Skip to main content
MOHAMMAD_ALAVI
MOHAMMAD_ALAVI
New Member
February 13, 2013
Question

Web GUI problem

  • February 13, 2013
  • 7 replies
  • 12370 views
Dear guys, one of my appliances which is installed in another office, encounter a problem . i can' t connect to it' s Web gui while in this situation the appliance works fine and all the traffics passes through, depends on policies. so i decided to change the HTTP port number via console connection and it was ok immediately after doing that, but the issue happened again , it' s happening on a regular after changing the HTTP port . Someone get me a solution ..

      7 replies

      rwpatterson
      rwpatterson
      New Member
      February 13, 2013
      We can HELP get you a solution, but to do that provide us with a little more information... Appliance model Firmware version load (number users, IPS/IDS/web filtering, etc) All of the above factors may play into why you' re experiencing that issue.
      ede_pfau
      SuperUser
      ede_pfau
      SuperUser
      February 14, 2013
      Let me guess: - you try to manage the FGT via HTTP, port 80 - there is a web server behind the FGT using port 80 as well Question: if you change the HTTPS port to, say, 30443, and allow HTTPS management on the WAN port, can you then reach the FGT? And is it stable?
      MOHAMMAD_ALAVI
      MOHAMMAD_ALAVIAuthor
      New Member
      February 14, 2013
      The information you' ve requested : Appliance model : FG100D Firmware Version : V4.0 MR3 (PATCH11) approximately 60 users UTM: AV in flow mode and IPS in the meantime, the appliance usage resource is normal in all activities . There is no any port forwarding toward another web server behind FG.. and the issue happen again some while after changing the port number . got any clue ?
      abc987
      abc987
      New Member
      February 15, 2013
      If you don' t get access to WebUI do you see http error 400 like user " Dratas" descibed here: http://support.fortinet.com/forum/tm.asp?m=94042&appid=&p=&mpage=1&key=http%2Cerror&language=single&tmode=&smode=&s=#94042 I have the same problem on a 100D with 4.3.11. I have a ticket open at forti-support. They advised me to update to 4.3.12 but don' t confirm, that there is a Bugfix for this...
      MOHAMMAD_ALAVI
      MOHAMMAD_ALAVIAuthor
      New Member
      February 16, 2013
      Dear pal, i' ve done it as your suggest (Upgrading to patch 12) . i' m waiting for the feedback from our admin . regards
      Jordan_Thompson_FTNT
      Staff
      Jordan_Thompson_FTNT
      Staff
      February 17, 2013
      Do you have any crashes in the console or ' diagnose debug crashlog read' when the problem occurs?
      MOHAMMAD_ALAVI
      MOHAMMAD_ALAVIAuthor
      New Member
      February 17, 2013
      You know this is a strange problem, and i have found some weird symptom on appliance . let me elaborate it : as i told, in this issue we encounter the HTTP error 400 when trying to get access to WebGUI, so today i just cleared all the cookies and caches of my browser and i just have successful to login , but some while after exploring in menus i got the 400 error again . so i thought this is the browser malfunction, but my colleague pretend that he has tried it from many systems with different browsers and the result was disappointed ... i just confused .. anyway i' ve decided to test the appliance hardware with HPQI firmware ... SOME ONE JUST HELP ME !
      Jordan_Thompson_FTNT
      Staff
      Jordan_Thompson_FTNT
      Staff
      February 17, 2013
      Can you answer my previous question? Are there any crashes in the crash log when the problem exists? Any information you provide will help us solve the problem.
      MOHAMMAD_ALAVI
      MOHAMMAD_ALAVIAuthor
      New Member
      February 18, 2013
      Well i' ve checked it and it was nothing out there. anything else shall i check ?
      Dave_Hall
      Dave_Hall
      New Member
      February 18, 2013
      so i decided to change the HTTP port number via console connection and it was ok immediately after doing that, but the issue happened again , it' s happening on a regular after changing the HTTP port .
      Just to confirm are you saying 1) changing the default administrative HTTP port stays changed but still have problems accessing the fgt or 2) changing the HTTP port revert back to port 80 after awhile? I am more incline to think your problem may be related to a web or proxy server, either configured on the fgt or somewhere on your internal network. Can you confirm/provide more information on: 1) main role of this fgt? 2) Is some sort of web or proxy server running on your network or behind the fgt (e.g. connected to a DMZ port) 3) any explicit web proxy options enabled on the fgt I suggest disable any automatic setting/proxy setting on your web browser. If using IE, uncheck " Automatically detect settings" under Internet Options/Connections/LAN Settings (can also do this from the control panel " Internet Options" ).
      MOHAMMAD_ALAVI
      MOHAMMAD_ALAVIAuthor
      New Member
      February 19, 2013
      1) The role of mentioned fgt is gateway for all the clients . 2) There is not any web or proxy server installed on the network. 3) The explicit web proxy options is disabled. and besides, if we suppose that there might be a proxy server on the network and the clients sends their request to it instead of FGT, then i can' t open the FGT login page while i can but after login i get the HTTP ERROR 400 .
      Jordan_Thompson_FTNT
      Staff
      Jordan_Thompson_FTNT
      Staff
      February 19, 2013
      Can you try enabling the following CLI option:- config system global set http-obfuscate none If the error number changes, please attach a screen capture.
      MOHAMMAD_ALAVI
      MOHAMMAD_ALAVIAuthor
      New Member
      February 19, 2013
      Well, i guess the HTTP obfuscate is a method in order to hide the HTTP header so, the receiver can' t detect the user' s browser version and so on .. isn' t it ?
      Terms & ConditionsAccessibility statement