ER605 VPN Router
Hi,
I have a little problem with a ipsec tunnel.
I connect from my router to a Fortigate 100E firewall.
Without problems i can set up my ipsec tunnel, but it only works for 1 remote subnet.
When I add a second one than this subnet is not reachable.
If I change the sequence of my 2 remote subnets, than it it's the other one who isn't accessable.
If I do a tracert to a device in the second remote subnet, he goes outside en not through de ipsec tunnel.
Any idea what goes wrong?
A bug?
kind regards,
Frederik
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
I have the same problem against Cisco firewalls, I solved this by creating a VPN profile for each subnet on ER605. you must use the same encryption and password on all tunnels to make it work.
- Copy Link
- Report Inappropriate Content
EDIT
- Copy Link
- Report Inappropriate Content
This is a bit of a strange question, how exactly is the subnet set up?
Is it on the same network segment as the DHCP address pool or is it on a different segment?
Can you give an example and describe it briefly?
Does Unreachable mean that the second VPN tunnel cannot be set up?
Do you want to build two IPsec VPNs between ER605 and Fortigate 100E firewall?
What is the need for such a setup? I'm a bit curious as to why it's used in this way? To use as a backup?
- Copy Link
- Report Inappropriate Content
Didn't work: The local subnet and remote subnet cannot overlap with those of existing Ipsec VPN policies.
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 1027
Replies: 6
Voters 0
No one has voted for it yet.