Site to Site VPN Fortigate and Alibaba

Forum|Forum|4 years ago
September 10, 2021
1 reply
1779 views

Hi All,

I have a fortigate 80C and am building a site to site VPN between fortigate and alibaba, I followed the following tutorial:

https://docs.fortinet.com...d-alicloud-vpn-gateway I have followed all the instructions above. Tunnel between fortigate and alibaba is up but I can't access/ping from local ip to alibaba VPC, strangely from VPC can connect to my local subnet.

Please advice, thank you very much.

abarushka

Staff

Hello,

I would recommend to collect debug flow and traffic sniffer in order to check whether traffic is reaching FortiGate, entering the tunnel and return traffic. In case there is no return traffic I would recommend to check whether traffic is received on Alibaba site. In case traffic is lost between FortiGate and Alibaba you may consider to decrypt ESP packets. Please find the details by following the link below:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Decrypt-ESP-packets/ta-p/198431?externalID=FD48280

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded