I'm setting up two new Fortigate 60F devices, one at a head office and the other at the branch office. Using the VPN IPsec wizard I created IPsec tunnels on each and it shows status: up.
However, from a computer at the branch office I cannot access IPs on the head office network (for example, 192.168.20.20) but I can reach the head office Fortigate (192.168.20.1).
Is there another step I need to do?
Thanks.
might mean that you are missing some policy on at least one side?
You have to have a policy to allow branch to head office on both sides!
You already seem to have the required route(s) as you can reach the FGT at head office from branch side.
Also some flow debug on both sides might show you what happens (or does not happen)...
--
"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.