| Description | This article describes how to use dedicated-management interface for FortiGuard communication. |
| Scope |
FortiGate, FortiGuard.
Scenario: 'Mgmt' interface is the only interface with internet access. |
| Solution |
System interface management config:
FortiGate-100D # show system interface mgmt
System DNS config:
FortiGate-100D # show system dns
Router static:
FortiGate-100D # show router static
Ping test to these 3 FQDNs to see if system DNS works well:
* service.fortiguard.net * update.fortiguard.net * guard.fortinet.net
FortiGate-100D # execute ping service.fortiguard.net PING guard.fortinet.net (208.184.237.61): 56 data bytes 64 bytes from 208.184.237.61: icmp_seq=0 ttl=56 time=146.1 ms 64 bytes from 208.184.237.61: icmp_seq=1 ttl=56 time=146.0 ms ^C --- guard.fortinet.net ping statistics --- 2 packets transmitted, 2 packets received, 0% packet loss round-trip min/avg/max = 146.0/146.0/146.1 ms
FortiGate-100D # execute ping update.fortiguard.net PING fds1.fortinet.com (173.243.138.67): 56 data bytes 64 bytes from 173.243.138.67: icmp_seq=0 ttl=54 time=156.2 ms 64 bytes from 173.243.138.67: icmp_seq=1 ttl=54 time=156.2 ms ^C --- fds1.fortinet.com ping statistics --- 2 packets transmitted, 2 packets received, 0% packet loss round-trip min/avg/max = 156.2/156.2/156.2 ms
FortiGate-100D # execute ping guard.fortinet.net PING guard.fortinet.net (209.222.147.36): 56 data bytes 64 bytes from 209.222.147.36: icmp_seq=0 ttl=53 time=89.0 ms 64 bytes from 209.222.147.36: icmp_seq=1 ttl=53 time=89.0 ms ^C --- guard.fortinet.net ping statistics --- 2 packets transmitted, 2 packets received, 0% packet loss round-trip min/avg/max = 89.0/89.0/89.0 ms
FortiGuard status shows 'UP'.
 
Related articles: https://community.fortinet.com/t5/FortiGate/Technical-Note-How-to-dedicate-an-interface-to-managemen... https://docs.fortinet.com/document/fortigate/6.0.0/cookbook/222079/using-a-trusted-host-optional |
Unlock Exclusive Benefits
Join Our Community Today!
Join our community and post in the forum to earn your exclusive Holiday badge! Become a member today!
LOGIN/REGISTER
CONTINUE AS A GUEST
- Support Forum
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiClient
- FortiADC
- FortiAIOps
- FortiAnalyzer
- FortiAP
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDLP
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEdgeCloud
- FortiEDR
- FortiExtender
- FortiGuest
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiMonitor
- FortiManager
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPhish
- FortiPortal
- FortiPresence
- FortiSRA
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiScan
- FortiSandbox
- FortiSASE
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiWAN
- FortiToken
- FortiVoice
- FortiWeb
- Wireless Controller
- FortiAppSec Cloud
- RMA Information and Announcements
- Lacework
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
- Fortinet Community
- Knowledge Base
- FortiGate
- Technical Tip: Using dedicated-management interfac...
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2025 Fortinet, Inc. All Rights Reserved.