The FEC feature design has the following changes starting in FortiOS 7.0.2:
- FEC enabled on FortiGates running 7.0.2 is not backward compatible with FEC enabled on FortiGates running previous versions.
- In addition to enabling FEC on IPsec interfaces in previous versions, there is a new option,
fec, that should also be enabled under the related firewall policy so the feature works:
config firewall policy edit <id> set fec enable next end
fecoption is not automatically enabled in a firewall policy when upgrading from a previous version. It must be enabled manually.