Hay, i had problems in IPSec Setup from my HO and BO.
As information :
1. HO XG450 firmware SFOS 17.1.1 MR-1
2. BO1 XG450 firmware SFOS 16.05.7 MR-7
3. BO2 UTM 9 firmware 9.502-4
4. BO3 Fortigate 400D firmware v5.6.3
5. BO4 Fortigate 100E firmware v5.6.1
6. HO and BO has 2 ISP
And i want all of BO LAN connected to HO LAN, which is my step is :
1. created ipsec policy (same in every phase algorithm with every sophos either it UTM or XG)
2. create new ip host (e.g VLAN 41 ip network 10.10.41.0/24, etc)
3. create ipsec connection interfaces in two offices, total 4 interface because ISPA.1 connect to ISPB.1, ISPA.1 connect to ISPB.2, ISPA.2 connect to ISPB.1, ISPA2 connect to ISPB.2 (pic attached)
4. create ipsec failover (added those 4 interfaces)
5. Active status was green, connection was green but unfortunately 1 off my vlan cant ping from HO, there is no trouble issued in those VLAN checked from my BO
6. The problem goes on with other failover groups to my BO, either i restart the active and connection button.
Can anyone help me with these problem ? i'm so frustated about this trouble, sometimes any of VLAN can communicate, then in couple days it turns down (connection and active icon was green)
This thread was automatically locked due to age.