[VMC on AWS] Configuring VMC VPN connection for use with Fortigate 7.0.5
book
Article ID: 313625
calendar_today
Updated On:
Products
VMware Cloud on AWS
Issue/Introduction
When configuring VMC VPN with the other side terminating on a Fortigate 7.0.5 (or newer version) the VPN needs to be configured using the Remote ID as the Fortigate's Public IP (EIP).
This is a change from Fortigate version 6.4.8 where using this Public IP (EIP) would result in an auth failure, and the VPC Private IP had to be used. In Fortigate 7.0.5 using the VPC Private IP results in auth failure, and the Public IP (EIP) must be used.
Resolution
When configuring VMC VPN with the other side terminating on a Fortigate 7.0.5 (or newer version) the VPN needs to be configured using the Remote ID as the Fortigate's Public IP (EIP).