I have a working policy based lan-to-lan tunnel configured on two Netscreens.
I also have another zone called 'dmz' on one of the Netscreens, and hosts in that zone are unable to access the lan-to-lan tunnel.
In zone dmz, there is no policy for the vpn or a route to the destination, so traffic ends up being sent to the default gateway instead of the tunnel.
When I tried adding a policy to zone 'dmz' for the vpn traffic screenos said it could not because the IKE ID was already in use. I also tried to route the traffic to the trust interface and that didn't work either.
Can anyone assist and tell me how to configure this so that the other zone can access the tunnel?
Thanks in Advance.
-RLR