EasyManuals Logo

Fortinet FortiGate FortiGate-3000 Administration Guide

Fortinet FortiGate FortiGate-3000
398 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #263 background imageLoading...
Page #263 background image
VPN Concentrator
FortiGate-3000 Administration Guide 01-28006-0010-20041105 263
Concentrator
Configure IPSec VPN concentrators to create hub and spoke configurations. IPSec
VPN concentrators are only available in NAT/Route mode.
To configure a concentrator
1 Go to VPN > IPSEC > Concentrator and add a concentrator.
2 Add the required Phase 2 configurations to the concentrator.
Concentrator list
Figure 128:IPSec VPN concentrator list
Encryption Key Enter the Encryption Key.
Each two character combination entered in hexadecimal format represents
one byte. Depending on the encryption algorithm you have selected, you may
be required to enter the key in multiple segments. Use the same encryption
key at both ends of the tunnel.
For DES, enter a 16 character (8 byte) hexadecimal number (0-9, A-F).
For 3DEs, enter a 48 character (24 byte) hexadecimal number (0-9, A-F).
Separate the number into three segments of 16 characters.
For AES128, enter a 32 character (16 byte) hexadecimal number
(0-9, A-F). Separate the number into two segments of 16 characters.
For AES192, enter a 48 character (24 byte) hexadecimal number
(0-9, A-F). Separate the number into three segments of 16 characters.
For AES256, enter a 64 character (32 byte) hexadecimal number
(0-9, A-F). Separate the number into four segments of 16 characters.
Authentication
Algorithm
Select an Authentication Algorithm from the list.
Use the same algorithm at both ends of the tunnel.
Authentication
Key
Enter the Authentication Key. Each two character combination entered in
hexadecimal format represents one byte. Use the same authentication key at
both ends of the tunnel.
For MD5, enter a 32 character (16 byte) hexadecimal number (0-9, A-F).
Separate the number into two segments of 16 characters.
For SHA1, enter a 40 character (20 byte) hexadecimal number (0-9, A-F).
Separate the number into two segments, the first of 16 characters and the
second of 24 characters.
Concentrator Select a concentrator if you want the tunnel to be part of a hub and spoke
VPN configuration. See “Redundant IPSec VPNs” on page 295. Available in
NAT/Route mode only.
Create New Select Create New to add an IPSec VPN concentrator.
Concentrator Name The names of the IPSec VPN concentrators that have been added.

Table of Contents

Other manuals for Fortinet FortiGate FortiGate-3000

Preview: Quick Start Guide
Quick Start Guide2 pages
Preview: Install Guide
Install Guide66 pages
Preview: Installation Guide
Installation Guide56 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Fortinet FortiGate FortiGate-3000 and is the answer not in the manual?

Fortinet FortiGate FortiGate-3000 Specifications

General IconGeneral
BrandFortinet
ModelFortiGate FortiGate-3000
CategoryFirewall
LanguageEnglish

Related product manuals