Hi all, I have a IPSEC Tunnel Site-to-Site, but I'm unable to connect at the WEB GUI on port 4443 of the other Peer remote Gateway. The Tunnel is UP and SA negotiate correctly with encrypt and decrypt packets but I'm unable to connect WEB GUI of the other Peer remote Gateway.
Ping to internal Host it's working fine, but I'm not pinging the port internal of the remote Peer Gateway of the internal host that's work fine. Someone kindly, would help Me to understand the reason of this issue.
Regards in advance.
Danilo
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello,
Do firewall policies allow traffic to the host on port 4443? The object "all" on the "services" filed of the firewall policy not always permit everything.
You can ping the remote gateway but can't access it on port 4443?
IF remote FG has admin-port set to 4443 then what is left to check is
trustedhostsettings there to make sure it includes your source IP address via IPsec tunnel.
Thanks to all for Your answers.
I cannot ping the remote gateway and obviously the WEB GUI unreachable, but I can ping the internal host.
I setting up my Source IP address via IPsec Tunnel and I checked the trustedhost.
I thought of reboot firewall.
I hope to resolve.
Regards
Danilo
Hi,
is CLI/SSH OK ? check admin-sport in system global, or test without redirect from HTTP to HTTPS, check flow debug if you are allowed to pass from tunnel and access GUI from inner interfaces.
Tomas Stribrny - NASDAQ:FTNT - Fortinet Inc. - TAC Staff Engineer
AAA, MFA, VoIP and other Fortinet stuff
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1707 | |
1093 | |
752 | |
446 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.