Assistance Needed with VPN IPSec Site-to-Client and WAN Public IP Configuration on FortiGate

AndersonHeaders · ‎03-15-2025

Hello,

I have an IPSec VPN site-to-client configured on my FortiGate, and I would like users to use the public IP of my WAN configured on the interface.

I’ve already created a policy from the VPN interface to the WAN with NAT, setting up an IP pool, as my WAN has a /32 subnet.

However, I haven’t been successful with the configuration. Has anyone done this setup and can offer assistance?

I’m using FortiOS v7.4.7 on a FortiGate 90G.

Thank you!

#fortigate

ebrlima · ‎03-15-2025

One question comes to mind. If your WAN interface is configured with a netmask of /32, how does it communicate with its gateway?

Please share a little more detail of your topology so can help you.

In the meantime, you can follow this guide to setup client to site ipsec vpn with fortigate/forticlient:

Eudes Lima

AndersonHeaders · ‎03-16-2025

The connection with the gateway is being made via PPPoE, and the provider gives me the IP/32 along with the other configurations.

The VPN connection is already working. My question is whether I can assign this same public WAN IP to the users connected to the VPN.

Nominate a Forum Post for Knowledge Article Creation