Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Fortigate IPSEC VPN Up but no traffic passes

Posted on 2012-03-26
2
Medium Priority
?
9,459 Views
Last Modified: 2012-03-27
We have a new Fortigate 110C running current firmware.

Attached are the screen shots used to set up the VPN.  The VPN was setup using the GUI.

The link comes up but it does not pass traffic.  What am I doing wrong?
VPN-problem.pdf
0
Comment
Question by:botisys
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 8

Accepted Solution

by:
myramu earned 1500 total points
ID: 37769957
Hello Botisys,

Move the ipsec policy to top of all policies and also try by enabling inbound and outbound nat. If you still face the issue use the following command to check the reason,
diag debug reset
diag debug enable
diag debug flow filter addr x.x.x.x
diag debug flow show console enable
diag debug console timestamp enable
diag debug flow trace start 50

where x.x.x.x is IP address of the trafiic initiator.

Good Luck!
0
 

Author Comment

by:botisys
ID: 37773160
Changing the Policies to Global View allowed me to move the IPSEC policy to the top. In Section View, it would not allow the policy to be moved.  NAT was not necessary.  The VPN is working now.  Thanks for your help.
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is a how to to configure a UCS Ethernet-uplink portchannel via the console. It is easy to do and can be done quite quickly. In certain versions of the UCS manager the portchannel has issues coming up and this is a workaround. I am…
Before I go to far, let's explain HA (High Availability) and why you should consider it.  High availability is the mechanism used to provide redundancy to any service at the same site and appears as a single service to the users of that service.  As…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…
Suggested Courses

618 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question