Fortinet black logo

Administration Guide

Creating IPsec VPN communities

Creating IPsec VPN communities

You can create one or more IPsec VPN communities. An IPsec VPN community is also sometimes called a VPN topology. A VPN Topology Wizard is available to help you set up topologies.

After you create the IPsec VPN community, you can create the VPN gateway. See IPsec VPN gateways.

To create a new IPsec VPN community:
  1. Go to the VPN Manager > IPsec VPN tab.
  2. Do one of the following:
    • From the VPN Community menu select Create New.
    • Click Create New in the content pane toolbar.
    • Right-click in the tree menu or on an existing community and select Create New.

    The VPN Topology Setup Wizard is displayed.

  3. Enter a name for the topology in the Name field.
  4. Optionally, enter a brief description of the topology in the Description field.
  5. Choose a topology type: Full Meshed, Star, or Dial up.
    • Full Meshed: Each gateway has a tunnel to every other gateway.
    • Star: Each gateway has one tunnel to a central hub gateway.
    • Dial up: Some gateways, often mobile users, have dynamic IP addresses and contact the gateway to establish a tunnel.
  6. Click Next.

  7. Configure the Authentication and Encryption information for the topology
  8. Click Next.
  9. Configure the VPN Zone, IKE Security Phase 1 Advanced Properties, IPsec Security Phase 2 Advanced Properties, and Advanced Options.
  10. Click Next.
  11. Review the topology information on the Summary page, then click OK to create the topology.

    After you have created the VPN topology, you can create managed and external gateways for the topology.

For descriptions of the options in the wizard, see VPN community settings.

Creating IPsec VPN communities

You can create one or more IPsec VPN communities. An IPsec VPN community is also sometimes called a VPN topology. A VPN Topology Wizard is available to help you set up topologies.

After you create the IPsec VPN community, you can create the VPN gateway. See IPsec VPN gateways.

To create a new IPsec VPN community:
  1. Go to the VPN Manager > IPsec VPN tab.
  2. Do one of the following:
    • From the VPN Community menu select Create New.
    • Click Create New in the content pane toolbar.
    • Right-click in the tree menu or on an existing community and select Create New.

    The VPN Topology Setup Wizard is displayed.

  3. Enter a name for the topology in the Name field.
  4. Optionally, enter a brief description of the topology in the Description field.
  5. Choose a topology type: Full Meshed, Star, or Dial up.
    • Full Meshed: Each gateway has a tunnel to every other gateway.
    • Star: Each gateway has one tunnel to a central hub gateway.
    • Dial up: Some gateways, often mobile users, have dynamic IP addresses and contact the gateway to establish a tunnel.
  6. Click Next.

  7. Configure the Authentication and Encryption information for the topology
  8. Click Next.
  9. Configure the VPN Zone, IKE Security Phase 1 Advanced Properties, IPsec Security Phase 2 Advanced Properties, and Advanced Options.
  10. Click Next.
  11. Review the topology information on the Summary page, then click OK to create the topology.

    After you have created the VPN topology, you can create managed and external gateways for the topology.

For descriptions of the options in the wizard, see VPN community settings.