Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
TonyLin
New Contributor

IPsec Site to site vpn Tunnel Mode on the FortiOS 5.2.X

Hi,

 

How can I setup IPsec Site to site vpn Tunnel Mode on the FortiOS 5.2.X by use wizard? is there other way to set it up? because when I use wizard it become interface mode.

 

Thanks

1 REPLY 1
ede_pfau
Esteemed Contributor III

hi,

 

and welcome to the forums.

 

What's wrong with 'interface mode'? It only means that the tunnel is created as a virtual port, much like a VLAN port or a physical port. You then use it in policies or routes, or in debugging.

There used to be 'policy mode' IPsec VPNs back in FortiOS v3 and older. The prefered style though is interface-based or route-based IPsec VPN which the wizard employs per default.

 

But...if you like you could create a policy-based VPN manually - not sure if the WebGUI still allows this but in the CLI it's possible. I recommend against it.


Ede

"Kernel panic: Aiee, killing interrupt handler!"
Ede"Kernel panic: Aiee, killing interrupt handler!"
Top Kudoed Authors