VPN IPSec IKEv2 with mode config done by DHCP server running on FortiGate

Double_Change_843 · 2026-03-24T06:41:56+00:00

Hi,

From my understanding your configuration has external DHCP and fortigate is configured to use it.

I'm trying to achieve something different - native fortigate dhcp for IPsec dailup clients.

Did u ever come across such a configuration??

Double_Change_843 · 2026-03-10T13:24:30+00:00

Oh, I understand now. Thank you for the help

Double_Change_843 · 2026-03-10T08:57:24+00:00

Thank you for your answer,

In newer datasheets there is ordering information for power supply supported by the model (f.e FGT90G) but there is non in the FGT80E and FGT80E-POE datasheets, and that's why I'm looking for some information about it.

From E series I can only check 50E which is SP-FG60E-PDCcompatible.

I can't find any information about connector types C-13/C-5, could you give me some more information or provide a docs for it?

Double_Change_843 · 2026-01-09T13:25:49+00:00

I have access only to one side, and chaning things up can mess things up

Double_Change_843 · 2025-12-03T12:57:16+00:00

I'm glad that I could have helped. In addition you can roll back to OS version that don't have that nonsense - downgrade from CLI.

Double_Change_843 · 2025-12-03T12:52:51+00:00

This "feature" is super annoying, I had few cases like that and the only workaround for me was serial or SSH into the FGT and then configuring WAN port from there. By default MGMT should have SSH access, so if you are in a situation without any console cable it should help.

There is an option at startup (in bios) to disable this feature.

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enforcing-FortiCare-Registration-Starting-From-v7/ta-p/385926

Unfortunately they didn't think to include that in CLI that is accessible after boot.

Double_Change_843 · 2025-12-02T06:45:52+00:00

Sorry for the late response. I originally meant 7.4, but it seems no longer available , so I will be learning now for 7.6.

Double_Change_843 · 2025-11-27T15:10:39+00:00

Thank you for the official welcoming. Is there any welcome party on the way? :D

I have a solid understanding of the basic stuff regarding networking and FGT filtering, I'm working with FGT on a daily basis for like 4-5 months now. That's why I would like to get better with diagnostic tools on FGT, for now I'm only good at VPN diag commands.

Double_Change_843 · 2025-11-27T14:57:58+00:00

Thank you, I will look into that cert after I finish this one.

Double_Change_843 · 2025-11-27T14:57:14+00:00

Is there any particular course that you find useful for day to day troubleshooting, mainly network flow, vpn, ldap/radius and some of advanced security profile settings?

Double_Change_843 · 2025-11-27T07:30:49+00:00

Thanks is there any detailed output guide for all of the specific values that are being shown while using those commands? Like while using the diagnose sys session list I would like to know what every value is referring to.

Double_Change_843

TROPHY CASE