If you are setting up the firewall to work with a peer that supports policy-based VPN, you must define Proxy IDs. Devices that support policy-based VPN use specific security rules/policies or access-lists (source addresses, destination addresses and ports) for permitting interesting traffic through an IPSec tunnel.

Cookbook | FortiGate / FortiOS 6.0.0 | Fortinet Configuring IPsec VPN on Branch. To create a new IPsec VPN tunnel, connect to Branch, go to VPN > IPsec Wizard, and create a new tunnel.; In the VPN Setup step, set Template Type to Site to Site, set Remote Device Type to FortiGate, and set NAT Configuration to No NAT between sites.. In the Authentication step, set IP Address to the public IP address of the HQ FortiGate (in the example, … Site-to-site VPN Settings - Cisco Meraki Advertises its WAN IP addresses on Internet 1 and Internet 2 ports. Downloads the global VPN route table from the Dashboard (automatically generated by the Dashboard, based on each MX's advertised WAN IP/local subnet in the VPN network). Downloads the preshared key for establishing the VPN tunnel and traffic encryption.

VPN Ports and LAN-to-LAN Tunnels [Support] - Cisco Systems

IPSec VPN Tunnel with NAT Traversal

How to split tunnel VPN traffic on Windows, MacOS, DD-WRT

What ports do I need to open to permit VPN traffic ? :: SG FAQ What ports do I need to open to permit VPN traffic ? Tags: router. For PPTP VPN connections, you need to open TCP port 1723 (for PPTP tunnel maintenance traffic). PPTP also uses IP protocol 47 for tunneling data (for "General Routing Encapsulation" or GRE packets).