I'm beating my head against a brick wall with an IPSec VPN
configuration. Here's the basic topology: 192.168.x.x (my lan) -->
[FortiGate 20c] --> 10.1.10.x (wan) --> [Cisco/Comcast Router] -->
50.1.1.1 (my public IP) --> [*Internet*] --> 50.2.2.2 (pe...
Thanks everyone for your help! What ended up being the critical issues
were these: - On the Strongswan side, he had to set "rightid=%any" in
ipsec.conf- On my FG side, I had to set the P2 Quick Mode Selector
Source address to my internal subnet, rath...
One of the docs I read said quad 0's was the way to allow everything.
Not so? I'll try it with my Public IP and his Private Subnet as the
selectors. -T
Shouldn't the "Local Gateway IP" setting take care of this? It's
currently set to the WAN IP, but I could set it to the Public IP
instead. The reasons I wonder about this are two: 1 There is a
functioning IPsec tunnel-mode VPN on this FortiGate alrea...
