Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
pginete
Staff
Staff

Created on ‎08-14-2024 12:35 AM

Article Id 332979

Troubleshooting Tip: Cannot access the internet via dialup IPsec VPN tunnel when connected to WiFi

Description

This article describes how to fix the inability to access the internet via dialup IPsec VPN tunnel when connected to WiFi.
Scope

FortiGate, FortiAP.
Solution

Internet via dialup using WiFi.png

 

The users cannot access the internet when connected via WiFi but can access the internet when connected via LAN. Below are the firewall policies configured on FGT1 and FGT2.

 

  • FGT1:

 

FGT1-policy-NAT-disabled.JPG

 

FGT2:

 

FGT2-policy.JPG

 

To fix it, add an IP address on the VPN tunnel interface of both FGT1 and FGT2.  

 

FGT1 tunnel IP.JPG

 

FGT2 tunnel IP.JPG

 

Enable the NAT in the firewall policy of FGT1 to fix the issue.

 

FGT1-policy-NAT-enabled.JPG

 

178
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.