Re: Site2Site IPSec no remote ID Option
Yes but why is every vendor handling this different and fortigate has not the option for that?
you're right normally you use the IP as ID but we had some special HA VPN Configuration which we had to use a string as a ID.
IKEv1 is not an option because it's not state of the art anymore.
Forti Site 1: IP 22.214.171.124, Local subnet 10.2.0.0/24
Forti Site 2: IP 126.96.36.199, Local subnet 10.3.0.0/24
The other sites which connects both Sites on a NSX Edge needs the remote ID.
Config 1: Remote ID *, Remote IP 188.8.131.52, Remote net 10.2.0.0/24
Config 1: Remote ID *, Remote IP 184.108.40.206, Remote net 10.3.0.0/24
But you cannot use * as a remote id twice because it has to be unique.
So I cannot setup two tunnels to 2 Fortigates because they don't support the remote ID.