Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ReMad
New Contributor

VPN works from site 1 to site 2 but fails from site2 to site1

Dears VPN works from site 1 to site 2 but fails from site2 to site1 What i see in site2 that the internal Port (( Port1)) has many configurations Please advise if thats the reason or not config router static edit 2 set device " port10" set gateway 83.111.32.57 next edit 3 set device " port1" set dst 10.163.240.0 255.255.255.0 set gateway 10.163.240.1 next edit 5 set device " port1" set dst 10.163.244.0 255.255.254.0 set gateway 10.163.240.1 next edit 8 set device " port1" set dst 10.163.240.0 255.255.248.0 set gateway 10.163.240.1 even the policy specifies all to all Thanks
ReMad
ReMad
3 REPLIES 3
rwpatterson
Valued Contributor III

All those routes specify default distances. You need to let the default gateway have the highest distance since it' s the destination of last resort. (Default unless specified is 10. Usually I set my VPN distances to 5.)

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
ReMad
New Contributor

rwpatterson
Thanks rwpatterson so do you think that is the issue ? please advise on the Command / GUI option to select for that Thanks
ReMad
ReMad
rwpatterson
Valued Contributor III

At site 2, cruise into the GUI and under router monitor, look at what routes are available. There should be one for each tunnel and then your default with a higher distance.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
Top Kudoed Authors