Hi all, Scenario:Two site, each with a fortigateSite A and Site B
connected via BGPSite B gets main internet access through a default
route advertised by Site ASibte B also as a Fortiextender (4G) for
backup WAN with a Public IP (static route with hi...
Hi, I have FortiClient EMS, FortiManager, and several FortiGates in my
environment.EMS is connected to each FortiGate and showing "connected"
in the Fabric Connectors;In EMS I configured classification tags to some
users;In FortiManager, I have a Glo...
Hi all, I have a setup with Fortiauthenticator (v6.6.0) and Fortigate
401F (v7.2.9), where FAC is fed by an openLDAP, and I use remote user
sync rules to add users to groups created of FAC. The thing is, I have
several groups created on FAC, however ...
Yes that way it will also work as I also mentioned in the beggining
("Setup is proven to be working as when I do a specific static route to
my public IP I can reach site B Fortigate (ping and VPN).") So I will
just assume that this is not possible :(...
It will connect, but it will be de default route for everyone else,
while the goal is:- Default must be imported by BGP from site A- VPN
should still be able on the backup interface on site B
Hi syordanov, Thanks for your reply. I am aware of that, however I was
trying to find a way for me to connect to the VPN which is listening in
the backup wan interface.
Yes I think that is the issue, that's why I tried it with the PBR but
for some reason the traffic seems not to match the policy. Routing
table:SBG-FW-LB-MGMT-02 $ get router info routing-table details
"my_public_ip" Routing table for VRF=0 Routing en...
Hi AEK, thanks for your reply. I tried that at the beginning, but the
connection doesn’t go through. In the logs, I can see the reserve path
check failing — I assume it’s because it tries to go “out” through the
main WAN, which has its route installe...
