Hi there, bit of a noob here, thanks for your understanding in advance :)
The hardware: Fortiwifi 60f, FS148OE Switch.
The switch is connected via FortiLink and has been authorizes and is showing as online.
I have the gate with a few rules, a VLAN for the switch ports on 10.2.2.0/24
I have setup a IPSEC remote vpn (split).
The VPN can connect no problem and is getting IP and DNS from VPN (using Forti client).
My issue is that I can access network resources - cannot ping either way.
Let me know if more info is needed....
Policy as follows:
config firewall policy
set name "vpn_IPSEC_VPN_remote_0"
set srcintf "IPSEC_VPN"
set dstintf "INSIDE_FortiSwitch" --->(10.2.2.0/24)
set action accept
set srcaddr "IPSEC_VPN_range"
set dstaddr "all"
set schedule "always"
set service "ALL"
set logtraffic all
set nat enable
set comments "VPN: IPSEC_VPN (Created by VPN wizard)"
IP Version IP v4
Incoming Interface: VOIP_HQ_WAN (WAN-UFB)
Use system DNS in mode yes
Assign IP RANGE 10.2.2.220-10.2.2.228
IPv4 Split Tunnel: yes
Go to Solution.
how about defining your static route? you can try as well SSL VPN as your tool for remote access.
destination: ipsec vpn net
interface: IPSEC_VPN (VPN Tunnel name)
View solution in original post
Thanks for that - worked a treat :)
good to hear it works on your end.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.