Page 1 of 1

Hub and Spoke Ipsec VPN Help

Posted: Thu Oct 17, 2013 4:03 am
by jml
Hi,
I'm trying to set up a hub and spoke VPN between 3 sites with a Fortigate Concentrator as the hub.
I can establish a VPN tunnel from my spoke at 192.168.1.0/24 using an aggregate subnet of 192.168.0.0/16 (all my other sites are in that block).
However, once the VPN tunnel is up, there is no longer LAN access to the Mikrotik at 192.168.1.1 from any PCs in the 192.168.1.0/24 subnet and 192.168.1.1 does not ping back either.
Is there a way to fix this issue? Or is this just a property of using an aggregate subnet?

Thanks.

-- James

Re: Hub and Spoke Ipsec VPN Help

Posted: Fri Oct 18, 2013 5:17 pm
by jml
Any ideas on this?
This seems like incorrect VPN behavior, since traffic appears to not be being routed back to the source machine from the router itself.

Thanks.