Re: Unable to ping IPsec VPN connected workstations from any internal devices on my networ
I just wanted to update this forum with the solution to my original issue.
(I had to open a case with support, to get this resolved)
Turns out that all my routes and IPv4 Policies were setup just fine.
My issue was caused by the "net-device" feature of my IPsec tunnel that was set to "enable".
I simply had to set to "disable", in order to fix my issue, like follow:
config vpn ipsec phase1-interface
set net-device dis
After that, I was able to ping and traceroute the PCs of my remotely VPN connected users.
In FortiOS 6.0 branch net-device feature is only available for dial-up tunnels.
"enable" Creates a kernel device for every dialup instance.
"disable" Does not create a kernel device for dialup instances.
If enabled, the VPN will be creating individual interfaces.
It might create problems in handling the policy routes...
Hope this helps anyone else that had the same issue as mine.