In this article we will show you, how you can route traffic from one client, range, or entire subnet via a VPN.
Situation:
You have Site A and Site B.
These sites are connected using either site to site VPN or via VTI. You need to send traffic from a particular IP, a range, or a subnet that's connected to site A via the public IP of site B.
Solution:
In this solution, we will have a look at how to do it with one IP address. For a range or a subnet it is the same, but using other object types.
1. find the needed IP address and create new objects on both sites for this:
Do this on both sites.
2. on site A, create a new routing policy like this:
Make sure, that you have chosen the source IP correctly.
3. on site B create the corresponding backroute:
Test the result
After the routes have been enabled, check the result using a public IP check.
Before:
After:
Comments
0 comments
Please sign in to leave a comment.