Hello
I'm a bit lost now, i have this setup:
(Internet) -> [Stormshield SN900] -> [FortiGate] -> (LAN)
I have a dialup IPSec VPN configured on the FortiGate to provide remote access for my users .
On my Stormshield i have a dedicated public IP, on which i NAT udp500 and 4500 to the FortiGate. The thing is, i had to source Nat as well, so the FortiGate only sees the IP of the Stromshield as IPSec peer, not the remote public IP.
However, is have some small loss of packet when using the VPN (RDP dropping, mail server disconnected etc...) but the VPN remains UP all time.
I've tried to tweak the TCP MSS but no changes.
Can the source NAT be a problem there?
No comments:
Post a Comment