How to establish IPSec between fortigate and PFsense

Forum|Forum|4 years ago
February 11, 2022
1 reply
5576 views

The remote office has Pfsence which is behind the router and has no public ip(wan interface) it's on local subnet of the router, FortiGate is direct with wan interface stati

so how we can have IPSec in this scenario

kindly explain

FortiGate

Best answer by kcheng

Hi,

You will probably need a port forwarding from the router at the remote side to perform NAT from the public IP to the Pfsense behind that router. It would not be possible to form IPSec tunnel if FortiGate does not have route and connectivity towards the remote device. The remote gateway is required to be reachable from FortiGate before IPSec tunnel can be formed.

kchengAnswer

Staff & Editor

Hi,

You will probably need a port forwarding from the router at the remote side to perform NAT from the public IP to the Pfsense behind that router. It would not be possible to form IPSec tunnel if FortiGate does not have route and connectivity towards the remote device. The remote gateway is required to be reachable from FortiGate before IPSec tunnel can be formed.

secsupportAuthor

New Member

Dear @kcheng I did it successfully but just select the LAN port on pfsense side like we select the WAN interface normally but in this case was different (server-client scenario)

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded