Re: FortiOS 7.4.2- IPSec tunnel traffic flow stops...

May8 · 01-31-2024

Hi,We have recently upgraded our firewalls to 7.4.2 and have multiple IPSec tunnels active on firewall, but this one tunnel between FortiGate1 and FortiGate2 firewall, after upgrade, traffic stops flowing via tunnel every 24 hours. the only solution ...

May8 · 02-03-2024

Hi All,Thank you for all the solutions provided to the issue.we downgraded the firewalls from 7.4.2 to 7.4.1 and issue got resolved.I suggest to not upgrade your firewalls to 7.4.2, it does not seems to be a stable version.

May8 · 02-01-2024

we have not tried this option.As it is a global parameter and today we observed the issue only with one tunnel among several other tunnels and would like to understand the impact of this settings on the tunnels.is there any document that you can shar...

May8 · 02-01-2024

hi hbac,Yes the tunnel stays up, but traffic stops flowing.we have already disabled the npu offload on tunnel. we will disable other parameter for hardware acceleration and monitor.Will keep you posted.

May8 · 02-01-2024

Hi Dhruvin,Thank you for your response.the solution to invalid a SPI is to enable DPD either as on idle or on demand.we already have DPD enabled to 'on demand'.Do you still think it could be SPI issue?Also last night for tunnels on other 3 Fortigate ...

User Statistics

User Activity

FortiOS 7.4.2- IPSec tunnel traffic flow stops randonmly