Dears,
kindly guide me how to establish vpn
from Mikrotik behind nat (isp router)and using dynamic ip to fortinet with static ip.
thanks.
No crystal balls here… unless you’ are a more specific it will be impossible to help you out.
Which VPN service is the Fortigate running? SSTP? L2TP?
Dears,
since i am new with mikrotik and dont have much info about other side (fortigate side). it will be ipsec-ike
options they provide -
- fortigate dailup
- vpn tunnel with pre-shared key
Fortigate side have static IP address
Mikrotik. behind nat with dynamic ip address from ISP
since i am new with mikrotik and dont have much info about other side (fortigate side). it will be ipsec-ike
options they provide -
- fortigate dailup
- vpn tunnel with pre-shared key
First thing you should do is find if fortigate supports SSTP or L2TP/IPSec.
Regular IPSec won’t work behind NAT with a dynamic IP.
i will check with service provider and update
Dears,
L2TP/IPSEC is enabled now. i created l2tp interface on mikrotic and connection is established. but no traffic and no ping on fortgate side network.
You need to add routing to specify which destination addresses should be sent via the tunnel, on both mikrotik and juniper.
Unless you provide ip addressing details of both sites it won’t be possible to provide especific advice/commands.
Fortigate 10.10.10.X side (with Real IP)
Mikrotik 192.168.88.X Side (Dynamic IP)
thanks for you help in advance
Let’s say tunnels IPs are 10.1.1.1 on Fortigate side, and 10.1.1.2 on Mikrotik side.
You need to add routing on
Fortigate:
192.168.88.0/24 gateway 10.1.1.2
Mikrotik:
10.10.10.0/24 gateway 10.1.1.1
could you give config example or a link with enough details.
thanks.