Fritz 7270 VPN zu Fortinet 60

morty1975

Neuer User
Mitglied seit
5 Sep 2008
Beiträge
1
Punkte für Reaktionen
0
Punkte
1
Hallo Leute bin neu hier und suhe jemanden der schon mal versucht hat eine AVM FritzBox 7270 per VPN mit einer Fortinet 60 zu verbinden.

mfg
Morty
 

yngve0

Neuer User
Mitglied seit
30 Sep 2005
Beiträge
16
Punkte für Reaktionen
0
Punkte
1
Diese fungiert für mich:
Fritz-konfig:
Code:
/*
 * C:\Documents and Settings\fritzbox.cfg
 * Sun May 31 16:31:20 2009
 */

vpncfg {
        connections {
                enabled = yes;
                conn_type = conntype_lan;
                name = "<friendlyname>";
                always_renew = no;
                reject_not_encrypted = no;
                dont_filter_netbios = yes;
                localip = 0.0.0.0;
                local_virtualip = 0.0.0.0;
                remoteip = 0.0.0.0;
                remote_virtualip = 0.0.0.0;
                remotehostname = "<FG_FQDN>";
                localid {
                        fqdn = "<Fritz_FQDN>";
                }
                remoteid {
                        fqdn = "<FG_FQDN>";
                }
                mode = phase1_mode_aggressive;
                phase1ss = "def/3des/sha";
                keytype = connkeytype_pre_shared;
                key = "<PSK-Key>";
                cert_do_server_auth = no;
                use_nat_t = no;
                use_xauth = no;
                use_cfgmode = no;
                phase2localid {
                        ipnet {
                                ipaddr = <Fritz_LokalNet>;
                                mask = <Fritz_Subnet>;
                        }
                }
                phase2remoteid {
                        ipnet {
                                ipaddr = <FG_LocaleNet>;
                                mask = <FG_Subnet>;
                        }
                }
                phase2ss = "esp-3des-sha/ah-no/comp-no/pfs";
                accesslist = "permit ip any <FG_LocaleNet> <FG_Subnet>";
        }
        ike_forward_rules = "udp 0.0.0.0:500 0.0.0.0:500", 
                            "udp 0.0.0.0:4500 0.0.0.0:4500";
}


// EOF
Fortigate 200A (mit FW 4.0.2 Build 0099)

Code:
config vpn ipsec phase1-interface
   edit "GW_<FriendlyName>"
        set type ddns
        set interface "wan1"
        set dhgrp 1
        set proposal 3des-sha1
        set mode aggressive
        set remotegw-ddns "<FritzFQDN>"
        set psksecret ENC <PSK-Key>
    next
end
config vpn ipsec phase2-interface
    edit "vpn_<FriendlyName"
        set dhgrp 1
        set phase1name "GW_<FriendlyName>"
        set proposal 3des-sha1
        set dst-subnet <Fritz_LokalNet> <Fritz_Subnet>
        set src-subnet <FG_LocaleNet> <FG_Subnet>
    next
end
And of course Firewall-rules and routing entries as needed in FG-end.
 
Zuletzt bearbeitet:

3CX PBX - GRATIS
Linux / Win / Cloud

Statistik des Forums

Themen
233,165
Beiträge
2,030,845
Mitglieder
351,559
Neuestes Mitglied
waltky