question

Alexander McMillen avatar image
1 Like"
Alexander McMillen asked

Why do I observe inconsistent VPN Tunnel & Health Check status for SD-WAN between regions?

During new provisioning of Secure Private Access (SPA), I observe that a number of Health Checks and/or VPN Tunnels are reported as Down. What might cause this?

FortiSASESD-WAN
10 |600

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

1 Answer

·
Alexander McMillen avatar image
0 Likes"
Alexander McMillen answered

The BGP Peer IP and BGP Router ID Subnets cannot be in the same subnet.

screenshot-2022-11-28-at-55324-pm-1.png


As outlined in the Administration Guide, these should be unique values. For example, if the BGP Router ID subnet is 10.20.1.0/24, the BGP peer IP address should be something outside of that /24, such as 10.10.10.253.


10 |600

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Welcome to FortiAnswers

FortiAnswers is the space dedicated to FortiSASE and FortiOS questions and suggestions.

  • Please review the Community guidelines
  • If you are a moderator, please refer to the Moderation guidelines
  • If something in the above guidelines is unclear, please post your question to the Community Feedback space or the Moderators' space