Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
abdo_4025
New Contributor

route website to ipsec vpn site to site

hello community hope you are doing well

 

please can anyone help me get a solution

i have a two sites one in Africa and the second in Europe connected through vpn ipsec.

i have a client website that is have a ip restriction that block not EU public ip 

so i add the public ip of this site in phase 2 as remote ip and add static route to ipsec and do the same thing in other side now is it working.(in this case website have only one public ip).

but i believe that there's another way to configure that and resolving this issues

have you any advice

 

thanks in advance.

1 REPLY 1
Markus_M
Staff
Staff

Hello Abdo,

 

for the site to work through a tunnel, on both ends the phase2 selectors must be containing the other ends nodes, so siteA with the server must contain the network of site B that has the client, vice versa. Additionally, you need routing in place.

 

The only other way to access the site would be outside the tunnel, like the site is available via Internet. Create a static route for that site IP(s) to route traffic to the site outside.

 

Best regards,

 

Markus

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors