Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Not applicable

Created on ‎12-18-2006 12:00 AM

Article Id 196558

VPN connection using ipsecuritas

Article
DescriptionSteps to use Mac IPSec connection software to connect to a FortiGate unit over VPN.
Components
  • All FortiGate units running FortiOS 3.0 MR3 or higher
  • Macintosh computer running Mac OS 10.2 or higher
  • IPSec connection software IPSecuritas (Freeware).
Steps or Commands

Configure the FortiGate unit

First, configure the FortiGate unit with a user, user group and VPN tunnel.

Create a user and user group

To create a user

  1. Go to User> Local and select Create New.
  2. Enter the user information and select OK.

To create a user group

  1. Go to User> User Group and select Create New.
  2. Enter group name.
  3. Select a Type of Firewall.
  4. Select a Protection Profile from the list.
  5. Select a user from the list of Available Users/Groups and select the Right-pointing arrow to add it to the Members list.
  6. Select OK.

Create IPSec Phase 1

  1. Go to VPN> IPSec> Auto Key (IKE).
  2. Select Create Phase 1.
  3. Set the following options and select OK. Note that these and Advanced options may vary depending on your configuration requirement.
    NameName of the Phase 1 settings.
    Remote GatewaySelect Dialup User.
    ModeSelect Aggressive
    Authentication MethodPreshared Key (Note that the Pre-shard key must be empty)
    Peer OptionsSelect Accept peer id in dialup group and select the group configured in the previous step.
    AdvancedSelect to configure advanced options as required.

Create IPSec Phase 2

  1. Go to VPN> IPSec> Auto Key (IKE).
  2. Select Create Phase 2.
  3. Set the following options and select OK. Note that these and Advanced options may vary depending on your configuration requirement.
    NameEnter the Phase 2 name.
    Phase 1Select the Phase 1 name created in the previous step.
    AdvancedSelect to configure advanced options as required.

Create a IPSec Firewall policy to allow the VPN traffic through the FortiGate unit.

Configuring the IPSecuritas software

Install the software as per the software documentation to your Applications folder.

To create a VPN configuration

  1. Launch the application and select New.
  2. Enter a Connection Name.
  3. In the General tab, select Host to Network.
  4. Enter the Remote Network IP address.
  5. Select the Exchange Mode of Aggressive.
  6. Configure the Phase 1 and Phase 2 encryptions to match the settings on the FortiGate unit.
  7. Select Id/Auth and enter the Pressured Secret (preshared key).
  8. Select OK.

To start a VPN tunnel, select the entry from the application and select Start IPSec.


Related Articles

List of articles about Fortigate IPSec VPN interoperability

Labels:
3061
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.