Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
luks
New Contributor

Created on ‎05-16-2019 04:25 AM

Accessing an Azure site-2-site connected webserver via fortigate

Hello,

I have a problem with port forwarding on Fortigate to an Azure webserver. The Azure network is connected via a site-2-site VPN and I would like to have it accessible from the internet. I think that the problem is with the VPN tunnel between Fortigate and Azure.

With the servers located on the local subnet I have no problems at all.

 

Here is how it all works:

Green lines are LAN\VPN connections - all work fine. Black line - connection through WAN - all good

Red line - packets forwarded from internet by forti to azure  - does not work

Preview file
15 KB
1693
0 Kudos
1 REPLY 1
Toshi_Esumi
SuperUser
SuperUser

Created on ‎05-16-2019 11:18 PM

Two possible problems I can see

1. site-to-site VPN to Azure network is limited by phase2 selectors. Need to be 0/0<->0/0

2. Azure side doesn't have a default route pointing into the site-to-site VPN to get back to the internet sources.

921
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.