Created on 11-17-2022 07:31 AM Edited on 09-26-2023 06:13 AM By Jean-Philippe_P
Description | This article describes how to troubleshoot an issue where PPPoE does not form on WAN1/2 when FortiGate is in an HA Cluster. |
Scope | FortiGate. |
Solution |
Check group-id and change the value to a random number
Sometimes, issues on only one WAN interface occur when trying to form a PPPoE connection, despite how the PPPoE connection forms correctly when trying from a laptop or in any other interface.
This article assumes the following:
00-09-0f-09-<group-id_hex>- (<vcluster_integer> <idx>)
<group-id_hex> is the HA Group ID for the cluster, converted to hexadecimal.
By default, the group ID of all HA clusters is 0. If there is another HA cluster connected to the same PPPoE server, the virtual MAC may cause issues in forming the PPPoE connection. Change the group ID value in the HA config to fix this issue:
set group-id <integer value> end
Afterward, try to reform the PPPoE connection. If issues still persist, run the following commands to troubleshoot the issue: diag debug console timestamp enable
Press CTRL+C to stop the packet sniffer at any time.
In the case where the customer does not accept to change the group-id. Another option to solve the issue is :
For more info on troubleshooting PPPoE connections, refer to the following article: |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.