LEARN Mode - Security Fabric Reporting IPSec Tunnel Interfaces

Forum|Forum|9 years ago
April 19, 2017
1 reply
2783 views

All,

Just wondering if anyone has any suggestions. We're running Firmware 5.4.4 on 5 Fortgate FWs. All sending logs to FortiAnalyzer. I'm probably being silly about this and not thinking it through enough, however when I try to select the "LEARN" feature on for polices to and from a remote FW riding on a IKE v2 tunnel, i receive a message saying that I must enable Device detection on the following interfaces, but there are no interfaces listed. I've attached a few screen grabs to show what I'm referring too.

Like I said, It's most likely something I'm doing wrong. Since these features are still relatively new, there's not much in the Forum or online regarding this. Any help is appreciated.

Thanks,

Chris

wcbenyip

New Member

I have upgraded one of our firewall to v5.4.4, and just tried to change one of the vpn policy from ACCEPT to LEARN, it works! When I go to check whether the attached interface (WAN1) already enabled the Device Detection... but it's not!

So, I think maybe your case is not related to the Device Detection? (We are configuring the IPSec VPN with interface mode)

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded