Help
Fortinet for SAP Discussions
CodeTron
New Contributor III

Created on ‎01-20-2025 06:43 AM Edited on ‎01-20-2025 06:47 AM

Site to Site VPN best practices

Hi,

I'm trying to configure a S to S tunnel that achieves high security and the highest encryption possible. is the below setting sufficient enough?

 

Hardware

Two FG 80F running OS 7.4.3

 

Current tunnel configuration

No NAT

Authentication: Preshared key, IKEv2

Phase 1 Proposal AES256 SHA512 DH 21

Phase 2 Selectors AES256 SHA512 DH 21

 

A schedule is set to stop the policies when not in use (please let me know if this helps in enhancing the security)

Thanks in advanced

 

Labels:
117
0 Kudos
0 REPLIES 0
Announcements

Welcome to your new Fortinet for SAP Community!

You'll find your previous forum posts under 'Fortinet Forum'

Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.