Hot!VPN IPsec dialup peertype - how to use

Author
Yurisk
Platinum Member
  • Total Posts : 244
  • Scores: 45
  • Reward points: 0
  • Joined: 2011/12/04 03:30:01
  • Location: Israel
  • Status: offline
2020/10/14 00:44:42 (permalink)
0

VPN IPsec dialup peertype - how to use

Good day everyone,
I am trying to understand how and what for to use peertype dialup settings in Phase1 interface mode for IPSec VPN client connections. The documentation just lists this option, Google tells contradicting stories. I tried just for luck using Firewall group with local users  (setting via set usrgrp) - could not connect with any of them (Authentication failed), while using the same user group but peertype any works fine. 

 
That is what I mean:
(phase1-interface) # edit FCtun0
(FCtun0) # set peertype
any Accept any peer ID.
one Accept this peer ID.
dialup Accept peer ID in dialup group.
 
Thanks.
post edited by Yurisk - 2020/10/14 01:31:44

Yuri
https://yurisk.info/ blog: All things Fortinet, no ads.
#1
citromkolbasz
New Member
  • Total Posts : 3
  • Scores: 0
  • Reward points: 0
  • Joined: 2019/11/08 03:29:11
  • Status: offline
Re: VPN IPsec dialup peertype - how to use 2021/07/23 00:49:09 (permalink)
0
Have you found anything about this option in the official forti documentation? Or do you know the answer now?
#2
sw2090
Expert Member
  • Total Posts : 1012
  • Scores: 85
  • Reward points: 0
  • Joined: 2017/06/14 01:27:25
  • Location: Regensburg
  • Status: offline
Re: VPN IPsec dialup peertype - how to use 2021/07/26 03:11:38 (permalink)
0
peertype any will accept any peer id you submit upon dialling in. It will even accept an empty peer id.
one peerid will only accept this one specific peer id upon dialling in. You will only be able to dial in if you submit the correct peer id.
 
dialup probably allows you to enter some grup and put peers in there to have more then one bt not any :)

-- 
"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
#3
sw2090
Expert Member
  • Total Posts : 1012
  • Scores: 85
  • Reward points: 0
  • Joined: 2017/06/14 01:27:25
  • Location: Regensburg
  • Status: offline
Re: VPN IPsec dialup peertype - how to use 2021/07/26 03:11:52 (permalink)
0
peertype any will accept any peer id you submit upon dialling in. It will even accept an empty peer id.
one peerid will only accept this one specific peer id upon dialling in. You will only be able to dial in if you submit the correct peer id.
 
dialup probably allows you to enter some grup and put peers in there to have more then one bt not any :)

-- 
"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
#4
Jump to:
© 2021 APG vNext Commercial Version 5.5