MultiVPN traffic

Started by xadelfakis, September 15, 2023, 04:19:35 AM

Previous topic - Next topic

xadelfakis

Hello!!

i have a request at work which i am struggling to make it work. If anyone can suggest anything, he is more than welcome.

-I have a VPN connection from Azure to a Forcepoint Firewall. This VPN is using a dedicated internet line let's call it Line A.
-I have a Fortigate that all my network is connected on. Fortigate is using a different internet line let's call it Line B.
- There is a back to back connection between Fortigate and Forcepoint with static route which helps clients on my network to access Azure.
Until here all good. Don't ask my why such architecture. This is the request.

Now the problem.
- I have a different site. That site uses a Fortigate as well with its own internet line.
- I have an IPSec VPN between the two Fortigates between the 2 sites.

What i am trying to achieve is giving Azure access to the remote clients under the second Fortigate.

Thank you in advance

x


deanwebb

Why in the world are you doing that? Oh, wait, you told us not to ask that, sorry...  :smug:

Seems to me if the traffic at the different site is defined as "interesting" for the VPN to the Azure then it should bring it all in. The traffic at the different site would also need to be treated as secure to route through the Fortigate to the Azure side, as I presume traffic from the Internet would not be allowed to route that way.
Take a baseball bat and trash all the routers, shout out "IT'S A NETWORK PROBLEM NOW, SUCKERS!" and then peel out of the parking lot in your Ferrari.
"The world could perish if people only worked on things that were easy to handle." -- Vladimir Savchenko
Вопросы есть? Вопросов нет! | BCEB: Belkin Certified Expert Baffler | "Plan B is Plan A with an element of panic." -- John Clarke
Accounting is architecture, remember that!
Air gaps are high-latency Internet connections.