Site2Site: Hybrid layer3 and layer2

I have a working layer3 VPN between two sites. Both sites have several subnets.

For a specific application I need a layer2-vpn with the same subnet across the VPN.

As I understand will it is not be possible to define multiple VPN's between same endpoints.

Can I define a Layer2-VPN inside the Layer3-tunnel with using internal IP's as endpoints in both ends?

Are there any other way to make this work?

New Member

Hello,

What you need is called VXLAN.

Fortigate supports the encapsulation of Layer 2 packets inside an IPSec tunnel...

Regards,

HA

New Member

HA wrote:
What you need is called VXLAN.
Fortigate supports the encapsulation of Layer 2 packets inside an IPSec tunnel...

Thanks; my issue is that I also need a Layer3-VPN to route different subnet between the 2 sites.

Yngve

Sign up