Phase 2 List - Fortinet FortiGate FortiGate-1000A Administration Manual
Fortinet fortigate fortigate-1000a: user guide
Hide thumbs
Also See for FortiGate FortiGate-1000A:
- Install manual (58 pages) ,
- Quick start manual (2 pages) ,
- Administration manual (458 pages)
Table of Contents
Advertisement
VPN
Phase 2 list
FortiGate-1000A/FA2 Administration Guide
To configure phase 2 settings
1
Go to VPN > IPSEC > Phase 2.
2
Follow the general guidelines in these sections:
•
"Phase 2 list" on page 267
•
"Phase 2 basic settings" on page 268
•
"Phase 2 advanced options" on page 268
For information about how to choose the correct phase 2 settings for your particular
situation, refer to the
Note: The procedures in this section assume that you want the FortiGate unit to generate
unique IPSec encryption and authentication keys automatically. In situations where a remote
VPN peer requires a specific IPSec encryption and/or authentication key, you must configure
the FortiGate unit to use manual keys instead. For more information, see
page
270.
Figure 130:IPSec VPN Phase 2 list
Create New
Tunnel Name
Remote Gateway
Lifetime (sec/kb)
Status
Timeout
Delete and Edit
icons
FortiGate VPN
Guide.
Select Create New to create a new phase 2 tunnel configuration.
The names of existing tunnel configurations.
The names of the phase 1 configurations that are associated with the
tunnel configurations.
The tunnel key lifetime.
The current status of the tunnel. If Down, the tunnel is not processing
traffic. If Up, the tunnel is currently processing traffic. Unknown is
displayed for dialup tunnels.
If the tunnel is processing VPN traffic, the Timeout value specifies
amount of time left before the next phase 2 key exchange. When the
phase 2 key expires, a new key is generated without interrupting service.
Delete or edit a phase 2 configuration.
01-28011-0254-20051115
Phase 2
"Manual key" on
267
Advertisement
Table of Contents
