Link to home
Create AccountLog in
Avatar of Bill H
Bill H

asked on

Fortigate 50B Remote Client VPN Setup

I am trying to setup a remote user VPN, and no matter what i do, the clients can connect but they cannot the internal network when doing so. I created phase1/phase 2, and assigned a DHCP of 192.168.4.x to remote users, and my internal lan subnet is 192.168.5.x. They are authenticated but cannot reach anything in the 5.x subnet. I created a firewall policy to allow traffic from the WAN to the Internal LAN, and also from 192.168.4.x to 192.168.5.x, not sure what else to do at this point
Avatar of 2Cs
2Cs
Flag of United Kingdom of Great Britain and Northern Ireland image

No familiar with Fortigate but you need a network translation rule to say that 192.168.4.xxx are on the same network as 192.168.5.xxx.

What rule have you created? What ports, protocols, etc. does it allow?

Al
*network address translation (NAT)
Avatar of iworks-uworks
iworks-uworks

Are you trying to complete a site-to-site VPN? Or a user dial-up VPN?
Can you post a screen shot of your policy setup?
Avatar of Bill H

ASKER

Its a user dial up VPN.

I got it working, by turning off the IP-Sec VPN.
ASKER CERTIFIED SOLUTION
Avatar of Whiterat
Whiterat
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of Bill H

ASKER

Sounds about right