IPsec Site-to-Site VPN FortiGate <-> Juniper SSG

Here comes the step-by-step guide for building a site-to-site VPN between a FortiGate and a ScreenOS firewall. Not much to say. I am publishing several screenshots and CLI listings of both firewalls, along with an overview of my laboratory.

The devices tested are a Juniper SSG 5 (6.3.0r18.0) and a FortiWiFi 90D (v5.2.2).

Lab

The following figure shows the lab I used for this test:

S2S VPN FortiGate - Juniper SSG Laboratory

FortiGate

The FortiGate firewall is configured in the following way. See the image descriptions for more details.

Juniper SSG

Similar for the ScreenOS device.

Monitoring

If everything is configured correctly, the following menus should reveal the established VPN tunnel:

Alternatively, the CLI can be used:

FortiGate:

 

SSG:

 

Good luck! 🙂

7 thoughts on “IPsec Site-to-Site VPN FortiGate <-> Juniper SSG

  1. I Have Fortigate 60D and I wan to set the IP Sec to SSG140, could you mind to teach me how to create it, thank you

Leave a Reply

Your email address will not be published. Required fields are marked *