Description |
This article describes the change in IPSec VPN default settings starting version 7.6.0 using VPN Creation Wizard. |
Scope | FortiOS. |
Solution |
In the previous version when creating a VPN tunnel between FortiGate automatically works after creating the tunnel via the wizard.
When users create an IPSec VPN using the VPN Creating Wizard, it is impossible to view the phase 1/phase2 proposals and IKE version in the GUI, select 'Convert To Custom Tunnel' to view and modify the settings in the GUI.
In 7.4.5 or lower versions, the default IKE version is 1.
In v7.6.0, the default IKE version is 2, this setting can be viewed and modified in the VPN wizard.
Alternatively, it is possible to confirm what is the IKE version of the IPsec via CLI without converting to custom tunnel:
show full vpn ipsec phase1-interface <Phase1_name> | grep -i ike |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.