Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
nateriver
New Contributor

Site to Site VPN Fortigate and Alibaba

Hi All,

I have a fortigate 80C and am building a site to site VPN between fortigate and alibaba, I followed the following tutorial:

https://docs.fortinet.com...d-alicloud-vpn-gateway I have followed all the instructions above. Tunnel between fortigate and alibaba is up but I can't access/ping from local ip to alibaba VPC, strangely from VPC can connect to my local subnet.

 

Please advice, thank you very much.

1 REPLY 1
abarushka
Staff
Staff

Hello,

 

I would recommend to collect debug flow and traffic sniffer in order to check whether traffic is reaching FortiGate, entering the tunnel and return traffic. In case there is no return traffic I would recommend to check whether traffic is received on Alibaba site. In case traffic is lost between FortiGate and Alibaba you may consider to decrypt ESP packets. Please find the details by following the link below:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Decrypt-ESP-packets/ta-p/198431?externalID...

 

 

FortiGate
Labels
Top Kudoed Authors