Created on 08-13-2024 05:01 AM Edited on 08-13-2024 06:47 AM By Stephen_G
This article provides a go-to point for troubleshooting all SNMP issues that may occur with polling information from FortiGate, sorted by issue type.
This article does not focus on SNMP traps.
FortiOS.
General setup guide (make sure setup is performed correctly before taking any other troubleshooting steps):
Technical Tip: How to Configure FortiGate SNMP Agent for Monitoring
No reply to SNMP (at all, or only on one interface/VDOM/unit):
Only some OID is not working, or returns unexpected values:
If all of the above is matched, make sure to have the latest FortiOS version available and then open a support case to investigate.
SNMPD crashes (depending on the type):
For the other cases, contact TAC support for help with troubleshooting. Collect SNMP debug output (from diag debug app snmpd -1 and diag debug ena while reproducing the crash.)
Troubleshooting actions on FortiGate (after all the above fails):
diagnose test application snmpd 99
Debugging (if enabled) will display the following:
diagnose test application snmpd 99
snmpd: received debug test signal
restarting snmp daemon
snmpd: creating community=fortinet
snmpd: community: fortinet mask: 9e9ff9f37f
snmpd: creating community=FortiManager
snmpd: community: FortiManager mask: 7fffffffffffffff
snmpd: set mac_host_timeout as 300
diag sys process pidof snmpd <- Will return the process ID of snmpd to use
diag sys kill 11 <pid#>
See Technical Tip: Find and restart/kill a process on a FortiGate by the process ID (PID) via pidof.
The result will be seen as snmpd showing another process number, and the crashlog will show 'signal 11' sent by the user to snmpd.
Other related articles:
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.