I would like to create a interface that is all the IPsec tunnels for site-to-site VPN.
So instead of me needing 5 different policies that allow traffic between the main site and remote sites, I could just have 1 policy and the Source/Destination interface will be the group of tunnels.
I would also need to make a IP group of remote IPs to use for the source/destination traffic, .
Main firewall is a 400E, remote sites are all 60F
"Zone" is designed for that.
https://docs.fortinet.com/document/fortigate/7.2.8/administration-guide/116821/zone
Toshi
User | Count |
---|---|
2642 | |
1405 | |
810 | |
685 | |
455 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.