OPNsense Forum

English Forums => Virtual private networks => Topic started by: skydiablo on June 24, 2022, 04:13:55 pm

Title: [SOLVED] ipsec => fortigate -vs- opnsense
Post by: skydiablo on June 24, 2022, 04:13:55 pm

hi!
i'm trying to establish an ipsec tunnel (routed VTI) between my fortigate (v7.0.6) and an opnsense (22.1.9). my problem is already in phase 1, my fortigate call me an error like "peer SA proposal not match local policy" :( my current config is attached as images.

any hints or additionals info request?

thx, volker.

Title: Re: ipsec => fortigate -vs- opnsense
Post by: skydiablo on June 28, 2022, 03:09:43 pm

my problem was an miss-configured fortigate, so i miss an rule for the ipsec tunnel:

TLTR: https://community.fortinet.com/t5/FortiGate/Technical-Note-Log-message-ignoring-request-to-establish-IPsec/ta-p/198467