Fortinet Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
MaverickLEE
New Contributor

SSLvpn routing thru site to site tunnel to branch office

 

Hi

 

Need some help here.   I have SSL VPN & site to site between branch offices setup.  

I cannot get SSL VPN client to route over to 20.x network.

Please enlighten.

 

 

 

COMMzVPN (1).jpg

2 REPLIES 2
asonay
New Contributor

you need a route on the branch office firewall. 10.10.10.10 -> IPSec Interface

policies as well for the IP or subnet 10.10.10.0

JonasV
New Contributor III

Depending on your setup, you'll need to configure the 10.10.10.x network on phase2 selectors as local network on HQ and remote network on Branch.
Also as @asonay suggested, will you need a route on Branch FW towards 10.10.10.x via the VPN interface between HQ and Branch.
At the end, you need IPv4 policies on HQ and Branch as well to allow traffic ingress / egress between the networks.

I'm assume you use selector based VPN and no dynamic routing between HQ and Branch.

Best regards
Jonas
NSE 4 | NSE 5 | NSE7 |