Hello,
One of my customers has a couple of IPSEC VPNs between sites that all work fine, until recently one of them started to misbehave.
This one connects the Fortigate 50B they have with a CheckPoint device at a remote site; last week this VPN went down, and no messages related to this VPN were shown in the log anymore (other log messages continued to appear though). Trying to force the VPN up did not work, and again, no messages were logged on the log server about the actions performed on that VPN.
Since the other VPNs continued to work I decided (after consulting with the peer site engineer) to delete and recreate the VPN, which made the log messages appear again. The VPN did not work at first, so I tried multiple times to recreate the VPN but only the next day the VPN started to work, without anyone intervening.
Today, 5 days later, the VPN stopped working again, but the Fortigate VPN monitor and the peer partner Checkpoint both show the VPN as UP. However, as of 13:50 today, no messages traverse the VPN anymore. Stopping and starting the VPN has no result (but does show the normal messages of the VPN going down and up being logged).
I am suspecting a problem with the device or the software, so I am trying to post this message to see if anyone has any similar experiences, or any suggestions as to what to do next.
I am about to delete the VPN again, and recreate it, to see if that helps. Failing that I could make use of a spare unit I have, configure it to replace the existing unit, and see if that helps to get the VPN stable again.
I hope anyone has additional suggestions.
Fortigate 50B Firmware: Fortigate-50B 3.00-b0668(MR6 Patch 2)
Many thanks, kind regards,
Jaap Hoetmer
Kind regards,
Jaap