IPsec Site to site vpn Tunnel Mode on the FortiOS 5.2.X

hi,

and welcome to the forums.

What's wrong with 'interface mode'? It only means that the tunnel is created as a virtual port, much like a VLAN port or a physical port. You then use it in policies or routes, or in debugging.

There used to be 'policy mode' IPsec VPNs back in FortiOS v3 and older. The prefered style though is interface-based or route-based IPsec VPN which the wizard employs per default.

But...if you like you could create a policy-based VPN manually - not sure if the WebGUI still allows this but in the CLI it's possible. I recommend against it.