Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
dipak_t
New Contributor

Created on ‎04-27-2023 04:23 AM

I'm facing packet drops when connecting to the Forticlient from a 5G network.

I have a fortigate with firmware version 7.2.4 and forticlient version 7.0.8. When I try to ping the fortigate local interface, I am ovserving packet drops in between. However, when we take a pcap on the fortigate, there are no packet drops observed. Can anyone suggest what to check on the Forticlient side?

Labels:
2171
0 Kudos
4 REPLIES 4
ebilcari
Staff
Staff

Created on ‎04-28-2023 03:06 AM Edited on ‎04-28-2023 03:06 AM

Can you please elaborate, the packet drops are in small percentage or the FGT is not responding at all?

 

If the packets are dropped from the underlying network the only way to identify packet loss is by comparing the Sequence number as shown below: (download the pcap file and open it with wireshark, this filter may help: ip.src== 10.0.0.2 && icmp)

secuence number.PNG

 

In case of missing packets you will see this sequence number skipping some values when checking from one packet to another

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
2138
0 Kudos
dipak_t
New Contributor
In response to ebilcari

Created on ‎05-02-2023 02:15 AM

The packet drops are in small percentage. I am seeing the packet drops after 20-25 continuous pings.

2093
0 Kudos
ebilcari
Staff
Staff
In response to dipak_t

Created on ‎05-02-2023 03:28 AM

In case you see the sequence number is skipping in FGT it means that the packets are not reaching FGT at all, so the service provider is responsible for this packet loss. You may trace different destination from both points to isolate the hops that are adding this packet loses. This tests should be done with IPs outside of VPN protected traffic to isolate this as packet loss and not a VPN issue or packet processing.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
2087
0 Kudos
mgoswami
Staff
Staff

Created on ‎05-02-2023 02:56 AM

Please try to take a pcap on the fortigate while trying to ping continuously from your PC  and see if you also observer the same packet drops on the fortigate when you see them on the PC.

If you see the packet drops on the fortigate at the same time, then it could be a config issue on Fortigate. Else if the Fortigate is sending out the packets and you are still seeing the packet drops in your PC, then you might need to also involve your ISP

2090
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.