Interface
Configuring a virtual IPSec interface
82
If at any time your Fortigate unit cannot contact the DDNS server, it will retry three
times at one minute intervals and then change to retrying at three minute intervals.
This is to prevent flooding the DDNS server.
Figure 36: DDNS service configuration
Server
Select a DDNS server to use. The client software for these services is built
into the FortiGate firmware. The FortiGate unit can connect only to one of
these services.
Domain
The fully qualified domain name of the DDNS service.
Username The user name to use when connecting to the DDNS server.
Password The password to use when connecting to the DDNS server.
You create a virtual IPSec interface by selecting IPSec Interface Mode in
VPN > IPSec > Auto Key or VPN > IPSec > Manual Key when you create a
VPN. You also select a physical or VLAN interface from the Local Interface list.
The virtual IPSec interface is listed as a subinterface of that interface in
System > Network > Interface. For more information, see
•
"Overview of IPSec interface mode" on page 285
•
"Auto Key" on page 287
Go to System > Network > Interface and select Edit on an IPSec interface to:
•
configure IP addresses for the local and remote endpoints of the IPSec
interface so that you can run dynamic routing over the interface or use ping to
test the tunnel
•
enable administrative access through the IPSec interface
•
enable logging on the interface
•
enter a description for the interface
Figure 37: Virtual IPSec interface settings
or
"Manual Key" on page 296
FortiGate Version 3.0 MR4 Administration Guide
System Network
01-30004-0203-20070102