Accessing an Azure site-2-site connected webserver via fortigate

Author
luks
New Member
  • Total Posts : 1
  • Scores: 0
  • Reward points: 0
  • Joined: 2019/05/16 03:47:29
  • Status: offline
2019/05/16 04:25:12 (permalink)
0

Accessing an Azure site-2-site connected webserver via fortigate

Hello,
I have a problem with port forwarding on Fortigate to an Azure webserver. The Azure network is connected via a site-2-site VPN and I would like to have it accessible from the internet. I think that the problem is with the VPN tunnel between Fortigate and Azure.
With the servers located on the local subnet I have no problems at all.
 
Here is how it all works:
Green lines are LAN\VPN connections - all work fine.
Black line - connection through WAN - all good
Red line - packets forwarded from internet by forti to azure  - does not work



Attached Image(s)

#1

1 Reply Related Threads

    Toshi Esumi
    Expert Member
    • Total Posts : 1501
    • Scores: 128
    • Reward points: 0
    • Joined: 2014/11/06 09:56:42
    • Status: offline
    Re: Accessing an Azure site-2-site connected webserver via fortigate 2019/05/16 23:18:33 (permalink)
    0
    Two possible problems I can see
    1. site-to-site VPN to Azure network is limited by phase2 selectors. Need to be 0/0<->0/0
    2. Azure side doesn't have a default route pointing into the site-to-site VPN to get back to the internet sources.
    #2
    Jump to:
    © 2019 APG vNext Commercial Version 5.5