Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Donglv_
New Contributor III

Created on ‎03-19-2023 09:37 AM Edited on ‎04-04-2023 11:15 PM

[SOLVED] SSL VPN Remote Access Configuration with OSFP

I have set up a OSPF then "Redistribute Connected" for three Ip public: A, B, C and "Redistribute Static" for three IP public E, F, G. Then I create i loopback interfaces - loopback_A, loopback_B, loopback_C, loopback_E,...
Screenshot 2023-03-19 232636.png
- So I can use loopback_A for the public Gateway to create a VPN Site to Site to another Firewall (It's Work), and also Ip A can use for SNAT the local machine to the Internet.

- IPs E, F, G use for DNAT to forward port to local machine, and the loopback_E use for SSL vpn Remote access interface.

The Problem is after i setup ospf, add static root throug ssl.root interface but the ssl vpn client tunel not working. 'Cannot telnet to E:443' 
How can I set up the Public IP to use for SSL VPN Client to site with OSPF, loopback interfaces that I have mention???
Thanks all!

Labels:
1005
0 Kudos
3 REPLIES 3
Anthony_E
Community Manager
Community Manager

Created on ‎03-21-2023 10:30 PM

Hello Donglv_,


Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.


Thanks,

Anthony-Fortinet Community Team.
962
Anthony_E
Community Manager
Community Manager

Created on ‎03-26-2023 10:24 PM

Hello Donglv_,

 

We are still looking for someone to help you.

We will come back to you ASAP.


Regards,

Anthony-Fortinet Community Team.
925
0 Kudos
srajeswaran
Staff
Staff

Created on ‎03-28-2023 01:48 AM

The description looks little confusing, can you add a diagram with with the marking and share more details.

It is not clear on which interface the OSPF neighborship is configured and to whom you are advertising these routes and how it is related to the SSL VPN connection.

The site to site VPN towards LoopbackA- what is the physical interface for this connection.
Adding Static root through ssl.root, whats the destination of this route?
For the SSL connection to LoopbackE, whats the source address and it is reachable via which physical interface?




Regards,
Suraj
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.
906
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.