[vpn-help] DHCP over IPSEC to Fortigate: Do we get this resolved?

Matthew Grooms mgrooms at shrew.net
Wed Jun 12 21:37:26 CDT 2013 

Well, I know it's not completely broken because it works fine with the 
Fortigate in my lab. Admittedly, it's firmware is woefully out of date.

-Matthew

On 6/12/2013 6:26 PM, Noach Sumner wrote:
> I helped write way back yonder the instructions for the Fortigate. I
> admit I haven't used it in ages as I have embraced OpenVPN. But I can
> take a look as well if you need. You need to setup very specific rules
> to get the DHCP to work properly (or it is completely broken now which
> is also possible).
>
>
> On Thu, Jun 13, 2013 at 1:23 AM, Harondel J. Sibble <help at pdscc.com
> <mailto:help at pdscc.com>> wrote:
>
>
>
>     On 9 Jun 2013 at 11:46, Matthew Grooms wrote:
>
>      > On 6/6/2013 12:57 AM, Martin Hess wrote:
>      > > Hi!
>      > > I posted some time ago about an issue to aquire DHCP addresses
>     through a
>      > > IPSEC tunnel to a Fortigate:
>      > >
>     https://lists.shrew.net/pipermail/vpn-help/2013-February/014159.html
>      > >
>     https://lists.shrew.net/pipermail/vpn-help/2013-February/014172.html The
>      > > problem still exists with the new 2.2.1 Pro Version. Thank you
>     for any help!
>      >
>      >
>      > Martin,
>      >
>      > I will take a look at this and get back to you as soon as I have
>     found a
>      > solution to the problem.
>
>     Matthew, as back in the day when you first added Fortinet support, I
>     have
>     numerous Fortigate devices from 3.x to 5.x firmwares I can test with.
>
>     Looking at the tunnels I have setup in Shrew on my desktop to some
>     of the
>     afore mentioned fortigate routers, I have them ALL set with static ip's
>     rather than DHCP over IPSEC as I do remember issues with that
>     functionality
>     over the years.
>     --
>     Harondel J. Sibble
>     Sibble Computer Consulting
>     Creating Solutions for the small and medium business computer user.
>     help at pdscc.com <mailto:help at pdscc.com> (use pgp keyid 0x3CC3CFCE not
>     0x3AD5C11D)
>     http://www.pdscc.com
>     Blog: http://www.pdscc.com/blog
>     (604) 739-3709 <tel:%28604%29%20739-3709> (voice)
>
>     _______________________________________________
>     vpn-help mailing list
>     vpn-help at lists.shrew.net <mailto:vpn-help at lists.shrew.net>
>     https://lists.shrew.net/mailman/listinfo/vpn-help
>
>
>
>
> _______________________________________________
> vpn-help mailing list
> vpn-help at lists.shrew.net
> https://lists.shrew.net/mailman/listinfo/vpn-help
>

More information about the vpn-help mailing list