Same IPSEC Dial Up VPN Multiple Listening interfaces

Forum|Forum|1 year ago
May 23, 2025
4 replies
1077 views

Hello,

When migrating from SSL VPN to IPSEC VPN, i can't choose multiple listening interfaces for my IPSEC dial up vpn tunnel.

How can i do that correctly ?

funkylicious

SuperUser

multiple ipsec dialup tunnels, for each interface would be necessary i guess.

"jack of all trades, master of none"

Mohammed_OmarAuthor

New Member

I would like not to do multiple ipsec dialup tunnels. any best practice solutions ?

Toshi_Esumi

SuperUser

Haven't tested and don't have time to test before my vacation, but an idea is to set two VIPs from both interfaces to forward IPsecs(UDP 500/4500) to a loopback interface, and make sure the policy doesn't block ESP. Again, just an idea.

Toshi

Mohammed_OmarAuthor

New Member

Seems like a good solution Toshi thank you.

I will look in the internet how to do the ESP you are talking about.

Whenever you or anybody can, can you test in the fortigate 7.6.3 version (or latest) ? thank you

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded