Skip to main content
Ashik_Sheik
Ashik_Sheik
New Member
January 19, 2017
Question

IPSec VPN 5.4.1 , site-to-site, dial-up User option is not working

  • January 19, 2017
  • 1 reply
  • 5982 views

Hi 

 

I am trying to setup Dailup user for site to site because in HUB i have Static IP and Branch have no IP .So can anyone help me to setup dailup for site to site to avoid going for Static and Dyndns for spoke .

 

Regds

 

Ashik

    1 reply

    brycemd
    brycemd
    New Member
    January 19, 2017

    I think what you are looking for is using Aggressive mode in the site to site rather than Main mode. This way you can do a proper ipsec site to site.

     

    It allows you to configure the tunnel when one or both have dynamic IPs.(Page 48 in the document linked above)

    MikePruett
    MikePruett
    New Member
    January 19, 2017

    I have configured this type of deployment in every version of FortiOS including 5.4.x without issue. Works like a champ

    Ashik_Sheik
    Ashik_SheikAuthor
    New Member
    January 19, 2017

    Oh Great can you help me to configured .

     

    My Queries

     

    1. Head Office:when i choose dailup user, Preshared Key option is disabled .

    2.Head Office :What to select Aggressive  or Main ID options

    3.Branch - Static IP with Preshared Key is must to not 

    4.Branch - Peer option Aggressive or Main ID 

     

    Thanks 

     

    Ashik

     

    Terms & ConditionsAccessibility statement