Hello Together
I have the following problem:
On the Fortigate, a couple of S2S VPN are made to a Vmware Edge Firewall.
One S2S VPN interrupts so every 45-48min but only for 2-3 seconds.
Phase 1 goes down + phase 2 goes down but comes right back up.
The other VPN configured exactly the same do not have this problem.
Does anyone know such problems?
Thanks for your help
Solved! Go to Solution.
Was a problem on the part of Vmware Edge
Hello,
I would recommend to check logs VPN logs and check ike debug traces on FortiGate side once the issue is triggered.
diagnose debug application ike -1
diagnose debug enable
Normally phase2 timer you will have 60 min by default, so rekeying should happen 2 min before that, but phase 1 should not go down.
Can you please let me know how you are verifiying that phase1 is actually went down?
Also as my colleague requested please share ike debug, it will help us to find more information.
Hello
Yes the phase 1 also falls away but comes right back up.
I think I have fixed the problem.
I have set the keylifetime down to 30min. Since I did this the tunnel no longer went down
Was a problem on the part of Vmware Edge
I would recommend to check logs VPN logs and check ike debug traces on FortiGate side once the issue is triggered.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.