyWALL/USG/ATP. Users can follow the operating procedure below to turn off the VPN interface restriction so that the VPN connection can come from both the WAN/LAN afterwards.
USG Firmware Version:
4.32 or above
To enable L2TP from LAN, you need to access your device with a terminal connection (Serial, Telnet, SSH) and enter the following commands:
Router> configure terminal
Router(config)# vpn-interface-restriction deactivate