Avalanche: IPSec test fails on 10G port but same test works on 1G port

Same remote-access IPSec testing with a DUT between Avalanche Client and Server works on 1G port but fails on 10G port on C100. • With 10G port, Avalanche doesn't establish the tunnels. • Investigation shows that the fragmented packets sent by the Fortigate to the Avalanche are dropped at the low level since they do not appear in the packet trace taken at the Avalanche side. • Setting “IP fragmentation” tab, has only impact on the frames (size of flags) sent from the Avalanche to the Fortigate but does not help with the received fragmented packets.  

N/A