I am just creating a security fabric out of our three firewall systems
- FG501E HA-Cluster (site1, fabric root, 7.0.9)
- FG60E (site2, fabric member, 7.0.9)
- FG61F (site3, fabric member, 7.2.3)
Both the 60E and 61F are connected via site-to-site VPN created by the integrated wizard.
I configured the tunnel interfaces, gave them IP addresses and created the required static routes.
The 60E is joining the fabric without any issues, the 61F does not. All the traffic to the root fabric is blocked:
Maybe you do have any idea or hint what I may be missing out here.
I already chatted with the Forti Support to verify that the newer firmware is no problem joining the cluster as it is supported.
Thank you in advance and kind regards