MultiVPN traffic

xadelfakis · September 15, 2023, 04:19:35 AM

Hello!!

i have a request at work which i am struggling to make it work. If anyone can suggest anything, he is more than welcome.

-I have a VPN connection from Azure to a Forcepoint Firewall. This VPN is using a dedicated internet line let's call it Line A.
-I have a Fortigate that all my network is connected on. Fortigate is using a different internet line let's call it Line B.
- There is a back to back connection between Fortigate and Forcepoint with static route which helps clients on my network to access Azure.
Until here all good. Don't ask my why such architecture. This is the request.

Now the problem.
- I have a different site. That site uses a Fortigate as well with its own internet line.
- I have an IPSec VPN between the two Fortigates between the 2 sites.

What i am trying to achieve is giving Azure access to the remote clients under the second Fortigate.

Thank you in advance

x

deanwebb · September 18, 2023, 01:40:58 PM

Why in the world are you doing that? Oh, wait, you told us not to ask that, sorry...

Seems to me if the traffic at the different site is defined as "interesting" for the VPN to the Azure then it should bring it all in. The traffic at the different site would also need to be treated as secure to route through the Fortigate to the Azure side, as I presume traffic from the Internet would not be allowed to route that way.

MultiVPN traffic

xadelfakis

deanwebb