I am just wondering if any of you know as to whether the VPN extension mode available with Cisco concentrators (PIX,ASA) can also be configured/supported when using Fortigates as clients and head end VPN server. As always .. Any experiences/URL about this would be much appreciated.
Because we are talking about 300 SOHO sites which need to terminated on the VPN head end at the Head office. Imagine creating 300+ LAN 2 LAN tunnels manually. Unfortunately the customer has already purchased the Fortigate firewalls and therefore am hoping there is a way to avoid the manual process. This could be possible (if suing Cisco instead ;-) ) if using the ASA network extension mode .. I could just create one single profile for all the 300 sites, use extended Authentication for extra security per site and get the sites fully routed by using the network extension mode .. so I am looking for somebody who had perhaps implemented something similar using Fortigate.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...