There is an interface-mode IPsec tunnel configured between FortiGate1 and FortiGate2. You want to run
OSPF over the IPsec tunnel. On both FortiGates. the IPsec tunnel is based on physical interface port1.
Port1 has the default MTU setting on both FortiGate units.
Which statement is true about this scenario?
A multicast firewall policy must be added on FortiGate1 and FortiGate2 to allow protocol 89.
The MTU must be set manually in the OSPF interface configuration.
The MTU must be set manually on the IPsec interface.
An IP address must be assigned to the IPsec interface on FortiGate1 and FortiGate2.
If MTU doesn’t match then the neighbour ship gets stuck in exchange state.
One Comment on “Which statement is true about this scenario?”
In think this should be D