#exec ping update.fortiguard.netTCP port 443 allowed on interface management VDOM to Internet:
#diag sniff packet <interface-name> 'port 443'To check the communication between FortiGate and FDS:
#diag debug application update 255
#diag debug enableTo disable:
#diag debug application update 0
#diag debug disableTo force the FortiGate to retrieve the GeoIp database:
#execute update-geo-ipTo list the current database version:
#diagnose autoupdate versionsTo check if an Ip is part of the GeoIP loaded database:
.../...
IP Geography DB
---------
Version: 3.00027
Contract Expiry Date: n/a
Last Updated using manual update on Tue Nov 6 00:45:00 2018
Last Update Attempt: Sun Sep 29 12:59:19 2019
#diagnose firewall ipgeo ip2country <Ip address>Example:
FGT1# diagnose firewall ipgeo ip2country 8.8.8.8
8.8.8.8 is in country:US
Related Articles
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.