VPN between Fortigate and Cisco RV130 VPN Firewall

lnhquang1993 · ‎12-24-2017

Hi everyone,

I have problem with my VPN config. I try to establish a site to site VPN but it not working.

My Fortigate stand behind Peplink but I was configure NAT mapping for it. The Phase 1 neotigate success but it still not working.

Here is my config and some log : [image]https://ibb.co/mvUpzm [link]https://ibb.co/dhQUzm[/link] [link]https://ibb.co/fneBC6[/link] [link]https://ibb.co/chENKm[/link][/image]

Sidewaysguy · ‎12-24-2017

Hi there,

I'm not familiar with Peplink. In your config are you NAT'd or do you have a public IP? How about the other side?

Cheers,

Sidewaysguy

lnhquang1993 · ‎12-25-2017

Hi,

Don't mind abount Peplink cause i was config NAT mapping on it. So, all the traffic will be forward to Fortigate. 2 IP public is on Peplink. WAN interface of Fortigate using IP Private. The Orther site using Cisco RV130 VPN Firewall. As i said before, Phase 1 is success and i see it in Log and Report > VPN Event on Fortigate. But Phase 1 í being deleted right after it. I don't know why

Sidewaysguy · ‎12-27-2017

Hey there,

From your screen shots, it looks like it isn't fully connecting due to a IKE SA mismatch. So that could be part of the problem. As well, despite you creating a NAT forwarding rule, realize that you are still behind NAT and you need to account for that as there will be potential issues.

mahesh_secure · ‎12-28-2017

Hi

execute the below command and share the logs.

diag debug disable
diag debug reset
diag vpn ike log filter name <phase1-name> 
diag debug app ike -1
diag debug enable

[size="4"]Mahesh[/size]