Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Renante_Era
Staff
Staff

Created on ‎09-04-2024 09:31 PM Edited on ‎09-09-2024 06:03 AM By Community Manager

Article Id 339151

Troubleshooting Tip: FortiGate is unable to connect to FortiAnalyzer Cloud

 

Description This article describes how to troubleshoot when FortiGate cannot connect to FortiAnalyzer Cloud.
Scope FortiGate, FortiAnalyzer-Cloud.
Solution

Make sure the FortiGate firmware version and FortiAnalyzer Cloud version are compatible.

 

  1. Run sniffer to see if a 3-way handshake can be completed:

 

di sni pa any host "w.x.y.z. and port 514' 4 0 l <----- Where w.x.y.z is the FortiAnalyzer IP address.

 

Press Ctrl+C to stop the sniffer.

 

  1. If a 3-way handshake is unable to be completed, run the debug flow:

 

di de res

di de fl filter cl

di de cons t en

di de fl sh f en

di de fl sh iprope en

di de fl filter addr w.x.y.z

di de fl filter port 514

di de fl tr start 99

di de en

 

Disable debug:

 

di de res

 

  1. Check FortiGate connectivity to FortiGuard:

 

exec ping service.fortiguard.net

exec ping update.fortiguard.net

 

  1. Check the FortiAnalyzer-Cloud settings on FortiGate run the below command:

     

config log fortianalyzer-cloud setting
sh full

config log fortianalyzer-cloud filter
sh full

 

If the issue persists, open a ticket and attach the debug at support.fortinet.com

 

160
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.