Hey guys,
need some help angain!
I got my Fortigate 500A running in Transparent Mode. The management IP is 10.0.0.99 and my gateway (a DSL box) is 10.0.0.138. Now I want to connect my Smartphone and my Notebook from everywhere to the VPN (IPsec) Service running on the Fortigate. I got a Dynamic DNS and port forwarding is also no problem (but at the moment I don´t know the VPN Ports to forward). Buthow do I setup the FortiOS 4 on the FIrewall? (I want to connect with the Forti VPN Client)
thanks
-Lukas
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi,
In transparent mode, there is no dhcp server/interface based vpn support in FGT, so when client asks the ip, FGT cant lease/send them. This is a big challenge for the smart phones as they need IP from vpn server(unless custom ipsec app) most of the time. However in the notebook, you can have the forticlient and configure normal policy server mode vpn in FGT and have the forticlient have the static IP. This should work. VPN config must be done from CLI in TP mode.
However in the newer fortios code 5.2, dhcp proxy can be configured to send the dhcp request to the external dhcp server. however 500A can't support 5.0 code.
HTH.
Thanks a lot, I thought about that already, but I think I will configure the FW to NAT, because I rat a lot about
Static Routes and Policys and I think It´s a bit easer to setup than the Domain.
Thanks a lot, I thought about that already, but I think I will configure the FW to NAT, because I rat a lot about Static Routes and Policys and I think It´s a bit easer to setup than the Domain.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1634 | |
1063 | |
751 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.