Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
amizi
New Contributor

Created on ‎04-24-2022 01:41 AM

OSPF and IPsec

Hi there,

I'm trying to create an OSPF icluding both FortiGates and Cisco routers.

Do I need to configure only the linked adresses to each port?

And how do I configure IPsec between the two fortigates? Do I need to configure the VPCs as well on the FG? I got a little bit lost...

fotriask.jpg

Labels:
622
0 Kudos
2 REPLIES 2
akristof
Staff
Staff

Created on ‎04-24-2022 11:17 PM

Hi,

 

Thank you for your question. You need site to site Ipsec tunnel and then configure IP address to the tunnel on both FortiGates. And then enable OSPF on these IPs. And that's it.

Adrian
572
0 Kudos
seshuganesh
Staff
Staff

Created on ‎04-24-2022 11:42 PM

Hi Team,

 

As my colleague mentioned you need to define IPSEC tunnels and mention IP address in tunnel interface and configure IPSEC tunnel between them.

For this question:

 Do I need to configure the VPCs as well on the FG
Seems like your environment is there in AWS, you have to deploy firewall in any VPC  and define lan ip of the firewall in same VPC.

While establishing IPSEC tunnel between two fortigate firewall, you have to mention elastic IP of the remote firewall.

This should establish IPSEC tunnel.

Make sure you define securty group to allow the traffic for port 500 and 4500.

Please check and keep us posted.

571
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.