i use fortigate-40c i have problem to configure VPN site to site with same rang of IP addresses like image in attachment , can you give me the configuration steps.
i have already configured this architecture of vpn with a different range and it work fine.
thank you.
Do a search on vpn and overlap subnets. There's numerous posts and examples, but bottom line someone or both is going to have to do NAT. Your better off in the long run if office #1 & #2 is in your control, to re-address one office local subnet. If you ever add more office and need access form office-X to office-1 and office-2, than this will lead into more complex nat and a complex network environment just my 2cts.
but think hard about re-addressing
PCNSE
NSE
StrongSwan
thank you,
my case is to configure video monitoring network.
my first configuration i used subnet 192.168.101.0/24 on office1 and subnet 192.168.102.0/24 on office2 everything is OK tunnel is up and i can show all cameras in both office (web access).
but now i need to use the same subnet (192.168.101.0/24) between offices 1 and 2 because i have video streaming server on office1 (192.168.101.100) that all cameras must connect to it from different location (office1 and office2) in this case what should i do?
rq : my video streaming server accept only one subnet
no idea.....!!
I would keep a different subnet at the Office2 location and use Destination NAT at Office1 to talk to the remote cameras. This is done by using VIPs, translating e.g. 192.168.101.15 to 192.168.102.15.
What do you think?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.