Route based VPN is WAY better than Policy based VPN
I am in the middle of helping a client absorb one of their clients. This involves moving all of the client’s client’s (redundant I know) IPSec tunnels into my clients FortiGate. This is all fine and dandy. I do IPSec tunnels all the time. Unfortunately for me though, my client’s client utilizes policy based VPN’s which work fine I suppose but jesus they are annoying. Yes, I know they do things just fine. Yes, I know they have their place. I may just be an old dog set in my ways but to me…..Route based IPSec tunnels is bae, Route based IPSec tunnels is life.
Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!
Don't Forget To visit the YouTube Channel for the latest Fortinet Training Videos and Question / Answer sessions!
- FortinetGuru YouTube Channel
- FortiSwitch Training Videos
Cybersecurity Videos and Training Available Via: Office of The CISO Security Training Videos
Before anyone loses their shit….Yes, I know this is obviously preference and that some devices only allow policy based VPN’s (I’m looking at you Palo Alto!)
as i know PAN can do routed based vpn, almost the same concept as juniper’s style
Good. It’s been a long time since I have used them. Guess it’s time for me to dive back in.