Adding a vpn concentrator – Fortinet FortiGate 4000 User Manual

IPSec VPN

IPSec VPN concentrators

FortiGate-4000 Installation and Configuration Guide

255

See

“Adding an encrypt policy” on page 251

.

5

Arrange the policies in the following order:
• encrypt policies
• default non-encrypt policy (Internal_All -> External_All)

Adding a VPN concentrator

To add a VPN concentrator configuration

1

Go to VPN > IPSec > Concentrator.

2

Select New to add a VPN concentrator.

3

Enter the name of the new concentrator in the Concentrator Name field.

4

To add tunnels to the VPN concentrator, select a VPN tunnel from the Available
Tunnels list and select the right arrow.

5

To remove tunnels from the VPN concentrator, select the tunnel in the Members list
and select the left arrow.

6

Select OK to add the VPN concentrator.

Figure 74: Adding a VPN concentrator

Source

Internal_All

Destination

The VPN spoke address.

Action

ENCRYPT

VPN Tunnel

The VPN spoke tunnel name.

Allow inbound Select allow inbound.
Allow outbound Select allow outbound
Inbound NAT

Select inbound NAT if required.

Outbound NAT Select outbound NAT if required.