Hi,
can you give me the time when the master carp failed ?
What I see:
14:52:09 : VPN error
14:53:09: Phase1 request received, but nothing found on your fortinet ipsec.
14:53:09: fortinet is sending a phase1 initial message to reestablish
the vpn
14:53:09: phase1 established (seems to...)
14:53:10
On Thu, Aug 2, 2012 at 2:56 PM, bsd wrote:
> I wanted to know if part of the solution was to set in phase 1 proposal "My
> identifier --> IP address : Ip.wan.carp"
>
> I have read that in a post, but since I am now away from the data center
> where It is hosted, I wanted to have a confirmation o
This is the log that I have when tunnel does not come back up when the the WAN
fails and CARP moves from Master to Backup.
Aug 2 14:55:22 racoon: ERROR: 217.15.12.7 give up to get IPsec-SA due to time
up to wait.
Aug 2 14:54:52 racoon: [ Fortinet 300c]: INFO: initiate new phase 2
negotiatio
Hi
Do you have a copy from the log files of the error message ?
It may be what you indicated, My Identifier should not be "My IP
Address" when doing fail safe.
Best regards
Nicolas
Le 02/08/2012 20:56, bsd a écrit :
> Hi,
>
> I have setup a CARP firewall with one phase one IPsec and two phase two
Hi,
I have setup a CARP firewall with one phase one IPsec and two phase two
tunnels.
I seem to have problem with CARP handover (when master fails and Backup takes
the lead) and IPsec tunnel. Handover goes ok, but IPsec tunnel seems to fail
beeing transfered from Master to Backup.
In genera
