hello community hope you are doing well
please can anyone help me get a solution
i have a two sites one in Africa and the second in Europe connected through vpn ipsec.
i have a client website that is have a ip restriction that block not EU public ip
so i add the public ip of this site in phase 2 as remote ip and add static route to ipsec and do the same thing in other side now is it working.(in this case website have only one public ip).
but i believe that there's another way to configure that and resolving this issues
have you any advice
thanks in advance.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello Abdo,
for the site to work through a tunnel, on both ends the phase2 selectors must be containing the other ends nodes, so siteA with the server must contain the network of site B that has the client, vice versa. Additionally, you need routing in place.
The only other way to access the site would be outside the tunnel, like the site is available via Internet. Create a static route for that site IP(s) to route traffic to the site outside.
Best regards,
Markus
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1709 | |
1093 | |
752 | |
446 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.