remote VPN dial in when Fortigate is configured in transparent mode

Forum|Forum|10 years ago
February 29, 2016
2 replies
5165 views

Hi

Understand there are limitation when setting fortigate in transparent mode. One of which is VPN. Can the VPN be set up for remote client to dial in? Or is this limited to site to site tunnelling. Even that has limitation I believe

Thanks

ede_pfau

SuperUser

If I remember correctly VPN in transparent mode is one of the few (few, few) cases where you need to create a policy-based VPN - action "IPSEC" or "ENCRYPT". Per se, a dial-in VPN should be possible, as well as a site-to-site VPN. No luck searching the docs?

Which firmware version are you running?

calsaac2010Author

New Member

Hi Ede_Pfau

First thank you for the quick response. So far, I have seen example of IPsec VPN tunnel between two FG in transparent mode. I think I understand your logic referring to one of entity of the site to site IPsec tunnel as a client. To the point, you mean I can use a remote forticlient to dial into the FG configured as a VPN server operating in transparent mode. But only IPsec. So the FG can be configured to assign a dedicated pool of IP to the remote client.

I did not find a doc on this particular topic or an example close to this. Do you have ?

Regards

calsaac2010Author

New Member

Hi Ede_Pfau

I forgot to mention the version 5.0.

regards

emnoc

New Member

Hvae you tried to contact FTNT for a cookbook or tech doc

mailto:techdoc@fortinet.com

They might have a KB or document for just this type of setup.Some how I don't think you can do this but if anybody would know it would be tac/support and the techdoc team.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded