Description
This article provides a VPN location map fetching the location information of FortiGate and remote peers.
Scope
FortiGate.
Solution
When FortiGate is connected with a VPN (SSL and IPsec VPN), FortiGate will do a geolocation check for the client or remote peer IP using the FortiGuard IP Geography database.
Once FortiGate fetches the location, latitude, and longitude information for the database, it will place the respective remote peer to a specific location.
For example:
Let's consider remote peer IP is 208.91.112.52.
config vpn ipsec phase1-interface
edit "test"
set remote-gw 208.91.112.52
next
end
FortiGate will do a geoip-query for 208.91.112.52.
As per the IP information in the database, it will locate the remote peer in the VPN location map.
aegon-kvm20 # dia geoip geoip-query 208.91.112.52
IP:208.91.112.52
{"city":{"geoname_id":5959538,"names":{"en":"Burnaby"}},"continent":{"code":"NA","names":{"en":"North America"}},"country":{"iso_code":"CA","names":{"en":"Canada"}},"subdivisions":[{"iso_code":"BC","names":{"en":"British Columbia"}}],"location":{"latitude":49.248810,"longitude":-122.980507,"time_zone":"America/Vancouver"},"postal":{"code":"V5G"}}
