VPN S2S Fortigate Not Working
jhmello
Newbie ✭
I'm trying to close a VPN with a Fortigate that is behind a NAT, but I can't establish the connection. I see phase 1 and 2 closed on the Fortigate, however on the Sonicwall the VPN is not available. I get the message "IKEv2 Unable to find IKE SA". I've tried all the procedures available on the internet, nothing works. Does anyone have any idea?
Thanks
Category: Entry Level Firewalls
0
Answers
What model Sonicwall are you using? What firmware version is it on? Provide us sanitized screenshots of both configs.
Establishing a S2S VPN when NAT is involved is tricky. I usually rely on IKE identifiers other than 'IP address'. Sonicwalls also tend to view non-static IP address VPN endpoints as 'dynamic clients' and thus other settings come into play. You may have to adjust IPSec VPN/Advanced/IKEv2 Settings/IKEv2 Dynamic Client Proposal to match the expected settings.