How to create Ipsec tunnel between the VOS and Fortinet using Concerto

Purpose:

The purpose of the document is to provide the step-by-step configuration to build a Site-to-Site IPSEC tunnel between the Vos device and the Fortinet(Third-party)

Topology:

Here we will take the vos device as the Ipsec peer.

Procedure:

Step1: Go to Configure>>SD-WAN>>Master profile >>>Select the profile where this configuration need to be present.

Select  Profile >>Network and choose the LAN network which will be the origin point. 

Step 2: Create the ipsec tunnel interface.
          

Select type as virtual
Select the category as tunnel , sub-category as Ipsec and location as ipsec-1
Sleect the transport available and the peer ip (Public IP of the peer side)

Step 3: Select the Ipsec parameters and make sure we need to choose the same parameters as Fortinet side

Step 4: Assign the Ip address for interface which we created previously

Step 5: Save and publish it to the device.

Fortinet configurations needs to done with the same Ipsec parameters.