Hi,
I am trying to establish a site-to-site IPsec VPN between a TRB140 (GSM/WAN) and a FortiGate firewall. I have two specific requirements, but I am facing routing issues:
1. Full Tunneling: I want the TRB140 to use its GSM/WAN connection only to establish the VPN tunnel. All other traffic (Internet, DNS, etc.) must be routed through the IPsec tunnel to the FortiGate. 2. Remote Access: I need to access the TRB140’s WebUI remotely via its WAN IP while the tunnel is active.
Current Problem: The IPsec tunnel status is “UP”. However, as soon as I enable “Default Route” under the IPsec settings on the Teltonika side:
-
The TRB140 loses connectivity.
-
I can no longer ping the device or the tunnel peers.
-
The IPsec connection becomes unreachable/unstable.
Setup Details:
-
Device: TRB140
-
Firmware: [Buraya Firmware Sürümünüzü Yazın - Örn: RUTOS 07.06]
-
Tunnel Type: IPsec (IKEv2)
-
FortiGate: Acting as the VPN Headend.
How can I correctly configure the routing and firewall rules to force all traffic into the tunnel without losing management access to the device itself? Do I need to create a specific Static Route or Metric adjustment for the WAN interface?
Thanks in advance!