Currently a VPC VPN Connection to a Fortigate Peer is required using very unsecure settings:
DH-group 2 in the Phase 1 proposal.
Disable PFS in the Phase 2 proposal.
A higher DH-group is not working and not supported, at least what support is telling us.
So please provide better security settings for the Fortigate, which is a widely used VPN gateway. DH-group 2 is considered as unsecure!
Do not place IBM confidential, company confidential, or personal information into any field.