Fortinet Document Library

Version:

Version:

Version:


Table of Contents

Cookbook

Download PDF
Copy Link

Configuring the IPsec VPN on HQ

  1. To create the tunnel on HQ, connect to HQ and go to VPN > IPsec Tunnels.
  2. In the VPN Setup step, set Template Type to Custom and enter VPN-to-Branch for the Name.

  3. Enter Branch’s public IP address (in the example, 172.25.177.46) for the IP Address, and select HQ’s WAN interface for Interface (in the example, wan1).

  4. Enter a secure key for the Pre-shared Key. Later, you will enter the same key in the "Configuring the IPsec VPN on Branch" section.

  5. Type the new address ranges selected in the "Planning the new addressing scheme" section for HQ and Branch’s LAN in the Local Address and Remote Address fields (in the example, 10.1.1.0/24 and 10.2.2.0/24, respectively).

  6. Optionally, expand Advanced and enable Auto-negotiate.

Configuring the IPsec VPN on HQ

  1. To create the tunnel on HQ, connect to HQ and go to VPN > IPsec Tunnels.
  2. In the VPN Setup step, set Template Type to Custom and enter VPN-to-Branch for the Name.

  3. Enter Branch’s public IP address (in the example, 172.25.177.46) for the IP Address, and select HQ’s WAN interface for Interface (in the example, wan1).

  4. Enter a secure key for the Pre-shared Key. Later, you will enter the same key in the "Configuring the IPsec VPN on Branch" section.

  5. Type the new address ranges selected in the "Planning the new addressing scheme" section for HQ and Branch’s LAN in the Local Address and Remote Address fields (in the example, 10.1.1.0/24 and 10.2.2.0/24, respectively).

  6. Optionally, expand Advanced and enable Auto-negotiate.