Because the BRs or HiveAPs can be deployed at the field for branch offices and they can be linked to a CVG in order to stablish an IPSec VPN tunnel, is it possible to have the same configuration but with a FortiGate intead of the CVG?
Waiting for your comments!
Thanks a lot for your help!
We recognize that many of our customers already have equipment that is very capable of acting as tunnel terminators and we have intentions to add third-party IPSec VPN support in the future. We cannot comment on specific timing or capabilities at this time.
I have a request to setup an IPSec VPN between an office which has 3rd party IPSec hardware, to a VPN connection with an AP330.
My query, is it possible for an AP330 to terminate an IPSec VPN with a non-aerohive IPSec hardware?
The office with the IPSec hardware, also does have a hive of AP330s, but since they already have an IPSec VPN in use, it would be easier to use that rather than setting up a new VPN.
I did tests with Aerohive IPSec VPN and I saw Aerohive VPN is based on draft-ietf-ipsra-isakmp-xauth-06.txt
I couldn't do a VPN with third pary hardware because phase 1 auth in Aerohive must support mutual auth or hybrid auth: XPSK, XRSASIG or HRSA. If your hardware supports this auth methods maybe you could stablish the VPN.
I'm already trying to configure IPsec (layer 2) beetween an AP230 (client) and a fortigate firewall.
Do you know if this functionnality is know supported by Aerohive ?