Hi all. New member here and fairly new to the forti world so please bare
with me if im missing something obvious :) I have a fortigate 60C in my
office and one offsite for remote access. I have IPsec VPN set up
between them and working splendid. Now ...
BTW, the whole setup is similar (if not identical) to the " remote
subnet behind tunnel has same address range as main subnet" scenario
which is treated in the FortiOS Handbook and several KB articles. Thanks
for the tip, il check it out and come bac...
ede_pfau, i don' t think that will do, the two networks have similar
architectures. There are machines on same addresses in both
environments... thats my big headache. Would it be easier to make the
translation on the offsite FTG?
Instead of changing the static route, add a second for the .48 traffic.
The FGT needs to know where the .4 traffic goes, but the LAN user needs
to know where the .48 traffic goes, so both are required. But only one
the .48 route is required to make t...
I changed my VPN to Interface mode. In my policy i changed destination
interface to my tunnel interface and just to check that my tunnel works
i add 172.16.4.0/22 as destination address. I bring up the tunnel and it
goes green I then setup a static r...
Thanks for elaborating with me ede_pfau! I really appreciate it! Ok, i
tested to set .48 subnet in my IPsec policy as destination,, but it
didn' t show up in routing monitor at all.. Sound like Interface mode is
the easiest way to go. If i recreate m...
