Ipsec VPN with source nat

Forum|Forum|6 years ago
June 25, 2019
2 replies
2596 views

Hi all, thanks for the support for my first Thread.

I'm changing an asa with a fgt and i've some doubts and the firewall change should work at the first attempt, i want to be sure that the config is ok.

The fgt has FortiOs 6.2

The internal network 192.168.1.0/24 need to be source natted to 172.17.6.65

The destination is 172.17.6.0/26

So i've created:

- the vpn with the source 172.17.6.65/32 and destination 172.17.6.0/26

- the static route for 172.17.6.0/26 trought the vpn interface

- the ip pool (external 172.17.6.65-172.17.6.65 / internal 192.168.1.1-192.168.1.254)

now my main doubt is: for the inverse policy, how should be the VIP??

Thanks

mazzatorAuthor

New Member

no ideas?

hubertzw

New Member

mazzator wrote:
...internal 192.168.1.1-192.168.1.254)

What resources you have in the site with 192.168.1./24 address? Is it one server or more?

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded