Concentrator, Concentrator list – Fortinet 100A User Manual
Page 256
256
01-28007-0068-20041203
Fortinet Inc.
Concentrator list
VPN
Concentrator
In a hub-and-spoke configuration, connections to a number of remote peers radiate
from a single, central FortiGate unit. Site-to-site connections between the remote
peers do not exist; however, VPN tunnels between any two of the remote peers can
be established through the FortiGate unit “hub”.
In a hub-and-spoke network, all VPN tunnels terminate at the hub. The peers that
connect to the hub are known as “spokes”. The hub functions as a concentrator on the
network, managing all VPN connections between the spokes. VPN traffic passes from
one tunnel to the other through the hub.
You define a concentrator to include spokes in the hub-and-spoke configuration.
To define a concentrator
1
Go to VPN > IPSEC > Concentrator.
2
Follow the guidelines in these sections:
•
“Concentrator list” on page 256
•
“Concentrator options” on page 257
Concentrator list
Figure 128:IPSec VPN concentrator list
Authentication
Algorithm
Select one of the following message digests:
•
MD5-Message Digest 5 algorithm, which produces a 128-bit message
digest.
•
SHA1-Secure Hash Algorithm 1, which produces a 160-bit message
digest.
Authentication Key If you selected:
•
MD5, type a 32-character hexadecimal number (0-9, a-f) separated
into two segments of 16 characters.
•
SHA1, type 40-character hexadecimal number (0-9, a-f) separated
into one segment of 16 characters and a second segment of 24
characters.
Concentrator
If the tunnel will be included in a hub-and-spoke configuration, you may
select the concentrator from the list. The hub must be added to the
FortiGate configuration before it can be selected here. See
.