FortiGate

We have an IPsec VPN between FortiGate 60E and SonicWall NSA 2600. The VPN is up and active but no traffic is passing across it.

New Member

Is there a route showing up for the tunnel?

New Member

There is. There is also a policy to allow inbound and outbound traffic

SuperUser

are you sure the tunnel is up completely? Green in FGT Ipsec Monitor only means that phase1 has come up.

diag vpn tunnel list on cli will show you if is completely up.

If it shows phase2 name somewhere and a "sa=1" behind it it is up.

ALso could be something with ike. Look at my "strange ipsec vpn behavior " thread below for further details.

Sign up