Ｌ２ＴＰ/IPSec VPN 1 IP address 1 user?

Forum|Forum|10 years ago
September 14, 2015
1 reply
3817 views

I set up L2TP/IPSec on Fortigate for remote maintenance.

but We can't connect to L2TP/IPSec from same Network(under NAPT Router).

Can't we connect to L2TP/IPSec VPN from same IP address?

if so, how can i connect from same Network(under NAPT router)?

Thanks in advance

dvp

New Member

Hello.

I have been facing this issue too. But solution was find with TAC help.

According to http://docs.fortinet.com/...1/fortigate-cli-52.pdf

there is route-overlap option for ipsec phase2. By default, when new client has same source IP address, IPSec deletes old SA and create new for new client.

Simply adding one config line resolve issue:

config vpn ipsec phase2(-interface) edit "dhcp-ipsec_p2" set route-overlap allow next end

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded