VPN L2TP on Fortigate 60F behind GPON modem

Forum|Forum|2 years ago
May 6, 2024
2 replies
1315 views

Hi, i have a problem with setting up L2TP Server (for native Windows Client). My Fortigate is behind GPON modem (FG is in DMZ to forward all trafic). I have configured L2Tp according to manual - the vpn is setting up but after 20s it's down. In logs i have:

2024-05-06 23_35_58.png

In debug i have:

2024-05-06 23_37_32.png

In WAN1 of Fortigate i have IP from the local subnet with the GPON modem (10.10.0.0), not the public IP from ISP.

The public IP is on GPON modem.

What can be the problem?

FortiGate

abarushka

Staff

Hello,

You may consider to collect IKE debug traces while the tunnel is going down by running the commands below:

diagnose debug application ike -1
diagnose debug enable

ebilcari

Staff

Since the public IP is on the modem did you configure the port forwarding to FGT (UDP: 500, 4500, 1701)?

In my experience if you want to use the built in VPN client in Windows, it's better to use IKEv2, is much more stable than the old L2TP. This article shows how to use certificates for authentication, but it can be configured also to use credentials.

Emirjon

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded