Troubleshooting Tip: After an upgrade to 7.4.8, policy-based IPsec VPNs are removed from the firewall policy if the WAN tunnel on which the VPN is built is part of an SD-WAN member.
| Description | This article describes how, after upgrading firmware to version 7.4.8 or earlier, policy-based IPsec VPNs are being removed from the firewall policy. |
| Scope | FortiOS 7.4.8 or earlier. |
| Solution | After upgrading the firmware to version 7.4.8 or earlier, the policy-based IPsec VPN entries are removed from the firewall policies if the WAN tunnel on which the VPN is built is part of an SD-WAN member. As a result, no VPN tunnels appear in the 'VPN Tunnel' drop-down menu, as shown in the screenshots below.
This is a known problem reported under ID: 1152486. This issue is fixed in version 7.4.9 and above as well as 7.6.4 and above.
Note: Refer to the release notes of version 7.4.9 before planning an upgrade to the device.
Related document: |
