Skip to main content
Mirza
Mirza
New Member
April 16, 2017
Question

Fortigate IPSEC site to site VPN with DSL modem

  • April 16, 2017
  • 1 reply
  • 5374 views

Hi,

 

I have 2 devices HQ 140D connected wan1 with dsl modem

Br 50E connected with dsl modem

i have enable dyndns on 50E configured pppoe i can ping ip

now i want to create IPSEC site to site vpn kindly some one send me step by step i am using OS 5.4.1

appreciate help

 

Thanks

 

 

    1 reply

    ede_pfau
    SuperUser
    ede_pfau
    SuperUser
    April 17, 2017

    Hi,

     

    first off, I would upgrade to v5.4.4 which is way more stable than the old v5.4.1. Avoid headaches if you can.

    Then, there are 2 ways to create a tunnel:

    1- use dyndns names on both HQ and branch, and a standard site-to-site VPN.

    2- use only one side with dyndns name and a dial-up VPN.

     

    I recommend using the first option. Use the VPN wizard (what else) to create a site-to-site VPN with Fortigate devices. The remote gateway is a 'dynamic host'. Use main mode, and choose your encryption as you like it.

    Always specify the remote and the local subnet in phase2.

    The wizard will create the correct static route and 2 policies for you. Review and adjust (!) or even delete one of them.

     

    All of this is pretty straightforward and very well documented. Have a look at the Cookbook (cookbook.fortinet.com) for an example setup.

    Mirza
    MirzaAuthor
    New Member
    April 25, 2017

    Thanks

     

    Terms & ConditionsAccessibility statement