Skip to main content
evaldas
evaldas
Explorer
December 11, 2024
Solved

Remove inbuilt BLE

  • December 11, 2024
  • 5 replies
  • 2144 views

We bought some Firewalls 81F, but unfortunately they all have BLE inbuilt and it is not possible to go through TEMPEST screening. Is it possible to remove inbuilt BLE? Thank you.

Best answer by ebilcari

Physical intervention on the device could potentially void the RMA policy. Technically the BLE will be running only for a minute during the first boot/initialization. If the device is configured without using the BLE, it should remain turned off as shown also in the configuration guide. I don't have an appliance to test it, the command should be:

config system global
set ble-module disable

 

A reboot may be required for the changes to take effect. The status of BLE can be checked by the flashing of the status LED.

5 replies

ebilcari
Staff
ebilcari
Staff
December 11, 2024

Are you trying to find a way to disable BLE or physically detach the module in order to pass the device screening?

Emirjon
    evaldas
    evaldasAuthor
    Explorer
    December 11, 2024

    I prefer physically detach, but if there is a way to disable BLE and not beeing seen in TEMPEST laboratory, I would be happy.

    ebilcari
    Staff
    ebilcariAnswer
    Staff
    December 12, 2024

    Physical intervention on the device could potentially void the RMA policy. Technically the BLE will be running only for a minute during the first boot/initialization. If the device is configured without using the BLE, it should remain turned off as shown also in the configuration guide. I don't have an appliance to test it, the command should be:

    config system global
    set ble-module disable

     

    A reboot may be required for the changes to take effect. The status of BLE can be checked by the flashing of the status LED.

    Emirjon
      evaldas
      evaldasAuthor
      Explorer
      December 12, 2024

      We will try to disable BLE and bring that one to TEMPEST lab to test if they see it. Thank you.

        evaldas
        evaldasAuthor
        Explorer
        December 12, 2024

        Now I will wait answer from a tempest lab. Thank you. 

        ollie16
        ollie16
        New Member
        December 23, 2024

        I’m truly surprised that Fortinet would incorporate this technology into a security device, fully aware that it doesn’t meet the security standards required by many data centers. We encountered the same issue with the 901Gs, which resulted in us being denied access to the data center. Simply disabling Bluetooth and the external button didn’t suffice to meet the security requirements. I sincerely hope these are removable modules, or else we’ll be left with expensive paperweights.

          evaldas
          evaldasAuthor
          Explorer
          January 13, 2025

          We had to remove BLE physically otherwise Lab does't except them and we did it :) IMG_3203.jpeg

          Terms & ConditionsAccessibility statement