Skip to main content
Gamba
Gamba
New Member
June 20, 2016
Question

VPN with same subnet

  • June 20, 2016
  • 1 reply
  • 17687 views

Hi everybody,

 

I need to create a new VPN IPSec site-to-site on my forti.

 

The problem is that I have already a VPN with the same subnet.

 

Main site : 192.168.10.0/24

 

Remote site : 192.168.1.0/24

New site : 192.168.1.0./24

 

I've seen the documentation about the "overlapping subnet" but it's not exactly what I need.

 

I can't change the IP's on the remotes sites (another companies)

 

Thanks for your help

 

G.

1 reply

dominikw
dominikw
New Member
June 20, 2016
http://kb.fortinet.com/kb/microsites/search.do?cmd=displayKC&docType=kc&externalId=12017   or better : http://kb.fortinet.com/kb/microsites/search.do?cmd=displayKC&docType=kc&externalId=FD33872
Gamba
GambaAuthor
New Member
June 20, 2016

Hi dominikw,

 

Thanks for your answer.

 

I've seen this KB, but in my case it's two remote lan and not the main and a remote

 

Tnanks

ponder
ponder
New Member
June 20, 2016

Gamba,

 

If it is the remote LAN that is the same, I would ask the remote end to NAT their entire range over the VPN to your network.  A full 1to1 NAT for every IP to an IP range your network does not know about.  Then your side is a standard VPN setup :)

 

In regards to the documentation you read about VPNs and overlapping subnets, it is roughly what you need to configure -> http://cookbook.fortinet.com/vpn-overlapping-subnets/

 

Thanks,

Ponder.

Terms & ConditionsAccessibility statement