Fortinet FortiGate FortiGate-800

To Next Page

To Previous Page

Contents

FortiGate-800 Administration Guide 01-28006-0008-20041105 9

L2TP .............................................................................................................................. 265

Setting up a L2TP-based VPN.................................................................................... 266

Enabling L2TP and specifying an L2TP range............................................................ 266

Configuring a Windows 2000 client for L2TP.............................................................. 267

Configuring a Windows XP client for L2TP ................................................................. 268

Certificates ...................................................................................................................... 270

Viewing the certificate list............................................................................................ 271

Generating a certificate request.................................................................................. 271

Installing a signed certificate ...................................................................................... 273

Enabling VPN access for specific certificate holders ................................................. 274

CLI configuration............................................................................................................. 275

ipsec phase1............................................................................................................... 275

ipsec phase2............................................................................................................... 277

ipsec vip ...................................................................................................................... 278

Authenticating peers with preshared keys ...................................................................... 280

Gateway-to-gateway VPN............................................................................................... 280

Dialup VPN ..................................................................................................................... 281

Dynamic DNS VPN ......................................................................................................... 281

Manual key IPSec VPN................................................................................................... 282

Adding firewall policies for IPSec VPN tunnels............................................................... 282

Setting the encryption policy direction ........................................................................ 282

Setting the source address for encrypted traffic ......................................................... 282

Setting the destination address for encrypted traffic................................................... 283

Adding an IPSec firewall encryption policy ................................................................. 283

Internet browsing through a VPN tunnel ......................................................................... 283

Configuring Internet browsing through a VPN tunnel.................................................. 284

IPSec VPN in Transparent mode.................................................................................... 285

Special rules ............................................................................................................... 285

Hub and spoke VPNs...................................................................................................... 286

Configuring the hub..................................................................................................... 286

Configuring spokes ..................................................................................................... 288

Redundant IPSec VPNs.................................................................................................. 289

Configuring redundant IPSec VPNs............................................................................ 289

Configuring IPSec virtual IP addresses .......................................................................... 290

Troubleshooting .............................................................................................................. 292

IPS ....................................................................................................................... 293

Signature......................................................................................................................... 294

Predefined................................................................................................................... 294

Custom........................................................................................................................ 298

Anomaly.......................................................................................................................... 300

Anomaly CLI configuration.......................................................................................... 303

Configuring IPS logging and alert email.......................................................................... 304

Default fail open setting .................................................................................................. 304

Main Page

Fortinet FortiGate FortiGate-800 - Page 9

Table of Contents

Other manuals for Fortinet FortiGate FortiGate-800

Related product manuals