Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
mod
New Contributor

Remote Access IPSec VPN host can not reach remote network resources

Hi everyone..

I need help in this case, and any help will appreciated.

When configuring IPSec VPN in FortiGate firewall and the the remote host connected to the FortiGate using FortiClient, the remote host can not reach to the remote network resources.

Thanks

1 REPLY 1
vbandha
Staff
Staff

Do you see the tunnel coming up?

You can use these to find out if phase 1 and phase 2 are connected:
https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-IPsec-VPNs-tunnels/ta-p/195955

If both phase 1 and phase 2 are coming up, it is possibly an issue with the firewall policy.
You have to make 2 firewall policies:
IP Sec interface--> Internal Resource
Internal Resource ---> IP Sec interface.

Also, ensure the Phase 2 selectors in the IP Sec tunnel are correctly configured.
Here is another article that gives more detailed instructions:
https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Troubleshooting-IPsec-Site-to-Site-T...

 

Hope that helps

Thanks

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors