Hi guys, just a simple question :
My Fortigate 90D, under VPN Creation Wizard, STEP 2 , when asking for IP Address, it wouldn't let me input a port as we are using xxx.xxx.xxx.xxx:444
Is there a way to add a port to this IP address
Thanks in advance
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Well, then you're out of luck. Shifting the IKE/IPsec port is IMHO quite uncommon, and a very new feature for FortiOS as well.
IF you had a newer FGT then I would point out to you that in recent FortiOS an SSLVPN client was included, so you could do site-to-site SSLVPN...but I won't.
https://docs.fortinet.com/document/fortigate/7.0.0/new-features/33578/configurable-ike-port
To set the IKE port:
config system settings
set ike-port 6000
end
This option is only available on FortiOS 7.0 version.
Fortigate-90D can't be upgraded to FortiOS 6.2 or later versions.
I am on version 6.0.15
I think you mix up IPsec VPN and SSLVPN. The custom port looks like you want to use it with SSLVPN.
Yes, in FortiOS v7.0, there is a new option to use a custom port for the IKE and IPsec protocols when using NAT (default: ike/500, ipsec/4500). Both protocols will use the custom port. This might help if IPsec standard ports are blacklisted by the ISP, but if there is censorship, it will use whitelisting and thus port relocation won't help at all.
If you go this way, check that the VPN client can use the custom port.
Thank you, well not actually a mix up, just need to connect my 90D as a client of a cisco vpn but company uses port 444 which does not allow me to input on configuration :(
90D SSLVPN server works like a charm from an outside to my home.
Well, then you're out of luck. Shifting the IKE/IPsec port is IMHO quite uncommon, and a very new feature for FortiOS as well.
IF you had a newer FGT then I would point out to you that in recent FortiOS an SSLVPN client was included, so you could do site-to-site SSLVPN...but I won't.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1547 | |
1031 | |
749 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.