Description
This article describes how to do HQIP test precisely.
Solution
1) Prepare TFTP server and HQIP image for FortiGate.
- TFTP can be downloaded on the internet.
For example : https://tftpd64.software.informer.com/
- HQIP image can be downloaded on the 'support.fortinet.com'
Go to Download –> HQIP Images and enter the serial number.
This article describes how to do HQIP test precisely.
Solution
1) Prepare TFTP server and HQIP image for FortiGate.
- TFTP can be downloaded on the internet.
For example : https://tftpd64.software.informer.com/
- HQIP image can be downloaded on the 'support.fortinet.com'
Go to Download –> HQIP Images and enter the serial number.
2) Save the HQIP image.
3) Run TFTP server and configure 'Current Directory' filed where HQIP image is located.
3) Run TFTP server and configure 'Current Directory' filed where HQIP image is located.
4) Configure the network of PC.
For example: 192.168.1.100 / 255.255.255.0
5) Connect the PC to FortiGate via console port.
6) If connected to FortiGate, run CLI command 'execute reboot' to reboot the FortiGate.
7) When 'Please wait for OS to boot, or press any key to display configuration menu'is appearing during booting-up, enter 'C' key to configure TFTP parameters.
10) Enter 'I' to set local IP address for FortiGate WAN1.
Please connect TFTP server to Ethernet port 'WAN1'.
Example: Enter 'SPACEBAR' or 'ENTER' to go to next step.
23) When the test is done, HQIP test result will be visible.
For example: 192.168.1.100 / 255.255.255.0
5) Connect the PC to FortiGate via console port.
6) If connected to FortiGate, run CLI command 'execute reboot' to reboot the FortiGate.
7) When 'Please wait for OS to boot, or press any key to display configuration menu'is appearing during booting-up, enter 'C' key to configure TFTP parameters.
FortiGate-60D (11:46-03.16.2016)8) Following menus are here to configure TFTP parameters like as below.
Ver:05000002
Serial number: FGT60D4Q16-----6
CPU(00): 800MHz
Total RAM: 2GB
Initializing boot device...
Initializing MAC... nplite#0
Please wait for OS to boot, or press any key to display configuration menu
[C]: Configure TFTP parameters.
[R]: Review TFTP parameters.
[T]: Initiate TFTP firmware transfer.
[F]: Format boot device.
[I]: System information.
[B]: Boot with backup firmware and set as default.
[Q]: Quit menu and continue to boot.
[H]: Display this list of options.
Enter C,R,T,F,I,B,Q,or H: C
[P]: Set firmware download port.9) Enter 'P' key to set firmware download port of the FortiGate.
[D]: Set DHCP mode.
[I]: Set local IP address.
[S]: Set local subnet mask.
[G]: Set local gateway.
[V]: Set local VLAN ID.
[T]: Set remote TFTP server IP address.
[F]: Set firmware file name.
[E]: Reset TFTP parameters to factory defaults.
[R]: Review TFTP parameters.
[N]: Diagnose networking(ping).
[Q]: Quit this menu.
[H]: Display this list of options.
Enter P,D,I,S,G,V,T,F,E,R,N,Q,or H: P
[0]: Any of port 1 - 7
[1]: WAN1
[2]: WAN2
Enter image download port number [WAN1]: 1 <------( Press number wanted ).
10) Enter 'I' to set local IP address for FortiGate WAN1.
Enter P,D,I,S,G,V,T,F,E,R,N,Q,or H: I11) Enter 'S' to set local subnet mask for FortiGate WAN1.
Enter local IP address [192.168.1.1]: Press “Enter” key to use 192.168.1.1 as an IP for FGT’s WAN1
Enter P,D,I,S,G,V,T,F,E,R,N,Q,or H: S12) Enter 'T' to set remote TFTP server IP address for PC.
Enter local subnet mask [255.255.255.0]: Press “Enter” key to use 255.255.255.0 as a subnet for FGT’s WAN1
Enter P,D,I,S,G,V,T,F,E,R,N,Q,or H: T13) Enter 'F' to set firmware file name which is the name of HQIP image downloaded previously.
Enter remote TFTP server IP address [192.168.1.100]: Press “Enter” key to use 192.168.1.100 as a PC IP.
Enter P,D,I,S,G,V,T,F,E,R,N,Q,or H: F14) Enter 'R' to review TFTP parameters configured.
Enter firmware file name [FGT_60D-HQIP.2.5.0.1035.OUT]: FGT_60D-HQIP.2.5.0.1035.OUT
...done
Enter P,D,I,S,G,V,T,F,E,R,N,Q,or H: R15) Enter 'N' to diagnose networking between FortiGate and TFTP server.
Image download port: WAN1
DHCP status: Disabled
Local VLAN ID: <NULL>
Local IP address: 192.168.1.1
Local subnet mask: 255.255.255.0
Local gateway: 192.168.1.254
TFTP server IP address: 192.168.1.100
Firmware file name: FGT_60D-HQIP.2.5.0.1035.OUT
Enter P,D,I,S,G,V,T,F,E,R,N,Q,or H: N16) Enter '1' to send ping from FortiGate to TFTP server.
[1]: Ping remote TFTP server.
[2]: Ping gateway.
[3]: Ping specified IP address.
[Q]: Quit this menu.
[H]: Display this list of options.
Enter 1,2,3,Q,or H: 117) Enter 'Q' to quit this menus and go to upper menus.
Ping#1: Host 192.168.1.100 is reachable.
Ping#2: Host 192.168.1.100 is reachable.
Ping#3: Host 192.168.1.100 is reachable.
Ping#4: Host 192.168.1.100 is reachable.
Enter 1,2,3,Q,or H: Q18) Enter 'G' to do transfer HQIP image from TFTP server to FortiGate.
Enter P,D,I,S,G,V,T,F,E,R,N,Q,or H: Q
Enter C,R,T,F,I,B,Q,or H: G19) Do following steps to complete the transfer.
Please connect TFTP server to Ethernet port 'WAN1'.
Enter TFTP server address [192.168.1.100]: Press “Enter” key20) When FortiGate turned up, login to FortiGate with credentials.
Enter local address [192.168.1.1]: Press “Enter” key
Enter firmware image file name [image.out]: FGT_60D-HQIP.2.5.0.1035.OUT
MAC: 90:6c:ac:c0:67:6a
Connect to tftp server 192.168.1.100 ...
#############################################################
Image Received.
Checking image... OK
Save as Default firmware/Backup firmware/Run image without saving:[D/B/R]? D
Programming the boot device now.
.................................................................................................................................
Booting OS...
Reading boot image... 1829759 bytes.
Initializing firewall...
System is starting...
FORTITEST/FGT60D4Q16-----6 login: admin22) Test procedure is now possible. In order to keep doing HQIP test, do what FortiGate suggests on the screen.
Password: XXXXXXXX
Test program loading(HQIP, Build1035,Aug 18 2015 01:36:54) ...
Engine Version: v1.0 Build 1035. Aug 18 2015 01:36:34
You are running HQIP test program. To start testing, login as "admin" without password, and type:
diagnose hqip start
Welcome !
FORTITEST/FGT60D4Q16-----6 #
21) In order to do HQIP test, run the CLI command 'diagnose hqip start'.
FORTITEST/FGT60D4Q16-----6 # diagnose hqip start
Example: Enter 'SPACEBAR' or 'ENTER' to go to next step.
23) When the test is done, HQIP test result will be visible.
