Prior to upgrading to 7.0.10 I was able to establish multiple Windows
Native IPSEC dial sessions to the same Fortigate. Now I can only have
one active at a time. I'm fairly certain this is due to the requirement
to have unique Peer IDs for each sessi...
I have a "Remote Facility" that has equipment that is to be monitored by
two separate operations centers.The remote facility has two distinct
private subnets that are not interconnected and need to remain so.I have
successfully configured two site-to...
I have two installations of Fortigate 60F units for remote access. One
is running 6.4.8 and one on 7.0.5I have IPSEC remote access
configurations setup on both and the configs are nearly identical
(except for the addressing...same subnetting. Nothing...
I have a private point to point network over IPSEC VPN. I'm trying to
allow only SMPT sendmail service from a single client on one end to a
host on the Internet via the WAN interface. I've created an outbound FW
rule to allow SMTP port 25 to a FQDN (...
Solved by setting unique Peer IDs for each Tunnel. Convert to custom
tunnel, set authentication IKE mode to Agressive, Peer options to
Specific peer ID and insure both ends match. Note that the Local ID int
he Phase 1 Proposal needs to match the Peer...
Solved. The problem was that for each connection I needed to setup a
unique Peer ID in the Tunnel "authentication" and "phase 1 proposal
local ID". Once I converted the Wizard tunnels to Custom and tested the
connectivity on each I was then able to e...
Here ya go. But like I said. It's working now. Note that these VPNs have
NOT been converted to custom tunnels. 6.4.8 SitePhase1-interface
(psksecret removed)set type dynamicset interface "wan1"set ip-version
4set ike-version 1set local-gw 0.0.0.0set ...
Well. I'm not sure what I did but I can establish multiple dial-in
sessions now and I get an unique IP out of the assigned pool for each
client. The only real difference is that I have a site-to-site
(fortigate-fortigate LAN extension) configured now...
