Hi Team,
There are around 300 tunnels are configured between fortigate & Juniper & it was working fine in version 7.4.4 but when we did upgradation to 7.4.6, some of the tunnels went down.
We have checked with everything at the Fortigate but no any useful finding.
And surprisingly, The same tunnels came up after doing the reconfiguration of tunnels at the juniper side.
Kindly suggest here if you face this kind of issue anywhere.
How could i check the compatibility ?? Kindly let me know.
Configuration is same between both the peers.
I am getting 'no purposal found' in the debug but in pcap, i can see the phase1 parameters.
This issue could stem from several potential causes related to the upgrade from FortiOS 7.4.4 to 7.4.6, particularly with how the FortiGate device and Juniper device interact after the upgrade. Here's a list of troubleshooting steps and suggestions to help you resolve the issue:
This issue could be related to changes in how FortiOS 7.4.6 handles VPN tunnel negotiation, rekeying, or resources, possibly causing some tunnels to fail during establishment or renegotiation. Reconfiguring the Juniper side likely resolved a specific parameter mismatch between the two devices. Carefully reviewing the configuration, logs, and settings on both devices will help pinpoint the underlying issue. If all else fails, contacting Fortinet and/or Juniper support with specific log details could expedite a resolution.
We have a similar Problem here: We couldn't get an ipsec tunnel working with a remote juniper on an fgt with v7.4.7. The tunnel ist getting up, shown pahse 1+2 online, we can send traffic through the tunnel (tx is shown also on the interface), but get no data back (no rx traffic on the ipsec interface). On the Juniper side the traffic send from the fortigate appears and also answers are send into the tunnel (rx und tx traffic ist shown) , but it is not arriving at the FGT Site ...
On a fgt with 7.2.10 with the same configuration everything works fine.
User | Count |
---|---|
2534 | |
1351 | |
795 | |
641 | |
455 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.