Remote VPN to 3 site-to-site VPNs

Forum|Forum|1 year ago
December 13, 2024
1 reply
744 views

Hi, we use FortiClient and IPSEC vpn to connect from home to work. We can access the resources on 192.168.100.0 (main office lan) but we also require access to resources on 192.168.200.0 and 192.168.2.0

There is a site-to-site VPN connecting 192.168.100.0 and 192.168.200.0 and 192.168.100.0 and 192.168.2.0

xshkurti

Staff

@GraemeM
You can fix it by adding more subnets under phase2 selectors:
Adding source and destination subnets to IPsec VPN phase 2 configurations | FortiGate-7000 5.4.9 | How to configure IPsec remote access with... - Fortinet Community Fortinet Document Library

Also remember to allow traffic on firewall policy from ipsec interface to internal port that points to the other subnets

GraemeMAuthor

New Member

Hi, sorry i typically use the GUI and not the CLI. If my site-to-site ip address range is 192.168.2.0/24 and 192.168.200.0/24 and the IP address I pickup after i log into the VPN is 192.168.101.90 is these (see pic) where it goes?

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded