Fortinet black logo

Cookbook

Configuring the HQ IPsec VPN

Copy Link
Copy Doc ID 4d801240-7ccc-11e9-81a4-00505692583a:885383
Download PDF

Configuring the HQ IPsec VPN

  1. On HQ, go to VPN > IPsec Wizard.

    Select the Site to Site template and select Next.

  2. In the Authentication section, set IP Address to Branch's Internet-facing IP (in this example, 172.31.1.65).

    After you enter the gateway, an interface is assigned as the Outgoing Interface.

    Set a secure Pre-shared Key.

  3. In the Policy & Routing section, set the Local Interface. The Local Subnets are added automatically.

    Set Remote Subnets to Branch's local subnet (in this example, 10.1.2.0/24).

  4. Review the configuration summary that shows the firewall addresses, firewall address groups, a static route, and security policies.

Configuring the HQ IPsec VPN

  1. On HQ, go to VPN > IPsec Wizard.

    Select the Site to Site template and select Next.

  2. In the Authentication section, set IP Address to Branch's Internet-facing IP (in this example, 172.31.1.65).

    After you enter the gateway, an interface is assigned as the Outgoing Interface.

    Set a secure Pre-shared Key.

  3. In the Policy & Routing section, set the Local Interface. The Local Subnets are added automatically.

    Set Remote Subnets to Branch's local subnet (in this example, 10.1.2.0/24).

  4. Review the configuration summary that shows the firewall addresses, firewall address groups, a static route, and security policies.