IPsec Route Based VPN and remote VTI

Author
Michaelwright1900
New Member
  • Total Posts : 2
  • Scores: 0
  • Reward points: 0
  • Joined: 2020/08/28 11:46:24
  • Status: offline
2020/09/27 14:38:16 (permalink)
0

IPsec Route Based VPN and remote VTI

Hiya I've created several IPsec tunnels now between FortiGate and different vendors but have never been able to ping the Remote VTI interface across the tunnel is this possible? I ask the question because instead of advertising subnets from the remote site I want to use the remote VTI to do some dst-nat to remote devices instead. How it this possible if I cant ping or communicate with the remote vti. The tunnel is up and can reach remote subnets in example I have.
#1

1 Reply Related Threads

    Toshi Esumi
    Expert Member
    • Total Posts : 2284
    • Scores: 219
    • Reward points: 0
    • Joined: 2014/11/06 09:56:42
    • Status: offline
    Re: IPsec Route Based VPN and remote VTI 2020/09/27 20:14:50 (permalink)
    0
    It's just a tunnel interface if you configured interface mode/route based IPSec on the remote side. As long as the returning route to the ping source is routine into to tunnel on the remote side, I don't see any reason not to be able to ping it through the tunnel regardless it's a FGT or other vendor's FW/router.
    #2
    Jump to:
    © 2020 APG vNext Commercial Version 5.5