FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Description This article describes what to expect when using the command '# diagnose hardware test suite all' with non-factory reset configuration present on FortiGate.
Solution The command '# diagnose hardware test suite all' used for HQIP test, do not guarantee successful result (for all test category) when non-factory reset configuration is present on the FortiGate.
This command is primarily used for testing FortiGate at factory reset state and is not intended to test custom configuration. When the command is used after factory resetting the FortiGate a warning is shown on the CLI that 'This test can only pass with factory configurations'.
FortiGate-101F # diagnose hardware test suite all Network Interface Loopback Test - Please connect ethernet cables: WARNING: This test can only pass with factory configurations. Please restore factory reset or use port mode to perform the test [WAN1 - SELF-LOOPBACK] [DMZ - MGMT] [HA1 - HA2] [X1 - X2] [WAN2 - Any of PORT1...PORT12]
However, if non-factory reset configuration is present on the FortiGate no warning message is shown and the command allows to proceed with the test. However, this does not guarantee successful result.
FGT101F # diagnose hardware test suite all Network Interface Loopback Test - Please connect ethernet/SFP cables: [DMZ - MGMT] [WAN1 - WAN2] [HA1 - HA2] [PORT1 - PORT2] [PORT3 - PORT4] ... [PORT19 - PORT20] [X1 - X2]
RMA of FortiGates should not be initiated when the result of this command indicates failure with non-factory reset configuration present on the FortiGate.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.