Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLAN (ethernet/Wifi/routers/Bluetooth)Fortinet site to site VPN
NetwNZ

13 posts

Geek


#208913 4-Mar-2017 22:53
Send private message

Hello all Geekzoners,

 

I have a query about Fortinet site to site IPsec VPN. I have setup a site to site VPN between 2 sites and traffic is flowing fine here. I can get to hosts on the remote site and vice versa. However when doing a trace route from a host on Site A to a host on Site B (both source and destination are part of the interesting traffic for the encryption domain) I get a hop from Site B's WAN interface. Is this something to worry about?

Create new topic
NetwNZ

13 posts

Geek


  #1730172 4-Mar-2017 23:01
Send private message

It is the penultimate hop (one before the actual host ) I am trying to reach. So second to last hop from host I am trying to reach in the trace route is the actual WAN IP address of the remote site.



kdn

kdn
203 posts

Master Geek
+1 received by user: 7


  #1730307 5-Mar-2017 10:58
Send private message

I have never seen that happen before, but I wouldn't be too worried, if the LAN ips are both internal then they must be encapsulated to be able to see each other. You could always bring the tunnel down and try tracert to confirm you don't get anywhere.

Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright