Hello,After upgrading FortiGate to version 7.6.5, we encountered issues
with IPsec tunnels. According to the Fortinet technical article, the
default Diffie-Hellman group values were changed from 5 to 14, 20, and
21.
https://community.fortinet.com/t5/...
After detailed IKE debug analysis. DH are correct now. ACTUAL
PROBLEM:Phase 2 Quick Mode response packets from FortiGate are not
reaching Android clients, while PC clients work perfectly with identical
FortiGate configuration.Evidence from IKE debug ...
