Hi
We want to setup site to site vpn between our fgt(200f) and our branch fgt (200e) . Hq fgt version is 7.6 and branch version is 6. We want to connect to only one server from branch and they will connect to one of servers too. In HQ, we have subnet overlapping when i want to insert remote ip but on the branch side they do not have any overlapping problem. How can i solve that?
Hi,
You may follow on below KB and just follow the VIP configuration on the peer with overlapping subnet.
Thanks,
What is the difference between these two tutorials?
Hi Rezafathi
Both are same
Its a documentation from the Firmware Release Notes:
https://docs.fortinet.com/document/fortigate/7.6.0/administration-guide/426761/site-to-site-vpn-with...
It's a KB articles was created by one of Technical Engineer, and tested in our environment
Thanks. In one of them uses nat for both directions but in another it only uses nat for outgoing direction. I am confused
Hi Rezafathi
Follow the kb articles:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-configure-an-IPsec-tunnel-with-Over...
Inbound traffic and outband traffic with VIP configuration they have enable NAT on the Kb articles:
In the Documentation there is not VIP mentioned on the Policy, so it's not added.
Created on 11-08-2024 01:25 AM Edited on 11-08-2024 04:05 AM
Why there is no ip pool configured in kb? Also vip is mentioned on other document.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.