If you want to have policies with multiple interfaces, you can try it
like that. It is typically better to have single interfaces in each
policy which is why you need a zone. If you prefer the multiple
interface option, you can try it. I'm just not s...
You would use the policy template in option 2. Let's say you have the
default lan or internal interface on your firewall and 2 VPN tunnels to
the 2 remote locations. You will need to create a zone and include both
VPN tunnels in that zone. Then you w...
That makes it easier. I was trying to figure out how to do load
balancing with dynamic IPs, that was a brain teaser. I would say that
there are 2 ways to do this. First, you can use your FortiGate as the
DNS server and forward requests to both DNS se...
Do you want the 2 locations to talk to each other?If so, do you have a
VPN between the two locations, or do you want them to route through the
HQ?If you want to route through the HQ, you will need to set up your
VPNS like this: Cisco Site -> HQ: Cisc...
