Description
This article describes an issue where interfaces x5-x8 interfaces connected to 25G SFP modules go down after upgrading to FortiOS 7.4.3 while x1-x4 interfaces stayed up on the same firewall.
This is an issue limited to specific FortiGate Models build with NP7 modules such as the 600F series. Information on how to identify The hardware acceleration structure on the FortiGate can be found at the following link:
Determining the network processors installed in your FortiGate
Scope
FortiGate v7.4.3 and v7.4.4.
Solution
- There is a known issue with NP7 Models where x5 - x8 interfaces connected to the fiber cable using a 25G SFP module go down even though the appliance or the switch the fiber cable is terminating at may show the device is up. To verify this issue, use the following commands:
get sys interface physical x5
diagnose hardware deviceinfo nic
- The resolution is to upgrade to 7.4.6 and to use Fortinet SP-Cable-ADASFP+ DAC Cable. There is no current effective workaround. The bug ID for this issue is 1015698. The resolution is limited to a 25G SFP connection while a similar problem with 10G SFP links is still under investigation.
- Another similar issue however is specifically related to changing ull-port-mode from 10G to 25G:
config system npu
set ull-port-mode 25G
end
- This is also a known issue and it is also resolved in the v7.4.6 release. To request more information about this issue, open a ticket with TAC.
