PPPOE as second WAN-interface (SD-WAN) down (after upgrade 6.4.9 to 6.4.10)
We've upgraded last evening our HA (active/passive) FortiGates from 6.4.9. to Fortios 6.4.10. However after the upgrade we received the following system-eventlogs of (which goes on for every minute (is still going))
2 minutes ago PPP daemon exited pppd is exiting 3 minutes ago PPP daemon started pppd is started 3 minutes ago PPP daemon exited pppd is exiting 4 minutes ago PPP daemon started pppd is started
So ofcourse we've checked our WAN2 which is our PPPOE connection. However we found out the physical connection towards the ISP is ok, but we couldn't authenticate (in the previous version of fortios 6.4.9. we could authenticate on the PPPOE connection). in order to be sure i've deleted the WAN2 connection, Disabled the WAN2 connection, re-enterd the credientials and tried to set up the PPPOE connection again. unfortunately it didn't work...
Our current settup is HA Fortigate (active/passive). i've also tested the firewall directly in the modem. but it failed aswell..
I've tested the PPPOE connection with my laptop directly and it works, there for i know the PPPOE and credentials are correct.
i've done the following debug (the output goes on and on and on):
Ok i've tried this and it works, but i can't make any changes on the interface anymore. if i do make a change on the interface, it kills the PPPOE connection and i the button "retry" gives me the same debug output.
So for now it works (i do have to change my policies etc.). but hopefully you guys encounter the same bug in order to resolve it.
Thanks to confirm it works on other interface. So this may mean that upstream device maybe devicing some mac address filtering now(you can check with your isp), and therefore pppoe requests from wan2 are not responded. To check this, you can change the mac address of wan2 interface by modifying the ha group-id as device is in cluster.
this could be, but i don't feel like troubleshooting anymore since it's already afternoon and it works. thank you for your latest advice i will keep this in mind (and notes) if i encounter the same issues again.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.