当前位置:网站首页>FortiGate firewall and Aruze cloud tunnel interruption
FortiGate firewall and Aruze cloud tunnel interruption
2022-06-30 04:16:00 【Call me a little match】
Configuration scenarios :
This article mainly explains FortiGate Firewall and Aruze Cloud building IPSECVPN after , How to deal with the problem of tunnel interruption .
Configuration steps :
1. We are configuring firewalls and Aruze The cloud IPSECVPN After tunnel , Normal tunnel establishment , Data at both ends can also be accessed normally , At the same time, both ends are also provided with link-monitor monitor , But most of the time, the tunnel will be interrupted in oneortwo days , adopt Aruze You can see from the firewall log on the cloud “peer SA proposal not match local policy” Error of , Here's the picture :
2. In this case, it is generally caused by inconsistent parameters in phase 2 .
Aruze On the cloud IPSECVPN Tunnel phase II generally does not DH Group selection , So in stage 2, I often choose None
Corresponding FortiGate The firewall needs to PFS Function off :
After that, the tunnel will not be interrupted frequently because some parameters are inconsistent .
边栏推荐
- Unity échappe à l'entrée de caractères lors de l'entrée de chaînes dans l'éditeur
- Error Nova missingauthplugin: an auth plugin is required to determine endpoint URL
- 【WEBRTC】ADM: rtc_include_internal_audio_device 触发 RTC_DCHECK(adm) 断言
- Slam mapping, automatic navigation and obstacle avoidance based on ROS (bingda robot)
- Configure specific source IP in SLA detection of FortiGate sdwan
- RPC correction based on arcpy API
- Blue Bridge Cup: magic cube rotation [Vocational group]
- I get n offers in two months. I don't have any difficult interviewers here
- FortiGate creates multiple corresponding DDNS dynamic domain names for multiple ADSL interfaces
- [image fusion] multi focus and multi spectral image fusion based on cross bilateral filter and weighted average with matlab code
猜你喜欢
Myrpc version 4
Cloud native -- websocket of Web real-time communication technology
第十天 数据的保存与加载
lego_ Reading and summary of loam code
Huawei cloud native - data development and datafactory
How to solve the problem of link hyperlinks when trying to link the database?
Interview topic of MySQL
尝试链接数据库时出现链接超时报错,如何解决?
El upload upload file (manual upload, automatic upload, upload progress)
Interface testing -- how to analyze an interface?
随机推荐
Huawei cloud native - data development and datafactory
知识点滴 - 如何用3个简单的技巧在销售中建立融洽的关系
JS static method
SQL追加字段
网络层详解
数据链路层详解
AI落地的新范式,就“藏”在下一场软件基础设施的重大升级里
Anonymous pipeline for interprocess communication
Ananagrams(UVA156)
Interface testing -- how to analyze an interface?
Use ideal to connect to the database. The results show some warnings. How to deal with this part
Pytorch Profiler+ Tensorboard + VS Code
【模糊神经网络预测】基于模糊神经网络实现水质预测含Matlab源码
The same node code will cause duplicate data
Concatenation of Languages(UVA10887)
When easycvr deploys a server cluster, what is the reason why one is online and the other is offline?
Simple theoretical derivation of SVM (notes)
With the deep integration of cloud platform, the "Xueba" objectscale in the object storage industry is coming
JS import and export
【图像融合】基于交叉双边滤波器和加权平均实现多焦点和多光谱图像融合附matlab代码