Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
kumarh
Staff
Staff

Created on ‎03-28-2024 11:23 PM

Article Id 307134

Technical Tip: FortiGate is not responding to SNMP request for FortiSwitch

Description

This article describes that FortiGate does not respond to SNMP request for FortiSwitch:

 

snmpnot-working.png
Scope FortiGate.
Solution

Collect packet capture on the SNMP port by running the following commands:

 

diagnose sniffer packet any 'port 161 or port 162' 6 0 a

 

According to the description picture, 172.19.79.2 is the Fortiswitch  IP address and 10.40.6.236 is the SNMP Server. Here, FortiGate is not responding to requests for switch controllers (FortiSwitch).

 

Make sure SNMP is enabled in the switch controller security-policy local-access. SNMP should be enabled for mgmt and internal allowaccess.

 

config switch-controller security-policy local-access

    edit "default"

        set mgmt-allowaccess https ping ssh snmp

        set internal-allowaccess https ping ssh snmp

    next

end

 

After that restart, the SNMP process:

 

diag test application snmpd 9


working,png.png
557
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.