Currently a VPC VPN Connection to a Fortigate Peer is required using very unsecure settings:
DH-group 2 in the Phase 1 proposal.
Disable PFS in the Phase 2 proposal.
A higher DH-group is not working and not supported, at least what support is telling us.
So please provide better security settings for the Fortigate, which is a widely used VPN gateway. DH-group 2 is considered as unsecure!
NOTICE TO EU RESIDENTS: per EU Data Protection Policy, if you wish to remove your personal information from the IBM ideas portal, please login to the ideas portal using your previously registered information then change your email to "firstname.lastname@example.org" and first name to "anonymous" and last name to "anonymous". This will ensure that IBM will not send any emails to you about all idea submissions