Hello, set an IPSEC VPN in a firewall fortigate 200A and I connect with the customer VPN forticlient, the connection is carried out properly, but after a few seconds forticlient me an error that says: "VPN has trouble conecting with the remote gateway, retrying now ... if you don `t want to continue, press close button to terminate the connection." When i check the logs generated by forticlient tells me: program = (unknown) msg = loc_ip = w.x.y.z loc_port = 500 rem_ip = abcd rem_port = 500 out_if = 0 vpn_tunnel = testx status = negotiate_error msg = "Failed to acquire an IP address. .. someone knows which can be an issue in which my pc does not acquire ip address? I tested with static address and configuring a DHCP server but has not proved. Will be necessary to set up something extra in addition to the firewall VPN tunnel?
Hello, thanks for responding. I did what I propusiste and I accerder the intranet servers, but every minute around the connection is dropped and must be lifted again. To this might be? Thanks in advance. The log in the fortigate say this:
12 2007-12-23 17:39:10 error negotiate Negotiate SA Error: No matching gateway for new phase 1 request.
13 2007-12-23 17:39:02 error error Received ESP packet with unknown SPI.
14 2007-12-23 17:38:59 error error Received ESP packet with unknown SPI.
15 2007-12-23 17:38:56 error error Received ESP packet with unknown SPI.
16 2007-12-23 17:38:55 error negotiate Negotiate SA Error: No matching gateway for new phase 1 request.
17 2007-12-23 17:38:53 error error Received ESP packet with unknown SPI.
18 2007-12-23 17:38:50 error error Received ESP packet with unknown SPI.
This post is old but I will reply anyway. The problem I see is that you created phase 2 and made some source and destination addresses which anyhow is not meeting at your client setting. Try to leave these source and destination addresses default which would be 0.0.0.0/0.
What are the prerequisites of a Virtual Private Network? How do I actually go about installating a VPN? If I don't have a fixed IP address, can I still install a VPN? I have website via a web hosting company. To run a WAN application, do I have to install the shared files at the website?
Regarding a VPN with regards to connection? How exactly does it work. Can you like create a VPN and then use your home internet connection(say in US) to access the internet while you are say in say Japan. Or is it more like you connect to a network in Japan and then use your VPN to use the Japan network securely?