Forti60 Remote administration fails

Forum|Forum|4 years ago
October 14, 2021
1 reply
3789 views

Should be simple but I'm stuck. I have a new HA pair of Forti60 and I just need remote admin access. I can get in on a LAN interface and have the public WAN configured to allow http, https and SSH.

I'm over an hour away from the office and went in last night to straighten this out. I called support and it seemed to just start working (allow web page) while we were on the call. I came home and cannot get the page to display, just site can't be reached.

This site can’t be reached

23.30.178.17 took too long to respond.

Host is up (0.046s latency). Not shown: 96 filtered ports PORT STATE SERVICE 22/tcp open ssh 80/tcp open http 113/tcp closed ident 179/tcp open bgp

I also get SSH time out. Should 113/tcp be listening?

I should add that there are no rules to allow only from a trusted subnet.

6.2

ede_pfau

SuperUser

You should focus on login via ssh, this uses the least resources. For WebGUI access the FGT needs to have enough free RAM, much more than for SSH.

What is the (debug) log entry if SSH fails?

rwpatterson

New Member

Ditto on that. Those old units were prone to memory issues (not enough) and they would end up in a reduced capacity whereas some services would be on hold while the system struggled to recover RAM. I forgot the term off the top of my head. (recovery mode??) Hopefully you have the latest version of firmware installed (even though it's probably over ten years old).

ede_pfau

SuperUser

"conserve mode"

and if you think this is a thing of the past...no way.

This site can’t be reached

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded