Cannot connect to AD server across IPSec VPN...

Question

Trying to connect my XG to AD server across an IPSec VPN connection and getting "Test connection failed as server is down or unreachable." 
 I've tried all three connection methods (simple, SSL, TLS) and get same error. Pretty sure it has something to do with the AD server being in the VPN zone and not on the local network. 
 Can't seem to figure out how to point traffic to port 386/686 across the VPN to the AD server. 
 Or is there something else I need to do? 
 I've confirmed NETBIOS name, full domain name, and IP of the server. As well as ADS username and password. 
 [edit] 
 All PC's on the network can authenticate to the AD server across the VPN.

MayurMakvana · Accepted Answer

Hi, 
 Greetings, 
 You did configured the GUI properly. Login to the CLI of the device, go to option number 4. 
 system ipsec_route add host 1.1.1.1 tunnelname Headquarter 
 set advanced-firewall sys-traffic-nat add destination 1.1.1.1 snatip 192.168.1.1 
 Execute above two commands, here 1.1.1.1 is AD server IP, 192.168.1.1 is IP of the device LAN interface on which you are adding the AD. 
 Once these two commands executed, disconnect and connect the IPSec tunnel. 
 Please get back to us incase if it does not work. 
 
 -Mayur Makvana