FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
btey
Staff
Staff
Article Id 344940
Description This article describes the issue of being unable to create a policy-based IPSEC VPN in FortiOS 7.6 GUI and the workaround.
Scope FortiOS 7.6.
Solution

To create a new IPsec tunnel:

VPN -> VPN Tunnels -> Create new -> Custom IPsec tunnel.

 

Enable IPsec Interface Mode .png

 

The option to disable IPsec Interface Mode is not applicable in FortiOS version 7.6.

Example of this option in an earlier version:

 

Enable IPsec Interface Mode_old .png

 

As a workaround, configure it via CLI:

Policy-based IPsec tunnel

 

Moreover, the system will not allow editing policy-based IPsec in GUI (it is only possible via CLI).

 

policy-based vpn edit.png

 

 

Contributors