troubleshooting Question

Fortigate Routing

Avatar of iamdieter
iamdieterFlag for South Africa asked on
* Fortigate* dns recordsVPN* Policy Based Routing
2 Comments1 Solution97 ViewsLast Modified:
Good day

We have a number of branches and in one country specifically we have X3 branches. out of the 3, one brach acts as the head office for that specific country (branch A). The other X2 branches have site to site IPSec tunnels to Branch A. In return Branch A has an IPSec tunnel to our Head Office. So from the other two office we only allow traffic to and from Branch A and not the Head office for a number of reasons. On both IPSec tunnels we have the internal DNS IP's specified.

We do have an internal portal which should be accessible from both the other two branches, which is hosted at the Head Office and accessible via URL. When you ping the URL it uses internal DNS and resolves to the internal IP.

How do we force the traffic for the portal to go via the internet and not the IPSec tunnel? At the moment we have an entry in the host files of the PC's which is a work around and not ideal.Any idea how we can have the traffic routed differently for the specific URL they need to access?
ASKER CERTIFIED SOLUTION
Soulja
Sr.Net.Eng
Join our community to see this answer!
Unlock 1 Answer and 2 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 2 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros