Hi, I am running FortiOS 7.4.7 on a FortiGate-60F and am trying to
migrate from SSLVPN to IPsec VPN. I've managed to configure IPsec
(IKEv2) dial-up to work fine, but I notice that when I set the mode to
IPSec over TCP, FortiClient (v7.4.3) does not ...
Hi Ricky, thanks for your reply.@rtanagras wrote: - Enable
fortinet-espconfig vpn ipsec phase1-interfaceedit "rav-HCVPN"set
transport udp-fallback-tcpset fortinet-esp enableset
fallback-tcp-threshold 10nextend - Confirm the changes:diag vpn ike
gatew...
Hi Toshi, thanks for getting back.Regarding your comments: Yes,
FortiGate is at 7.4.7 (upgraded from 7.2.11) and FortiClient being used
is 7.4.3"set fortinet-eap" seems to break FCT for UDP-based IPsec
connections, so I disabled itIf I set transport ...
Hi Toshi, please find attached the VPN client configuration.The client
connects fine over IKE over UDP and Auto mode, but if I force IPsec over
TCP, it times out.The Gate is a 60F that was recently upgraded from
7.2.11.Also posting the relevant confi...
