HELP - VPN SSL with WAN private IP

papapuff · ‎12-06-2018

hi there,

need help please. I need to configure VPN SSL. the issue is ISP only provide private IP.

therefore, in vpn ssl setting, system listen to <private IP>:<port vpn ssl>

please help.

thank you

Toshi_Esumi · ‎12-06-2018

Regardless SSL VPN or IPSec VPN, packets from the remote clients need to reach your FGT either with a public IP or port forwarding from the ISP's NAT device as papapuff described.

View solution in original post

lobstercreed · ‎12-06-2018

Your ISP will need to do port forwarding for you to make that work. As far as I know there is absolutely no way around this. You would then need to program your clients to connect to your true public IP, which would then be forwarded by your ISP to you and connect to your VPN.

Toshi_Esumi · ‎12-06-2018

I would try negotiating with the ISP to provide an additional /30 or /29 public subnet. Then they might offer a different type of circuit delivery only for business custmers that allows a static public IP on the main interface.

papapuff · ‎12-06-2018

hi. thanks for advice.

for negotiation with the ISP, it couldn't. they will offer another products.

anyway, so it's mean vpn SSL applicable only for IP Public, am I correct?

Toshi_Esumi · ‎12-06-2018

Regardless SSL VPN or IPSec VPN, packets from the remote clients need to reach your FGT either with a public IP or port forwarding from the ISP's NAT device as papapuff described.

papapuff · ‎12-06-2018

thanks Toshi.

appreciate for the answer.