Hi, just after some help from anyone who has had some experience with VXLAN.
I setup a VXLAN a while ago which worked fine but now has stopped passing traffic? the ipsec tunnel is up but can only see traffic either side, ie not traversing the L2 VXLAN, it's a fairly simple setup, diag attached
Any help/suggestions appreciated.
Dave
Solved! Go to Solution.
Hi resolved this VXLAN issue by using set intra-switch-policy implicit in the vxlan softswitch config.
The cli cmd diag debug flow is your friend. I would run that and also diag sniffer packet the interface to see if packest are being sent or recv Also review closely your diag vpn tunnel list details to see if encryt/decrypt is happening and you have a valid SPI in/out.
Ken Felix
PCNSE
NSE
StrongSwan
which version FortiOS? 6.0 had an annoying issue where VXLAN traffic failed after a restart.
Hi, we're on v 6.2
Hi resolved this VXLAN issue by using set intra-switch-policy implicit in the vxlan softswitch config.
 
					
				
				
			
		
| User | Count | 
|---|---|
| 2677 | |
| 1412 | |
| 810 | |
| 703 | |
| 455 | 
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.