Fortinet FortiGate FortiGate-3000

To Next Page

To Previous Page

Contents

FortiGate-3000 Administration Guide 01-28006-0010-20041105 13

To configure the VPN connection .............................................................................. 31

To disable IPSec........................................................................................................ 31

To connect to the L2TP VPN ..................................................................................... 32

Certificates ........................................................................................................................ 32

Viewing the certificate list.............................................................................................. 33

Generating a certificate request.................................................................................... 33

Installing a signed certificate ........................................................................................ 34

Enabling VPN access for specific certificate holders ................................................... 35

CLI configuration............................................................................................................... 36

ipsec phase1................................................................................................................. 36

ipsec phase2................................................................................................................. 38

ipsec vip ........................................................................................................................ 38

Authenticating peers with preshared keys ........................................................................ 40

Gateway-to-gateway VPN................................................................................................. 40

Dialup VPN ....................................................................................................................... 41

Dynamic DNS VPN ........................................................................................................... 41

Manual key IPSec VPN..................................................................................................... 42

Adding firewall policies for IPSec VPN tunnels................................................................. 42

Setting the encryption policy direction .......................................................................... 42

Setting the source address for encrypted traffic ........................................................... 42

Setting the destination address for encrypted traffic..................................................... 43

Adding an IPSec firewall encryption policy ................................................................... 43

Internet browsing through a VPN tunnel ........................................................................... 43

Configuring Internet browsing through a VPN tunnel.................................................... 44

IPSec VPN in Transparent mode...................................................................................... 45

Special rules ................................................................................................................. 45

Hub and spoke VPNs........................................................................................................ 46

Configuring the hub....................................................................................................... 46

Configuring spokes ....................................................................................................... 47

Redundant IPSec VPNs.................................................................................................... 48

Configuring redundant IPSec VPNs.............................................................................. 49

Configuring IPSec virtual IP addresses ............................................................................ 50

Troubleshooting ................................................................................................................ 51

IPS ......................................................................................................................... 53

Signature........................................................................................................................... 54

Predefined..................................................................................................................... 54

To enable or disable predefined signature groups..................................................... 56

To configure predefined signature settings ................................................................ 56

To restore the recommended settings of a signature................................................. 56

Custom.......................................................................................................................... 57

To add a custom signature......................................................................................... 58

Anomaly............................................................................................................................ 59

To configure the settings of an anomaly .................................................................... 60

Main Page

Fortinet FortiGate FortiGate-3000 - Page 13

Table of Contents

Other manuals for Fortinet FortiGate FortiGate-3000

Related product manuals