How to reserve a specific address for a client inside an IPsec Tunnel?

Forum|Forum|1 year ago
February 14, 2025
1 reply
972 views

Hello everybody,

I've a simple IPsec tunnel on my Fortigate 60F (v7.2.10):

Screenshot 2025-02-14 alle 17.01.08.png

Is it possible to reserve a particular address to a specific client based on the MAC address. Let's suppose I want to reserve 10.212.134.221 for the client whose MAC address is xyz. Is it possible?

My attempt was:

I connect from the xyz PC, then I go to Settings -> DHCP Monitor -> Select the client ad reserve the address. Unfortunately, during the IPsec connection, the client is not shown inside the monitor.

Is there any way to do what I want?

Thank you!

Best answer by MZBZ

Technical Tip: Framed IP address for IPsec dialup users where RADIUS server is configured on FortiAuthenticator

This article describes the feature when IPsec Dialup users can bind the IP on the RADIUS server using the Framed IP option.

https://community.fortinet.com/t5/FortiAuthenticator/Technical-Tip-Framed-IP-address-for-IPsec-dialup-users-where/ta-p/190358

MZBZAnswer

Staff

Technical Tip: Framed IP address for IPsec dialup users where RADIUS server is configured on FortiAuthenticator

This article describes the feature when IPsec Dialup users can bind the IP on the RADIUS server using the Framed IP option.

https://community.fortinet.com/t5/FortiAuthenticator/Technical-Tip-Framed-IP-address-for-IPsec-dialup-users-where/ta-p/190358

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded