Fortinet FortiGate-800 Network Card User Manual


  Open as PDF
of 336
 
Contents
10 Fortinet Inc.
IPSec VPN........................................................................................................... 231
Key management............................................................................................................ 232
Manual Keys ............................................................................................................... 232
Automatic Internet Key Exchange (AutoIKE) with pre-shared keys or certificates ..... 232
Manual key IPSec VPNs................................................................................................. 233
General configuration steps for a manual key VPN .................................................... 233
Adding a manual key VPN tunnel ............................................................................... 233
AutoIKE IPSec VPNs...................................................................................................... 235
General configuration steps for an AutoIKE VPN ....................................................... 235
Adding a phase 1 configuration for an AutoIKE VPN.................................................. 235
Adding a phase 2 configuration for an AutoIKE VPN.................................................. 240
Managing digital certificates............................................................................................ 242
Obtaining a signed local certificate ............................................................................. 242
Obtaining CA certificates ............................................................................................ 245
Configuring encrypt policies............................................................................................ 245
Adding a source address ............................................................................................ 246
Adding a destination address...................................................................................... 247
Adding an encrypt policy............................................................................................. 247
IPSec VPN concentrators ............................................................................................... 249
VPN concentrator (hub) general configuration steps .................................................. 250
Adding a VPN concentrator ........................................................................................ 251
VPN spoke general configuration steps...................................................................... 252
Redundant IPSec VPNs.................................................................................................. 253
Configuring redundant IPSec VPNs............................................................................ 254
Monitoring and Troubleshooting VPNs ........................................................................... 255
Viewing VPN tunnel status.......................................................................................... 255
Viewing dialup VPN connection status ....................................................................... 255
Testing a VPN............................................................................................................. 256
PPTP and L2TP VPN .......................................................................................... 257
Configuring PPTP ........................................................................................................... 257
Configuring the FortiGate unit as a PPTP gateway .................................................... 258
Configuring a Windows 98 client for PPTP ................................................................. 260
Configuring a Windows 2000 client for PPTP ............................................................. 261
Configuring a Windows XP client for PPTP ................................................................ 261
Configuring L2TP............................................................................................................ 263
Configuring the FortiGate unit as an L2TP gateway ................................................... 263
Configuring a Windows 2000 client for L2TP.............................................................. 265
Configuring a Windows XP client for L2TP ................................................................. 267
 previous next