Day-07 | How to Configure IPSec VPN between Fortigate Firewall | Fortigate firewall for Beginners

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

Hello friends welcome to my YouTube channel technique guide friends in this video I am going to tell you how to configure ipsec side to side VPN between 2 40 gate firewall so friends you can see this is my headquarter firewall and this image Branch firewall so I will configure ipsec VPN between two firewall HQ farewell and Branch farewell okay so you can see my headquarter firewall IP address when IP address is 180 to 168 1.101 and branch office firewall IP address is 1.102 okay both are connected to ISP and you can see this is my headquarter Network 10 Dot which we have to encrypt which will be passed through VPN domain okay and this is my and this is my branch office parallel Network okay uh branch office 20.1.20.1. download Zero slash 24 so we will put this network in encryption domain okay VPN domain so friends you can see this is my HQ firewall interfaces here Port 1 is configured as a lan okay Port 3 is configured is a van interface okay IP address 1.101 Lan IPL 1.1 okay now friends you can see this is my branch office firewall okay branch of his spiral and branch office firewall IP when learn iph this will be Port one is a line okay Port two three is fine okay branch open Line IP is 20.1.1 and when 1.102 okay so my default gateway is towards 1.101 okay now friends we have to configure here ipsec VPN first we will configure ipsec VPN on on headquarter firewall this firewall okay so you can see this is my headquarter firewall okay now friends you can see VPN here okay VPN click here and we have to click on ipsec Tunnel okay so you can create IP sectional from here or we can click here to ipsec wizard here okay we can create from here or we can select here and create new click on create new and then click on IP sectional okay now we have to provide name here ipsec between HQ to branch okay hq2 Branch now we have to select side to side okay no net between side okay so friends you can see remote firewall is also 40 gate so we have to select 40 gate and then click on next Okay now click on next now friends we have to provide a remote IP address okay remote IP address is for headquarter firewall remote type is 192.168.1.102 okay 192 168 1.102 okay now we have to select outgoing interface outgoing interfaces when three okay now provide your preset key here you have to remember preset key so same preset key we have to configure on other firewall now click on next here now friends we have to provide a local interface our local interface is plan one okay then we have to select local 78 you can see Local 70 10.1.20 we can also add multiple subnet here okay if you want to add okay but right now I have only one subnet now friends we have to provide a remote subnet so remote 780 20.1.1.0 okay so 20.1.1.0 slash 24 now friends click on next now friends you can see summary here object summary phase one is ipsec HQ Branch local address group is ipsec HQ Branch local so friends it will automatically create rule here from local to remote site you can see chain remote to local policy it will create true role automatically now click on create here now friends IPC VPN configured here now we go to tunnel so Prince you can see I please check tunnel is down because we have not configured other firewall Branch firewall okay now friends let's configure Branch farewell okay now friends you can see this image Branch parallel okay so now we will configure ipsec here go to VPN okay now we can click here ipsec now we will click from IPC wizard select ipsec wizard now here provide your name Branch 2 okay Branch to sq ipsec now we have to select side to side okay then we have to select same remote devices for ticket now click on next now remote IP address should be so for branch office firewall remote IP is 1.101 okay 1.101 192 168 1.101 now outgoing interface when now print same key we have to provide here which we have provided on headquarter firewall okay now click on next now friends we have to select local interface local interface e Port one okay you can see port 1. 1 and our local IP 20.1.0 now remote subnet we have to select here remote subnet so remote seven net is 10.1.0 10.1.1.0 24. now click on next now you can see it will our phase one interface Branch to HQ ipsec local address group Branch to sq local remote now it will also create two policy local to remote remote to local okay now click on create the VPN has been set up here okay now let's go to IP sector so it will take some time to up here actually now prints go to headquarter firewall now headquarter firewall you can see so it will be up in a while now friends now friends you can see phase one is up and Phase 2 is down here so what we have to do just click here so you can see you can see phase one is up and Phase 2 down here so we have to select this and we have to click here bring up okay phase two selector so now you can see Phase 2 is up here and let's go to branch office okay so in Branch parallel go to IP sectional and you can see it's also up here okay just click here so you can see phase one is up and phase two is also up means our ipsec VPN is successfully established here so now we have to initiate traffic here now friends we can initiate traffic from headquarter router to Branch router okay so now let's click here to just let me enable debug debug IP icmp okay so friends I have enabled debug here now I will now I will ping from headquarter R12 Branch around ping 20.1.1 Dot 10. foreign 10 so you can see successfully pinging and traffic passing through IPC we will let me type from this end now friend let's check here on firewall so just refresh it okay just refresh and the click here so you can see 1 KB means traffic means friend traffic is passing through firewall layer okay so let me again initiate traffic from now friend let me again initiate traffic from Branch to headquarter so let me click here debug IP icmp so now let me ping here from Branch router to headquarter router ping so you can see traffic is coming to headquarter router let's check here on just refresh it so you can see we have incoming and outgoing data here okay so friends in this video we have seen how to configure ipsec VPN between 40 gate firewall so thanks for watching this video have a nice day

Info

Channel: TechNet Guide

Views: 14,705

Rating: undefined out of 5

Keywords: how to, technet guide, fortigate firewall, fortigate firewall for beginners, ipsec vpn configuration in fortigate firewall, ipsec vpn between fortigate firewall, configure ipsec vpn, ipsec vpn configure, ipsec vpn, site to site vpn, site to site vpn fortigate, vpn, fortigate ipsec vpn configuration, fortigate, fortigate ipsec vpn site to site, ipsec vpn fortigate, fortios

Id: 0S17ofudxgk

Channel Id: undefined

Length: 9min 44sec (584 seconds)

Published: Tue Jan 03 2023