Good morning, I've been doing some searching and have been unable to
find any threads that have resulted in a resolution for my particular
issue. I am essentially setting up an ipsec tunnel between my FortiGate
60D (6.0.9) and our ASA 5516 (9.12) for...
I ended up finding my issue on the ASA side of the house. I didn't have
the PFS DH group specified for Phase 2, so the ASA was essentially
trying to negotiate with a new DH group for each additional phase 2
subnet coming from the Fortigate. Staticall...
Ah, sorry, the phase1 name is actually the same, that was just a bad
copy/paste job on my part. And yes, the second subnet in the second
phase2 interface is defined. edit "Work-Laptop-Wired_192.168.128.50" set
uuid d3c782f2-89bf-51ea-5961-aab2b5eb023...
