Explorer

Question

Update to 7.2.2 no connection to Fortiguard

Forum|Forum|3 years ago
October 11, 2022
3 replies
2604 views

Hello @All,

we have updated this morning our FGT Cluster from 7.2.1 to 7.2.2 and after that there is no more connection to Fortiguard possible.

exec ping to:

service.fortiguard.net
update.fortiguard.net
guard.fortinet.net

are not possible and also no other ping to internet sites like 8.8.8.8 are not possible.

VPN is working, but web proxy not.

On Version 7.2.1 everything was working fine!

How can we solve that?

many thanks

TBC

FortiGate

sagha

Staff

Hi TBC,

Is DNS working correctly? Are you able to resolve the Domain names?

What is the error you are getting.

Try doing a ping to IP address directly from FGT and see if that works.

Thank you.

Shahan

TBCAuthor

Explorer

Hello Stepan,

DNS is not the Problem, the Problem is the new FW because that one change our routing.

Before the update, we had routing over Groups defined under Static Routes "named address".

After update, that routing was changed to 0.0.0.0 instant group named address.

So we had two routes with 0.0.0.0 one with Internet, one with internal.

We have about 20 Groups defined, but only 7 can be seen under named address.

I have to defined static routes with bigger subnet, and now it's working but that one seems to be a bug in new version.

We have opened a ticket today.

Many thanks for helping

TBC

Hussain1

Visitor III

Same situation in here,

Just upgraded to 7.2.2 and all internet connection is blocked with SSL certificate error *.fortinet.com..

Removed all inspection filtering from the rules, but still no luck.

support unable to resolve is now :)

Retards,

Hussain1

Visitor III

Surprised to see an SSL certificate part of FortiGate is expired;

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded