Skip to main content
the_abba
the_abba
New Member
January 12, 2016
Question

Multiple VPNs on Multiple LANs [NOT RESOLVED]

  • January 12, 2016
  • 1 reply
  • 5094 views

Hi everybody, i'm trying to setup multiple VPN Tunnels between some VLANs and user equiped with FortiClient.

The architecture is visible in the figure shown below:

I followed the procedure shown in this video.

 

When i create the first tunnel (i.e. tunnel "A") then I test, all seems work properly.

When i create the second tunnel (by redoing the same procedure), the new tunnel (i.e. tunnel "B") work well while the old one do not work anymore.

 

Anybody can help me?

 

Thanks,

Lorenzo 

 

 

1 reply

the_abba
the_abbaAuthor
New Member
January 13, 2016

Please!

Brady_R__Houser
Brady_R__Houser
New Member
January 22, 2016

I did something similar with a SSL VPN setup.  Everyone hit the SSL VPN and got different portals depending on their group membership.  Since they were on different portals they got different DHCP pools.  I then used these pools to give them or not give them access to the different VLANs.  

 

With the SSL VPN you can still use the FortiClient if you want but it uses 443 so it has a better chance of working at places like Hotels and HotSpots.

ede_pfau
SuperUser
ede_pfau
SuperUser
January 22, 2016

Speaking for IPsec VPNs: breaking tunnel A has got to be this way if you set up tunnel B just in the same way. You've got to give the FGT something to differentiate the tunnels. Use "peer IDs" and "remote IDs" for this, they're just strings (like the location's name) which additionally have to match.

You'll find plenty of info on this, dial-in VPN with multiple user groups, either in the Handbook or the Cookbook.

Terms & ConditionsAccessibility statement