Hi,
we are having a strange VPN problem with one IPSEC tunnel of a remote site. All other sites work fine. But this 200F sometimes looses VPN connectivity directly after a scheduled FortiGuard update. This can be seen in the sites eventlog, where the FAZ connection through the tunnel is lost seconds after the update message. The phase2 seems to be broken at that time and the tunnel finally recovers after more than an hour and the FAZ is reachable again.
There is nothing special at this site and all gatways use the same FOS7.0.15.
Have you seen this or have any ideas?
Regards,
Dirk
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi @DirkDuesentrieb,
Have you seen high CPU/Memory at that time? You can run this command 'di deb crashlog read' to see if there was any crash.
Regards,
Hi @hbac
the central SNMP monitoring has a gap during that time, because it needs the tunnel to poll data, so I need to improvise here.
- The local eventlog writes perfmon data every 5 minutes; all with "CPU: 0".
- The "Memory"-widget shows data of the last 24 hours and has no peaks
I found a dump of the dhcpd in the crashlog, but this is unrelated to the event.
Dirk
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1516 | |
1013 | |
749 | |
443 | |
209 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.