Menu

Fortigate Site to Site VPN


I would like to add some more simple configuration, this time VPN Site to Site between a Fortigate and a CheckPoint firewalls,
For an ease of access I'll split this to two parts, so let's start with the easier, the Forti :

So, first thing – create an address object for the LAN of the NGX
With that out of the way create Phase 1, I used DES for encryption and MD5 for authentication, feel free to change it as you wish, I matched the keylife to Checkpoint's default settings


Now, phase 2 make sure to specify the source and destination for the tunnel – may cause problems if it's set to any.


And last thing to do is a rule to allow the actual tunnel,
 from internal to external action "ipsec" and choose the tunnel.

And that's it for the fortigate's side.

P.S.
This configurations apply to Version 3 and above.

Hope this post was helpful, If it was please consider a donation:
BTC Address: 1CnyMpjd1RntRDxSus2hu2aDMyzL4Kj29N
LTC Address: LUqrKbzGihTU2GEnL3EwsuuLHCsxCJMdtR

4 comments:

  1. This comment has been removed by the author.

    ReplyDelete
  2. This will show you how YiFy many milliseconds the data takes to reach your VPN server..

    ReplyDelete
  3. You can enter a host name or an IP address on the off chance that you know it. In the event that the demand times out then the host isn't reachable in light of the fact that it's disconnected or there is an issue with the association. how to find router ip

    ReplyDelete