Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
btey
Staff
Staff

Created on ‎09-27-2024 12:13 AM

Article Id 344940

Troubleshooting Tip: Unable to create policy-based IPSEC VPN in FortiOS 7.6

Description This article describes the issue of being unable to create a policy-based IPSEC VPN in FortiOS 7.6 GUI and the workaround.
Scope FortiOS 7.6.
Solution

To create a new IPsec tunnel:

VPN -> VPN Tunnels -> Create new -> Custom IPsec tunnel.

 

Enable IPsec Interface Mode .png

 

The option to disable IPsec Interface Mode is not applicable in FortiOS version 7.6.

Example of this option in an earlier version:

 

Enable IPsec Interface Mode_old .png

 

As a workaround, configure it via CLI:

Policy-based IPsec tunnel

 

Moreover, the system will not allow editing policy-based IPsec in GUI (it is only possible via CLI).

 

policy-based vpn edit.png

 

 

132
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.