Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Esh
New Contributor

Payload malformed - Fortigate to Meraki

Hi all

 

We have a tunnel setup between a fortigate and a meraki mx. The tunnel comes up and passes traffic but after a random amount of time, it will stop sending traffic to some subnets. Reseting the tunnel or device on either end fixes it temporarily until it happens again.

 

All the settings match on both sides. I cant figure out whats going on. I am seeing no errors on the meraki side and the below error on the fortigate side which im not sure what it indicates:

 

 

Cookiese57e0d29c3ede476/7f230159880aa305
Local Port4500
Outgoing InterfaceVPL079153-U
Remote IP 
Remote Port32238
VPN TunnelVPN
MessageIPsec phase 1 error

 

Other

ID7088791930900840453
Time2022-04-20 21:53:08
euid2
epid2
dsteuid2
dstepid2
logver604071911
Log ID0101037124
Typeevent
Sub Typevpn
Peer NotificationPAYLOAD-MALFORMED
Log event original timestamp1650488015878473200
Timezone+0000
Alternate UserN/A
dtime2022-04-20 20:53:35
itime_t1650487988
Device NameHA-111_FG3H0E
2 REPLIES 2
Megaman2
New Contributor

Hello,

I have the exact same issue. The VPN connection once in a while dies and the Fortigate spits out the same error as you show.

 

My issue this time showed up yesterday, and what i did to get the VPN up again was to remove the Private Subnets in the Meraki Portal, saved the config and then readded them.

Then i restarted the Tunnel in the Fortigate. 

 

Meraki might be doing some sketchy stuff behind the scenes?

Esh
New Contributor

I feel as though its got worse with some of the recent firmware updates.

Top Kudoed Authors