Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ajtsystems
New Contributor

Created on ‎10-15-2022 01:39 AM

IKEv2 pass though not working

Hey,

I need some help getting my always on VPN working through our Fortigate.  It's just not working.  I have a Virtual IP mapping a public ip address to the internal address of a Windows RRAS server running the VPN.  I also have a firewall policy allowing IKE, which is UDP/500 and UDP/4500 - the ports that the VPN client uses for IKEv2 certificate authentication.

The VPN works when clients behind the firewall connect but when passing though it's failing.

I've logged a ticket with Fortigate support but I havent spoken with them yet.

 

Is there some documentation on allowing IKEv2 through the Fortigate to a VPN server behind it?  I've looked but cannot find anything

 

Thanks :)

Labels:
1296
0 Kudos
2 REPLIES 2
FortiMax_it
Contributor

Created on ‎10-15-2022 08:21 AM

Hi, try this: https://zedt.eu/tech/windows/how-to-connect-windows-to-ipsec-vpn-server-behind-nat/ 

In my case it had worked. 

1277
0 Kudos
ajtsystems
New Contributor
In response to FortiMax_it

Created on ‎10-18-2022 12:29 AM

Gave it a god but it doesn't seem to work.  I have a case open with Fortigate!

1239
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.