We have just updated our FG50A to access the new features of 2.80 MR5 and have found that we can nolonger connect outbound to other units using IPSEC VPN or indeed inbound to our own site. PPTP is however still ok.
Have tried/found the following: -
Downgraded to 2.5 MR10 (includes warning and reset factory default)
Fully configured all rules, users, spam detection, email alerts and logging to syslog server
Tested outbound VPN Client access at each step above for connection and ping success
Found intrusion prevention causes ping failure through tunnel
Disabled intrusion prevention, VPN client fully functional
rebooted all still ok
Post 2.80 MR5 upgrade
Upgrade process warned of reset to factory defaults but retained all settings except logging of outbound general NAT and encrypt rules
Enable logging on the two above rules
Retained correctly configured email alerts entries, however attempting to click on accept causes " invalid email format" error (This has been noted in other postings)
Clicking the test button with the retained alert settings sends alert test email
Tested outbound VPN client OK
Tested inbound access from remote location ok
Following day tested outbound VPN, session connects to remote site ok but no ping, telnet SMTP or other responses
Tested inbound VPN same as above
Also noticed that CPU utilisation periodically creeps up to 100% and causes slow GUI response but have not yet associated this with any particular activity
Any ideas? Think I will give up the extra features and drop back to v2.50 MR10 until v2.8 is fixed