I have several Forti equipments and I'm not aware of the existence of
the auto-script outside the fortigates.To do backups I use a linux cron
to execute a batch script. Something like this#! /usr/bin/expect -f set
timeout 8000set date [clock format [...
"Should i just use the FSSO agents and be done with it?"Awnser: Yes. But
if you can't (like my case) you have to pull all DC's you have doing
Authentication and Accounting.
By the logs, seems Phase1 is up, but the log doesn't show
negotiation.stop the ipsec vpn, start the debug and start the
vpn.Somewhere in the log you will have to see the phase2 negotiation, if
everything it's ok you will see phase2 exchanging the par...
I bet in rules, but can use the flow in both fortigates command line to
get more info:Start with a clean up (just in case) diagnose debug
disable diagnose debug resetthen put the flow comands diag debug flow
filter addr diag debug flow show console ...
