Hello everyone... I'm supporting a client for an ipsec vpn setup..I have
configured everything right.the tunnel is up both phase 1 and phase
2...I have done the necessary routing and policies and everything looks
fine The remote addresses on the phas...
Hello everyoneI'd like some insight on the followingI have two
fortigates in a cluster both in A-A. Sync is working fine, the links
from the cluster are terminating on a switch. Ideally, what i would have
done is configure a port channel and set a ra...
Hello allI'd like some insight on thisCurrently we have an IPsec tunnel
between two sites, site A is the client and site B is the service
provider, there is an application server and web server on site B. On
site B, the tunnel has the local address t...
Hello everyone Policy route did not do the trick..one of my colleagues
advised changing the route metric of the sdwan zone to a higher one and
changing the metric of the IPSec interface route to a metric lower than
that...I believe this will do the t...
We had a Tshoot session with TAC earlier and he took some log files and
conf file for analysis. I cannot ping the remote address from the
firewall itself..the topology looks like this for the outgoing traffic
internal server..>ip pool (overload nat) ...
Hi ..Due to some privacy concerns I cannot share them..the incoming
policy routes should have the outgoing interface as the lan interface
and outgoing policy route should have the outgoing interface as the sd
wan member interface. Right?
