Fortinet black logo

Administration Guide

Creating IPsec VPN communities

Creating IPsec VPN communities

You can create one or more IPsec VPN communities. An IPsec VPN community is also sometimes called a VPN topology. A VPN Topology Setup Wizard is available to help you set up topologies.

After you create the IPsec VPN community, you can create the VPN gateway. See IPsec VPN gateways.

To create a new IPsec VPN community:
  1. Go to VPN Manager > IPsec VPN > VPN Communities and click the All Communities from the dropdown to view all IPsec VPN communities.
  2. Click Create New in the content pane toolbar.

    The VPN Topology Setup Wizard is displayed.

  3. Enter a name for the topology in the Name field.
  4. Optionally, enter a brief description of the topology in the Description field.
  5. Choose a topology type: Full Meshed, Star, or Dial up.
    • Full Meshed: Each gateway has a tunnel to every other gateway.
    • Star: Each gateway has one tunnel to a central hub gateway.
    • Dial up: Some gateways, often mobile users, have dynamic IP addresses and contact the gateway to establish a tunnel.
  6. Click Next.

  7. Configure the Authentication and Encryption information for the topology
  8. Click Next.
  9. Configure the VPN Zone, IKE Security Phase 1 Advanced Properties, IPsec Security Phase 2 Advanced Properties, and Advanced Options.
  10. Click Next.
  11. Review the topology information on the Summary page, then click OK to create the topology.

    After you have created the VPN topology, you can create managed and external gateways for the topology.

For descriptions of the options in the wizard, see VPN community settings.

Creating IPsec VPN communities

You can create one or more IPsec VPN communities. An IPsec VPN community is also sometimes called a VPN topology. A VPN Topology Setup Wizard is available to help you set up topologies.

After you create the IPsec VPN community, you can create the VPN gateway. See IPsec VPN gateways.

To create a new IPsec VPN community:
  1. Go to VPN Manager > IPsec VPN > VPN Communities and click the All Communities from the dropdown to view all IPsec VPN communities.
  2. Click Create New in the content pane toolbar.

    The VPN Topology Setup Wizard is displayed.

  3. Enter a name for the topology in the Name field.
  4. Optionally, enter a brief description of the topology in the Description field.
  5. Choose a topology type: Full Meshed, Star, or Dial up.
    • Full Meshed: Each gateway has a tunnel to every other gateway.
    • Star: Each gateway has one tunnel to a central hub gateway.
    • Dial up: Some gateways, often mobile users, have dynamic IP addresses and contact the gateway to establish a tunnel.
  6. Click Next.

  7. Configure the Authentication and Encryption information for the topology
  8. Click Next.
  9. Configure the VPN Zone, IKE Security Phase 1 Advanced Properties, IPsec Security Phase 2 Advanced Properties, and Advanced Options.
  10. Click Next.
  11. Review the topology information on the Summary page, then click OK to create the topology.

    After you have created the VPN topology, you can create managed and external gateways for the topology.

For descriptions of the options in the wizard, see VPN community settings.