Hi there, bit of a noob here, thanks for your understanding in advance :)
The hardware: Fortiwifi 60f, FS148OE Switch.
The switch is connected via FortiLink and has been authorizes and is showing as online.
I have the gate with a few rules, a VLAN for the switch ports on 10.2.2.0/24
I have setup a IPSEC remote vpn (split).
The VPN can connect no problem and is getting IP and DNS from VPN (using Forti client).
My issue is that I can access network resources - cannot ping either way.
Let me know if more info is needed....
Policy as follows:
config firewall policy
edit 13
set name "vpn_IPSEC_VPN_remote_0"
set srcintf "IPSEC_VPN"
set dstintf "INSIDE_FortiSwitch" --->(10.2.2.0/24)
set action accept
set srcaddr "IPSEC_VPN_range"
set dstaddr "all"
set schedule "always"
set service "ALL"
set logtraffic all
set nat enable
set comments "VPN: IPSEC_VPN (Created by VPN wizard)"
next
end
THE VPN:
IP Version IP v4
Incoming Interface: VOIP_HQ_WAN (WAN-UFB)
Use system DNS in mode yes
Assign IP RANGE 10.2.2.220-10.2.2.228
SUBNET: 255.255.255.0
IPv4 Split Tunnel: yes
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
how about defining your static route? you can try as well SSL VPN as your tool for remote access.
destination: ipsec vpn net
gateway: 0.0.0.0
interface: IPSEC_VPN (VPN Tunnel name)
how about defining your static route? you can try as well SSL VPN as your tool for remote access.
destination: ipsec vpn net
gateway: 0.0.0.0
interface: IPSEC_VPN (VPN Tunnel name)
Thanks for that - worked a treat :)
good to hear it works on your end.
HOW that the destination is ipsec vpn net, in my case i cannt reach local network ressources do i need to put my local network on dest?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1721 | |
1098 | |
752 | |
447 | |
234 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.