FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
btey
Staff
Staff
Article Id 190244

Description

 

This article describes how to enable 'Policy-Based IPsec VPN' configuration from GUI and CLI.

 

Scope

 

FortiGate.

Solution

 

By default, 'Policy-Based IPsec VPN' configuration is disabled in the GUI.

Refer to the following:

Go to VPN -> IPsec Tunnels, select 'Create new' and 'Custom'.

 
To enable the 'Policy-Based IPsec VPN':
Go to System -> Feature Visibility, enable 'Policy-based IPsec VPN', and select 'Apply'.
 
 
To enable the 'Policy-Based IPsec VPN' from the CLI use the following commands:
 

config system settings

set gui-policy-based-ipsec enable

end

 

Screenshot_5-9-2024_155443_10.5.61.186.jpeg

 

Once applied, go to VPN -> IPsec Tunnels, select 'Create new', 'Custom' and unselect 'Enable IPsec Interface Mode'.
 
 
 
Related documents: