Hi,We have recently upgraded our firewalls to 7.4.2 and have multiple
IPSec tunnels active on firewall, but this one tunnel between FortiGate1
and FortiGate2 firewall, after upgrade, traffic stops flowing via tunnel
every 24 hours. the only solution ...
Hi All,Thank you for all the solutions provided to the issue.we
downgraded the firewalls from 7.4.2 to 7.4.1 and issue got resolved.I
suggest to not upgrade your firewalls to 7.4.2, it does not seems to be
a stable version.
we have not tried this option.As it is a global parameter and today we
observed the issue only with one tunnel among several other tunnels and
would like to understand the impact of this settings on the tunnels.is
there any document that you can shar...
hi hbac,Yes the tunnel stays up, but traffic stops flowing.we have
already disabled the npu offload on tunnel. we will disable other
parameter for hardware acceleration and monitor.Will keep you posted.
Hi Dhruvin,Thank you for your response.the solution to invalid a SPI is
to enable DPD either as on idle or on demand.we already have DPD enabled
to 'on demand'.Do you still think it could be SPI issue?Also last night
for tunnels on other 3 Fortigate ...
