Skip to main content
philippegui2
philippegui2
New Member
May 4, 2018
Question

IP source rewriting with fortigate

  • May 4, 2018
  • 1 reply
  • 3078 views
Hello, I have a fortigate on which I have a VPN that works well. My concern is that a subnet is repeated on both sides, a specific machine on one side must communicate with others on the other side but as his address is repeated these requests are redirected elsewhere. I would like to do a NAT by giving a public IP address to reach and arrived at the firewall I assign a NAT. except that for the return I have to change the source address, how could I do this on a fortigate 200D?

    1 reply

    Dave_Hall
    Dave_Hall
    New Member
    May 4, 2018

    See Site-to-site IPsec VPN with overlapping subnets on the Fortinet Cookbook site.

     

    http://cookbook.fortinet.com/vpn-overlapping-subnets/

    ede_pfau
    SuperUser
    ede_pfau
    SuperUser
    May 4, 2018

    Yupp, this will cover the means to achieve this.

    Source NAT is done via 'IP pools'. Destination NAT is done via 'VIPs'.

    Terms & ConditionsAccessibility statement