Hi Guys, First of all, I am not sure if this was raise already but I
just need some clarification about the routing on Route-based IPSec
VPN.The scenario was, I was building a route-based site-to-site ipsec
tunnel between FortiGate and Cisco router.I...
Hi Toshi, By the way, from Cisco side I can ping FG's gw IP even when
tunnel is UP. It should be the same from FG's side but not in this case.
Regards,Clifford
Hi Toshi, Thanks for the reply.I remove the local and remote gw IP
details from the configuration.But both are configured properly either
on the tunnel interface or the ipsec phase1 & 2 interface. Like I said
vpn tunnel is working fine and my only is...
Hi Toshi,Please find below. config vpn ipsec phase1-interface edit
"VPN_NOC" set type static set interface "wan1" set ip-version 4 set
ike-version 1 set local-gw 0.0.0.0 set keylife 86400 set authmethod psk
set mode main set peertype any set mode-cfg...
Hi Ede, How to verify that from FortiGate side? But Phase1 is set to
Main Mode.We suspect that the presence of connected route to tunnel
interface is what caused the FG unable to ping the remote peer IP.
Basically, remote peer IP will be reachable vi...
Hi Toshi, Thank you for the reply.There is no access list from Cisco
side, we noticed that on all vpn tunnels we had.Our Hub is Cisco, and
all Fortigate that have vpn tunnels to it have the same results.Unlike
some our site that has Cisco to Cisco ro...
