hi there,
need help please. I need to configure VPN SSL. the issue is ISP only provide private IP.
therefore, in vpn ssl setting, system listen to <private IP>:<port vpn ssl>
please help.
thank you
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Regardless SSL VPN or IPSec VPN, packets from the remote clients need to reach your FGT either with a public IP or port forwarding from the ISP's NAT device as papapuff described.
Your ISP will need to do port forwarding for you to make that work. As far as I know there is absolutely no way around this. You would then need to program your clients to connect to your true public IP, which would then be forwarded by your ISP to you and connect to your VPN.
I would try negotiating with the ISP to provide an additional /30 or /29 public subnet. Then they might offer a different type of circuit delivery only for business custmers that allows a static public IP on the main interface.
hi. thanks for advice.
for negotiation with the ISP, it couldn't. they will offer another products.
anyway, so it's mean vpn SSL applicable only for IP Public, am I correct?
Regardless SSL VPN or IPSec VPN, packets from the remote clients need to reach your FGT either with a public IP or port forwarding from the ISP's NAT device as papapuff described.
thanks Toshi.
appreciate for the answer.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.