VPN IPSec configuration on Fortigate 90G

Forum|Forum|1 year ago
April 23, 2025
2 replies
3655 views

Hello,

I need help to configure IPsec VPN on my FortiGate.

I have created the users and configured the tunnel, but I can't access it via FortiClient.

I really need your help.

funkylicious

SuperUser

Hi,

Can you please share the output of the ipsec configuration ( and sanitize/hide sensitive information like public IP and PSK ) and describe the issue that you have ?

show vpn ipsec phase1-interface

show vpn ipsec phase2-interface

"jack of all trades, master of none"

KadiatouDialloAuthor

New Member

The following are my config:

funkylicious

SuperUser

ok, base on your output the forticlient vpn configuration should look something like this :

where the Pre-shared key is what you have configured and if you have a peer id configured you should put it in the Local ID field.

afterwards, you should have firewall rules from the source interface Access-Distant and source address object range 172.16.10.10-172.16.10.20 to whatever destination interface and destination object you need.

L.E. in order to try and debug the issue that you have, you should look at https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-IPsec-VPN-tunnels/ta-p/195955 and start the debug, then initiate a connection.

Screenshot 2025-04-23 at 14.25.24.png Screenshot 2025-04-23 at 14.26.16.png