Hi guys, I have a 310B cluster connected with a dozen of fortigates
60/80c through IPSEC tunnels.A lot of tunnels are UP and are traffic OK.
But for an unknown reason, some other tunnels remains UP, traffic is ok
only by one side, the other I have 0k...
From FGT 1 Christopher McMullan_FTNT wrote:Can you sniff for protocol 50
traffic, to see if payloads are making it in both directions (or not)?
diag sniff pack wan1 "proto 50" 4 FW1 # diagnose sniffer packet wan1
"proto 50" 4interfaces=[wan1]filters=...
emnoc wrote:The diag debug flow command is your best friend. Also if
these are route-based vpns do you have the proper routing.I would do
what Bog suggested plus validate you have SPIs in/oubound that matches
the out/in at the hub. Hi, The matter is ...
its normal, as I explained and you can see above, the traffic is only
outgoing, no incoming data from the other gateway. on the 310b
GW:internal : incoming/outcoming packets OKipsec interface :
incoming/outcoming packets OK on the other GW :ipsec int...
the matter is that on one node, I have 0 traffic in INBOUND.on the other
FG, IN and OUTBOUND traffic are ok. No blocked traffic in log an debug
FG60C # diagnose sniffer packet
Paris-Italyinterfaces=[Paris-Italy]filters=[none]pcap_lookupnet:
Paris-Ita...
You are leaving our website
You are leaving our site and we cannot be held responsible for the content of external websites
