- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
FortiGate
We have an IPsec VPN between FortiGate 60E and SonicWall NSA 2600. The VPN is up and active but no traffic is passing across it.
- Labels:
-
6.2
Nominate a Forum Post for Knowledge Article Creation
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
- « Previous
-
- 1
- 2
- Next »
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
What does your routing table look like?
Fortigate # diagnose ip route list
Blank out any unimportant routes to this thread that you may not want made public.
Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Yes, phase 1 and 2 are up. Already verified that beforehand and verified again
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Did you at least do "diag debug flow" ? It will tell you everything that is wrong or what's happening.
You have to help us in order to help you.
Also patterson mention traceroute earlier. I would also add "diag sniffer packet" and select the tunnel interface name that you use in phase1 and witness the traceroute enter/exit the tunnel
That would confirm traffic in the tunnel assuming a route-based and you run traceroutes from A and Z sides.
http://socpuppet.blogspot.com/2013/10/site-2-site-routed-vpn-trouble-shooting.html
Ken Felix
PCNSE
NSE
StrongSwan
- « Previous
-
- 1
- 2
- Next »