- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
VPN IPSEC - Client can't connect to other site
Hi there,
need help please.
we've configured 2 networks connected under VPN IPSEC. both use Fortigate appliance, firmware 5.6.x (forget exact version).
site_1 use dynamic IP Public, and fortigate ddns.
site_2 use IP Private (Behind NAT, basically has IP Public, but locked by Provider, must use their own Router).
VPN connect successfully. but the issue are:
1. Site_2 can only use zero/thin client computer to connect network site_1 (basically, use Remote desktop technology to connect server on site_1).
2. while use PC / standalone computer on site_2, that PC can't:
- browse network on site_1
- access remote desktop to server on site_1
- from site_1, also can't detect computer on site_2
kindly please help how to solve this.
thank you.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello,
This VPN is routed based or policy based, if you create the vpn with de wizard is routed based and you need to confirm that you have the following:
- Policy in (LAN to VPN interface) NAT Disable
- Policy out (VPN interface to LAN) NAT Disable
- static route (destination remote lan and select VPN interface)
Also you can do a debug flow from site 2 fortigate to look how the traffic is being redirected.
Sorry for my bad english.
Regards.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
hi,
thank you for your advice.
for the policy, refer to fortigate on site_2?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
hi makco,
sorry for long feedback.
already to do so, for policy and static route.
however, still can't work. any advice?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
did you resolve it? i have same problem.
I have two sites connected using Site-to-Site.
I've configured site1 with SSL-VPN, it's working properly, i can enter remotely but I have only contact with Site1, Site 2 is unreacheable remotely.
What can I do?? Please helpp