How to Route Internet over IPsec Tunnel

i have one USG110 and one USG60 where the USG110 is located in China and the USG60 in Hongkong. As the internet in China is a bit restricted i would like to route the internet for certain ip subnets(for example google ip subnets for which i already created a group of all know google ip's) from to USG 110 over the USG 60. the IPSEC tunnel between USG110 and USG60 is working and i can ping the USG 60 lan ip from a computer connected to the USG110. But i cant ping an IP in the internet. USG 110 local ip: 192.168.1.221 USG 60 local IP: 192.168.43.1 from USG110 site: ping 192.168.43.1 OK ping 8.8.8.8 request timed out tracert 8.8.8.8 Tracing route to google-public-dns-a.google.com [8. over a maximum of 30 hops: 1 1 ms 1 ms 1 ms 192.168.1.221 2 * * * Request timed out. 3 * * * Request timed out. From the tracert it looks like a routing problem as 2nd hop should be 192.168.43.1 (USG60) I found this topic in the Forum and i folowed its configuration buts its not working for me: http://www.dslreports.com/forum/r29763606-How-to-Route-Internet-over-IPsec-Tunnel USG60 policy route (Use IPv4 Policy Route to Override Direct Route activated) 1 incoming: Tunnel HKtoCN, Source: China Subnet, Destination LAN1_Subnet, Next-Hop: Gateway USG60, DSCP Preserve, SNAT: none 2 incoming: Interface Wan1, Source: any, Destination China Subnet, Next-Hop: Tunnel HKtoCN, DSCP Preserve, SNAT: none 3 incoming: Tunnel HKtoCN, Source: China Subnet, Destination any, Next-Hop: Trunk SYTEM_DEFAULT_WAN_TRUNK , DSCP Preserve, SNAT: outgoing interface 4 incoming: any (excluding zywall), Source: LAN1_Subnet, Destination China Subnet, Next-Hop: Tunnel HKtoCN, DSCP Preserve, SNAT: none USG110 policy route config (Use IPv4 Policy Route to Override Direct Route activated) 1 incoming:any (excluding zywall), Source: LAN1_subnet, Destination Hongkong_Subnet, Next-Hop: Tunnel HKtoCN, DSCP Preserve, SNAT: none 2 incoming: any (excluding zywall), Source: LAN1_subnet, Destination Google_Subnets, Next-Hop: Tunnel HKtoCN, DSCP Preserve, SNAT: none does anyone have an idea whats missing here that the traffic to google subnet is not routed to the USG60? thanks Max

How to Route Internet over IPsec Tunnel

Trending Articles

Practice Sheet of Right form of verbs for HSC Students

Download: FK ft Shenky – Nakuyewa ”Prod by: Shenky”

How to win at Markstrat (Markstrat Tips and Tricks) – Vodites

Ominde Commission Report and Recommendations – Ominde Report of 1964

Bureau of Internal Revenue: Regional Offices (Directory)

GO 53 on Enhancement of Ex-gratia upto 5 Lakhs Toddy Tappers in Telangana

Cakewalk CA-2A Leveling Amplifier v2.0.1.97 WiN, v2.0.1.96 OSX Incl Keygen

Mp3 Download: Mdu - Kunjenjenjena

How the kill the job , when DTP request running for long hours.

Microsoft Intune から展開しているアプリのアップデートについて

18-year-old girl was beaten for half an hour by two Northampton men in 'an...

Car crash in Dunton Bassett leaves driver in critical condition

Macky 2, Two Others In Road Accident

Application log 00000000000000089514: Could not convert queue DLVST90CLNT

Detroit mafia: D’Anna Brothers agree to plea deal

Delivery block field greyed out using VA02

Muloraki Au

【個人撮影】スマホのプライベート映像♪「中に出さないで///」カラオケ屋での生ハメ撮りが流出ｗ【リベンジポルノ】＠PornHub

BREAKING NEWS: Diamond Platnumz Is Reported Dead After Ghastly Car Accident

FIAT 500 B0111 B0112