Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 6.0.0
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    CLI Reference

    6.0.0
    7.6.6
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.11
    7.4.10
    7.4.9
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.13
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.19
    7.0.18
    7.0.17
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.16
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.17
    6.2.16
    6.2.15
    6.2.14
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.0.0
    5.6.0
    5.4.0
    5.2.0
    5.0.0

    vpn ocvpn

    vpn ocvpn

    One-Click VPN (OCVPN) is a cloud-based solution that greatly simplifies the provisioning and configuration of IPsec VPN. The control plane is managed separately from the data plane, and this happens automatically as devices join/leave the VPN, as subnets are added/removed, when dynamic external IPs change (e.g. DHCP/PPPoE), and when WAN interface bindings change (as in the dual WAN redundancy case).

    History

    The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.1.

    Command Description

    config subnets

    edit <id>

    set type {subnet | interface}

    set interface <name>

    LAN interfaces can now be specified instead of just subnet IP/netmask.

    Note that interface is only available when type is set to interface.

    The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.

    Command Description

    config vpn ocvpn

    New config command.

    Configure One-Click VPN settings.

    		 
    config vpn ocvpn
    set status {enable | disable}   Enable/disable Overlay Controller cloud assisted VPN.
    set poll-interval {integer}   Overlay Controller VPN polling interval. range[30-120]
    config subnets
        edit {id}
        # Internal subnets to register with Overlay Controller VPN service.
            set id {integer}   ID. range[0-4294967295]
            set type {subnet | interface}   Subnet type.
                    subnet     Configure participating subnet IP and mask.
                    interface  Configure participating LAN interface.
            set subnet {ipv4 classnet any}   IPv4 address and subnet mask.
            set interface {string}   LAN interface. size[15] - datasource(s): system.interface.name
        next
    set ha-alias {string}   Hidden HA alias. size[35]
end
    Previous
    Next

    vpn ocvpn

    vpn ocvpn

    One-Click VPN (OCVPN) is a cloud-based solution that greatly simplifies the provisioning and configuration of IPsec VPN. The control plane is managed separately from the data plane, and this happens automatically as devices join/leave the VPN, as subnets are added/removed, when dynamic external IPs change (e.g. DHCP/PPPoE), and when WAN interface bindings change (as in the dual WAN redundancy case).

    History

    The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.1.

    Command Description

    config subnets

    edit <id>

    set type {subnet | interface}

    set interface <name>

    LAN interfaces can now be specified instead of just subnet IP/netmask.

    Note that interface is only available when type is set to interface.

    The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.

    Command Description

    config vpn ocvpn

    New config command.

    Configure One-Click VPN settings.

    		 
    config vpn ocvpn
    set status {enable | disable}   Enable/disable Overlay Controller cloud assisted VPN.
    set poll-interval {integer}   Overlay Controller VPN polling interval. range[30-120]
    config subnets
        edit {id}
        # Internal subnets to register with Overlay Controller VPN service.
            set id {integer}   ID. range[0-4294967295]
            set type {subnet | interface}   Subnet type.
                    subnet     Configure participating subnet IP and mask.
                    interface  Configure participating LAN interface.
            set subnet {ipv4 classnet any}   IPv4 address and subnet mask.
            set interface {string}   LAN interface. size[15] - datasource(s): system.interface.name
        next
    set ha-alias {string}   Hidden HA alias. size[35]
end
    Previous
    Next