Created on 10-25-2007 01:29 AM
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Created on 10-25-2007 02:19 AM
Created on 10-25-2007 02:43 AM
Created on 10-25-2007 05:51 PM
I' m using the fortigate to be DHCP server, and added the DHCP Server record already.you cant do that , you need to configure the fortinet as an IPSEC DHCP relay , and you need a DHCP server in your internal network. the fortinet cant be the dhcp server in an IPSEC vpn . second thing to do , is to add a rule to allow IPSEC clients to get ip adress from you dhcp server before the main ipsec rule , like this :
config firewall policy edit 22 set srcintf " internal" set dstintf " wan1" set srcaddr " DHCP_SERVER" set dstaddr " all" set action ipsec set schedule " always" set service " DHCP" set inbound enable set outbound enable set vpntunnel " YOUR_VPN_NAME" next endi hope it helps .
you cant do that , you need to configure the fortinet as an IPSEC DHCP relay , and you need a DHCP server in your internal network. the fortinet cant be the dhcp server in an IPSEC vpn .That' s not true; IPSec DHCP server is available for Policy or Tunnel Mode IPSec VPNs; (it is not for route/interface mode ones nevertheless)
regards
/ Abel
Created on 10-25-2007 07:36 PM
Created on 10-25-2007 09:56 PM
Created on 10-25-2007 10:14 PM
Created on 10-25-2007 11:50 PM
Created on 10-26-2007 09:38 AM
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1696 | |
1091 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.