I would like to have help about the "famous" DPD_failure on IPSEC VPN.
I have 2 Firewall fortigate. One in Italy (IT) and one in Germany (DE).
In Italy I have 2 HDSL internet interfaces.
Also in Germany (DE) I have 2 internet interfaces, but while one is a HDSL , the other one is a ADSL with a public IP.
So, we have 4 IPSEC VPN configured.
Only one is up and running ( the others are ready if the first one will have problem).
Every days, I usually receive many messages IPsecPDPfailure likes:
Message meets Alert condition
date=2017-03-03 time=15:52:31 devname=PSE-GERMANY devid=FGT60C3G11037662 logid=0101037136 type=event subtype=vpn level=error msg="IPsec DPD failure" action=dpd remip=220.127.116.11 locip=10.1.2.2 remport=4500 locport=4500 outintf="wan2" cookies="...........c12..." user="N/A" group="N/A" xauthuser="N/A" xauthgroup="N/A" vpntunnel="DE1_IT2_PH1" status=dpd_failure
As you can see below , most oth the messages are between one session( 18.104.22.168 in Itlay with 10.1.2.2 in Germany).
The 10.1.2.2 is in Germany ( ADSL that have a public ip 22.214.171.124)
The 126.96.36.199 is a NEW HDSL here in Italy, I have just implemented these days.
How can I understand if I have problem with my new HDSL here in Italy?
Or could be the problem related to the ADSL in Germany?
Why the other 3 sessions seems to have little DPD problems?
Many thanks in advance for your help.
Here the sequence of the messages: