Hi all,
I have an IPSEC tunnel between 2 branches and that is functioning very well. I also have SSL VPN setup at my Head Office where users can access office resources remotely.
The predicament I have found now is that I am unable to get the SSL users to access the remote office resources over the ipsec tunnel.
I have added the SSL subnet to the IPSEC tunnel as well as the Firewall Policy but still not able to see or access the remote office.
Any suggestions?
Thanks
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello,
Make sure that you have these things configured correctly:
Add subnet of remote branch to SSLVPN - if using split-network
Phase2 - with correct source/destination subnets including your SSLVPN subnet
Valid firewall policies - on the HQ, from ssl.root (example for root vdom) to Ipsec
And double-check that remote-branch installed subnet of SSLVPN into routing-table so the traffic will not be dropped.
After this, try packet captures/debug flows on HQ and remote branch and see where traffic stops.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1640 | |
1069 | |
751 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.