Description
This article describes an issue where interfaces x5-x8 interfaces connected to 25G DAC cables go down after upgrading to v7.4.3 while x1-x4 interfaces stayed up on the same firewall.
This is an issue limited to specific FortiGate Models built with NP7 modules such as the 600F series. Information on how to identify the hardware acceleration structure on the FortiGate can be found at the following document: Determining the network processors installed in your FortiGate.
Scope
FortiGate v7.4.3 and v7.4.4.
Solution
- There is a known issue with NP7 Models where x5 - x8 interfaces connected to the fiber cable using a 25G DAC module go down even though the appliance or the switch the fiber cable is terminating at may show the device is up. To verify this issue, use the following commands:
get sys interface physical x5
diagnose hardware deviceinfo nic
- The resolution is to upgrade to 7.4.6 and to use the Fortinet SP-Cable-ADASFP+ DAC Cable. There is no current effective workaround. The bug ID for this issue is 1015698. The resolution is limited to a 25G SFP connection, while a similar problem with 10G SFP links is still under investigation.
- Another similar issue, however, is specifically related to changing ull-port-mode from 10G to 25G:
config system npu
set ull-port-mode 25G
end
- This is also a known issue, and it is resolved in the v7.4.6 release. To request more information about this issue, open a ticket with TAC.
