Skip to main content
lambo823
lambo823
New Member
March 21, 2025
Question

Testing IPSec for users

  • March 21, 2025
  • 1 reply
  • 424 views

Here's the deal

Currently have 2 101F's in HA

Lots of remote users-Use SSLVPN

Using SAML with AzureAD as idp

Next year we're moving to new space. I usually take an opportunity like that to buy new stuff and get it setup at the destination. I'll be keeping an eye any new firewalls. Maybe a G model??

From what I read; IPSec can work over 443 (TCP) I would need that due to the amount of travelers/remote people.

My question-

We have a remote office running a 61F. What I'm thinking is to practice setting up ipsec vpn on this without messing up HQ (where everyone vpn's into).

Any suggestions are appreciated.

1 reply

AEK
SuperUser
AEK
SuperUser
March 21, 2025

Hi Lambo

I didn't test it but TCP 443 should be possible for IKE.

config system settings
  set ike-tcp-port 443
end

https://docs.fortinet.com/document/forticlient/7.4.1/ems-administration-guide/914884/ipsec-vpn-over-tcp

Hope it helps.

AEK
Terms & ConditionsAccessibility statement