Page 2 FortiOS 3. All rights reserved. No part of this publication including text, examples, diagrams or illustrations may be reproduced, transmitted, or translated in any form or by any means, electronic, mechanical, manual, optical or otherwise, for any purpose, without prior written permission of Fortinet, Inc. Page 3: Table Of Contents Document conventions Page 4 Advanced configuration
|Published (Last):||14 July 2016|
|PDF File Size:||6.47 Mb|
|ePub File Size:||11.23 Mb|
|Price:||Free* [*Free Regsitration Required]|
Gateway-to-gateway configurations explains how to set up a basic gateway-to-gateway site-to-site IPsec VPN. In a gateway-to-gateway configuration, two FortiGate units create a VPN tunnel between two separate private networks. In a FortiClient dialup-client configuration, the FortiGate unit acts as a dialup server and VPN client functionality is provided by the FortiClient Endpoint Security application installed on a remote host. Internet-browsing configuration explains how to support secure web browsing performed by dialup VPN clients, and hosts behind a remote VPN peer.
Remote users can access the private network behind the local FortiGate unit and browse the Internet securely. All traffic generated remotely is subject to the security policy that controls traffic on the private network behind the local FortiGate unit. A FortiGate unit can be configured to support redundant tunnels to the same remote peer if the FortiGate unit has more than one interface to the Internet. In transparent mode, all FortiGate unit interfaces except the management interface are invisible at the network layer.
Phase 1 parameters provides detailed step-by-step procedures for configuring a FortiGate unit to accept a connection from a remote peer or dialup client. The basic Phase 1 parameters identify the remote peer or clients and support authentication through preshared keys or digital certificates.
You can increase VPN connection security further using methods such as extended authentication XAuth. During Phase 2, the specific IPsec security associations needed to implement security services are selected and a tunnel is established.
Defining VPN security policies explains how to specify the source and destination IP addresses of traffic transmitted through an IPsec VPN tunnel, and how to define a security encryption policy. Security policies control all IP traffic passing between a source address and a destination address. Logging and monitoring and Troubleshooting provide VPN monitoring and troubleshooting procedures.
Firmware Updates 50B
Fortigate 50B antenna connectors
Fortinet FortiGate FortiGate-50B Install Manual