Hello,
I have a question, can I access to multiple network throught IPSEC VPN forticlient. There is the schéma infrastructure:
LAN A --------------FGT A----------------VPN IPSEC site to site--------------------------FGT B-----------------LAN B
192.168.1.X/24 192.168.1.1 192.168.2.1 192.168.2.X/24
|
|
|
|
IPSEC VPN Forticlient
192.168.3.x/24
VPN site to site working normally
When I am connected to VPN Forticlient with IP address 192.168.3.10 (For Example), I have access to network 192.168.1.0/X,
but i have no access to network 192.168.2.X/24.
I try to have somes policies, routes, etc.., still not working.
Any ideas on the question
just as addition: if you enable split tunneling in ipsec p1 mode config you can also select an adressgroup object there to access more than one subnet. That's the way I do it here.
Thus this still will require policies to allow the traffic but they don't need to be ipsec poicies this way.
Also I am not sure if an ipsec policy without split tunneling will do the trick. The client still needs to get routes to the subnets...
--
"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.