Site-to-Site VPN to Cisco ASA with IKEv2

Forum|Forum|2 years ago
March 15, 2024
1 reply
1979 views

Hello,

I have a question with setting up an IPSec tunnel using IKEv2. In the FortiGate only one PSK needs to be specified. But in the Cisco ASA wizard I need to specify two PSK's. One from the local Cisco ASA and from the remote (FortiGate). How do I need to configure this, do I need to only add one PSK to the Cisco ASA, or is there an other solution?

kind regards,

Geert

Best answer by ozkanaltas

Hello @Geert_m ,

You can configure the remote psk via CLI.

Also, you can review this community discussion.

https://community.fortinet.com/t5/Support-Forum/Set-two-different-psk-ikev2/td-p/65334

config vpn ipsec phase1-interface edit <VPN_NAME> set authmethod-remote psk set psksecret-remote <YOUR_PSK_KEY> next end

ozkanaltasAnswer

Valued Contributor III

Hello @Geert_m ,

You can configure the remote psk via CLI.

Also, you can review this community discussion.

https://community.fortinet.com/t5/Support-Forum/Set-two-different-psk-ikev2/td-p/65334

config vpn ipsec phase1-interface edit <VPN_NAME> set authmethod-remote psk set psksecret-remote <YOUR_PSK_KEY> next end

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded