How to get remote connection to 10.90.90.90 device on 10.0.0.0/24 network?

Forum|Forum|11 years ago
February 2, 2015
1 reply
10603 views

I need to remotely connect to D-LINK switch currently working on default 10.90.90.90 address (service guys have replaced broken one, but they have forgotten to do initial config). The problem is it's connected directly to one of the internal interface port on my FortiGate 60D where I'm running 10.0.0.0/24 subnet.

By using second address of the internal interface and FortiOS CLI on SSH session I was able to initiate telnet connection to the switch but unfortunately D-LINK refuses connection (no account on switch on defaults). The only option right now is to use web GUI of that switch which is available on 80 or 443 port. I've tried to do port forwarding but trafic flowed only to the switch but didn't in the opposite direction. What are your thoughts to accomplish this setup?

5.2

Best answer by patrick_z

Hi,

I suggest that you build a temp VPN tunnel and connect to it via Forticlient (SSL or IPSec) and give your client an IP in that range like 10.90.90.10 / 24

Make sure that the remote firewall will allow traffic in both directions. Not sure if this works like that but I would think in this direction.

Cheers, Patrick

patrick_zAnswer

New Member

Hi,

I suggest that you build a temp VPN tunnel and connect to it via Forticlient (SSL or IPSec) and give your client an IP in that range like 10.90.90.10 / 24

Make sure that the remote firewall will allow traffic in both directions. Not sure if this works like that but I would think in this direction.

Cheers, Patrick

michal1Author

New Member

I tried to setup SSL VPN tunnel before but I didn't change IP pool for ssl.root interface. SSL VPN without FortiClient it also working well. Your advice has saved me from little oppression :) Thank you.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded