VPN : hub and spoke can't join remote networks

Hello,

I have a hub and spoke with three spokes.

Everything is ok, clients from spokes networks can join each other and to the central network (ping, AD, SMB, DNS).

From central, everythings is ok too.

BUT ,

from hubs and spokes CLI, i can't ping nothing but the local network.

one hub can't ping other hub and ping other machine on a hub network or central network.

For example, i can't redirect a hub log flow to the central syslog server.

Can you help me?

Thanks.

Best answer by Jirka1

Hi,

search...

Explorer II

Hi,

search...

New Member

sigmasoftcz wrote:
Hi,
search...
https://help.fortinet.com...iginated%20traffic.htm

Thank you very much that's it!

I mark you post as aswer.

New Member

sigmasoftcz wrote:
Hi,
search...
https://help.fortinet.com...iginated%20traffic.htm

I saw your link but unfortunately not helpfull because self-originated traffic does not seems to take ICMP.

My issue is that the fortis units (hub and spokes) can only join their local networks.

Clients in differents networks can communicate. IP SEC VPN is ok, but forti units not.

I hope my description is clear.

Thanks for help.

Sign up