Purpose:
The purpose of the document is to provide the step-by-step configuration to build a Site-to-Site IPSEC tunnel between the Vos device and the Fortinet(Third-party)
Topology:
Here we will take the vos device as the Ipsec peer.
Procedure:
Step1: Go to Configure>>SD-WAN>>Master profile >>>Select the profile where this configuration need to be present.
Select Profile >>Network and choose the LAN network which will be the origin point.
Step 2: Create the ipsec tunnel interface.
Select type as virtual
Select the category as tunnel , sub-category as Ipsec and location as ipsec-1
Sleect the transport available and the peer ip (Public IP of the peer side)
Step 3: Select the Ipsec parameters and make sure we need to choose the same parameters as Fortinet side
Step 4: Assign the Ip address for interface which we created previously
Step 5: Save and publish it to the device.
Fortinet configurations needs to done with the same Ipsec parameters.