Description |
This articles describes a solution for an issue with IPSEC phase2 observed between FortiGate and Palo Alto. If several phase 2s are configured for phase1, only a few stay up. |
Scope |
IPSec VPN Site-to-Site Fortigate to Palo Alto. |
Solution |
2023-07-26 14:51:08.793990 ike 0:DC1_VPN:561078: received informational request
FortiGate is receiving a delete request from the Palo Alto side and is bringing the phase2 down as per the Palo Alto request.
2023-07-26 15:05:26.320 +0000 [INFO]: { 10: }: delete proto ESP spi 0xDA45D112
These same logs as recommended to check in the Palo Alto documentation. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.