Issues with 7.2.2 in adding 0.0.0.0 on interface VPN tunnels

Forum|Forum|3 years ago
October 18, 2022
2 replies
2162 views

We are having numerous Clients that go to 7.2.2. with existing Site 2 Site VPN tunnels on FGT's to FGT's with working configs on 7.2.0. and 7.2.1. That there is a Route Added for 0.0.0.0 with the VPN interface to the routing table with the same metric as the default 0.0.0.0 route. We are unable to disable via Web gui the "add-Route" and cli does not work either. Seems there are more changes to 7.2.2 code other then the security fixes.

Our VPN tunnels have a P2 of local and remote being 0.0.0.0/0. since we control all this with static routes.

FortiGate

ESCHAN_FTNT

Staff

Hi @mr_vaughn, is this a dialup IPsec VPN? If yes, then you would probably need to define the quick mode selector configuration under P2 of the VPN tunnels on the dialup client. FGT will install the route based on the local selector configuration of the client.

mr_vaughnAuthor

Explorer III

No it is a site to site VPN. with static IP's on each tunnel

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded