Is the above scenario possible?
Site A === site to site vpn === Site B
Site B === site to site vpn === Site C
Site C === site to site vpn === Site A
It is like a network triangle but will it work?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Yes, the scenario you described is possible and commonly referred to as a "mesh" or "triangular" network topology. Each site has a site-to-site VPN connection with the other two sites, forming a triangle of interconnected VPN tunnels. This setup can provide redundancy, load distribution, and multiple paths for traffic to flow.
Using IPsec VPN tunnels on FortiGate firewalls, you can achieve this setup. Here's a brief overview of how it could work:
Site A, Site B, and Site C:
VPN Tunnels:
At Site A:
At Site B:
At Site C:
SiteA, SiteB,SiteC refers to the public IP address on 3 different Fortigates and ideally the the VPN tunnels should form succesfully. Regarding the traffic through these tunnels, whats the LAN subnets behind these sites? Are they overlapping ? Also, do you want SiteA LAN t communicate with Site C via Site B or direct (for other sites as well). We may have to configure the routes/policies based on these requirements.
Yes, the scenario you described is possible and commonly referred to as a "mesh" or "triangular" network topology. Each site has a site-to-site VPN connection with the other two sites, forming a triangle of interconnected VPN tunnels. This setup can provide redundancy, load distribution, and multiple paths for traffic to flow.
Using IPsec VPN tunnels on FortiGate firewalls, you can achieve this setup. Here's a brief overview of how it could work:
Site A, Site B, and Site C:
VPN Tunnels:
At Site A:
At Site B:
At Site C:
Ok but what happens if there are overlapping internet segments?
Is there a solution to it?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.