Hi,
I have cisco cucm on Head Office and Branch there is phones also
cucm server ip is 10.0.2.10 and phones are head office also in the same network . And I want phones in branch also in the same network ( it 10.0.2.10 )
Can I achieve these using ipsec vpn
How can i do that ?
second question based on the below attachment
can I use 0.0.0.0 as local subnets and remote subnets
Thanks
that is not possible with IPsec VPN.
an IPsec VPN is between different layer 3 networks.
if you really want this you need to create a streched layer 2 network (via vxlan or l2tp or such)
i would advise you to look into just getting your phones working via layer 3, so allow that the cisco pbx can accept phones in other networks.
Hi,
Why we need tunnel interface for ipsec vpn
Thanks
do don't need it (there is an alternative), but it is quite useful. easy to route to, easy to built policies.
is there a reason you don't want it?
Hi,
What is the benefit if we add tunnel interface and what are alternative
Thanks
you could try a google search yourself also ...
benefits for me include
easy to route to
easy to built policies
most common method with FortiGate, meaning most documentation and example
the alternative is policy based VPN, see: https://docs.fortinet.com...icy-based-ipsec-tunnel
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.