Home > IT Answers > Networking > VPN between DLink and Fortinet
Help

Question

  Asked: Oct 10 2007   9:14 PM GMT
  Asked by: Techpupil

VPN between DLink and Fortinet


VPN, D-Link, Fortinet, Security products, Hardware devices, Firewall security

Hi,

I have a DLink - DI-824VUP+ and a Fortinet60. How can I create VPN tunnel between these two.

Thanx.

Subscribe to Alerts! Get questions and answers delivered to your Inbox.


E-mail me updates on this question



   SUBSCRIBE

hidden modal window
Help

Answer Wiki (Improve, edit or add to this answer)

IMPROVE THIS ANSWER
View History
 RATE THIS ANSWER
0
Click to Vote:
  •   0
  •  0
Last Answered: Oct 15 2007  4:25 PM GMT  by Davis420




In theory, you should be able to configure a VPN tunnel between these two. They both say that they support site to site VPN tunnels, IPSEC, and and IKE. Thus, if they really support the standards it *should* just work.

However, from experience, configuring something like this can be a real pain. If it were me, I would just press to find a way to get the same device on each side because of all the unknow issues and time associated with trying to make it work. but that is just my opinion.

Best of luck to you,
David Davis
Checkout my website: HappyRouter.com - home of IT Training videos
and Visit my ITKE Blog covering Cisco Routers!
  • AddThis Social Bookmark Button

Browse more Questions and Answers on Networking and Security.

Looking for relevant Networking Whitepapers? Visit the SearchNetworking.com Research Library.


RSS - Discussions Help

Discuss This Answer


You must be logged-in to discuss a question. Log-in/Register

Mnemonyss  |   Nov 14 2007  7:23PM GMT

You should decide on your encryption level (DES/3DES/AES) depending on what each of these support. They should both have a user interface to plug in these values to. Possibly even via command line.

Remember for a site to site (as site to site requires an endpoint on each end which is usually a router or firewall) the configuration must match on both sides except for peer ip information will be flipped.

For instance if your Phase 1 is:

3DES
SHA1
DH 2
8600

and Phase 2 is

3DES
SHA1
no PFS

Then it must be the set this way on both ends of the vpn on each device.

You’ll also need to ensure the ACL’s match (the rules to allow traffic to your internal network from the remote network on each side)

I hope this gives you some direction, I can not vouch for compatibility of each unit as I am a Cisco ASA/PIX user, tho I have configured VPN’s through Watchguard’s, Firebox’s, Checkpoint’s, and Netscreen’s. Ipsec VPN’s are pretty much universal everywhere if they are site to site. Dynamic Ipsec VPN’s will be a little different. You’ll need to determine which VPN your firewall/router support.