Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
mortirolo
New Contributor

IPSEC Tunnel down on FAZ Device Manager

I'm running FAZ v5.2.5-build3175 and have configured my FGT Device under Device Manger. FGT Device is green when unencrypted and traffic is processed by my FAZ but when I configured Secure Connection with localid and password the IPSEC Tunnel status is down on the FAZ. I configured the FGT as follows:

(setting) # get status              : enable ips-archive         : enable server              : 10.x.x.x encrypt             : enable psksecret           : * localid             : FGT conn-timeout        : 10 monitor-keepalive-period: 5 monitor-failure-retry-period: 5 source-ip           : 10.x.x.x upload-option       : realtime reliable            : enable

 

The localid's match and the password psksecret on my FAZ Device GUI match.

I have a packet capture running on the FAZ interface and I can see the packets coming from the FGT (ISAKMP) to FAZ but the FAZ says the IPSEC tunnel is down.

 

Is there a setting I'm missing here on the FAZ?

 

Thanks.

1 REPLY 1
mortirolo
New Contributor

I disabled and then enabled "reliable" on each FGT and its now all working!!!

strange........

Labels
Top Kudoed Authors