Hello there,
like the title describes, I'm currently facing or investing the problem of the sudden loss of all IPSEC VPN connection to our back offices and also both connection to our cloud provider.
We made no changes before the incident and around 14:00 all IPSEC connections terminated themselves with the messages that the opposite gateway isn't reacting to the attempts / responses - also there was no internet outage or switching to our backup line.
We tried to simply reconnect all IPSEC connection which helped for our back offices but not for our cloud provider.
I watched the connection to our cloud provider and saw that actually the opposite was answering but couldn't get a response from the main firewall.
We had to recreate the IPSEC connection - with all the same parameters as before (preshared key) - which helped for one connection but not the fallback connection.
Our next step is to eliminate the router which provides the connection to our HA cluster with a simply modem and let the firewall take over the PPPoE dial-up.
Is there a specific log file that is prior to the investigation?
Firewall specs main office:
OS: SFOS 19.0.1 MR-1 Build-365
Model: XGS2300
HA cluster: yes
Firewall specs back offices:
OS: SFOS 19.0.1 MR-1 Build-365
Model: XGS136
HA cluster: yes
This thread was automatically locked due to age.
