8904 questions

10557 answers

16569 comments

15947 members

+1 vote
236 views 1 comments
by

Dear all,

I'm working with a RUT240, and i'm setting an IPSEC VPN with Fortigate firewall.

The tunnel works good, but only with the first remote IP address inserted.

In "ipsec status" in CLI, i see only the first tunnel opened.

Why the other 3 subnet hasn't a tunnel opened?

Thanks in advance!

by
For this case you MUST use IKEv2 IPSEC. Fortigate can work with several subnets on IKEv1, Teltonika/OpenWRT can not.

1 Answer

0 votes
by
Hello,

Your issue probably comes from the Fortigate at the other end it narrows the scope of allowed addresses in the SA. Check that the leftsubnet field contains all networks you want to route through the tunnel and add the missing ones.

Regards,