FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Wallerson
Staff
Staff
Article Id 262866

Description

 

This article describes how to run the HQIP tests only on specific interfaces.

 

Scope

 

FortiGate with diagnostic commands included in FortiOS.

 

Solution

 

To run an HQIP interface test, it is first necessary to connect the interfaces with loopback cables. For example: Port1 <-> Port2, Port3 <-> Port4, etc.

If not connected as instructed, the test will fail in the detection phase and will not test the ports.

However, sometimes it is not possible to connect all the ports due to a lack of available cables or transceivers.

 

It is possible to skip the unnecessary ports and run the test only for those in question.

 

  1. To skip certain interfaces, run the following command:

    'diag hardware test skip <interface-name>'.

  • The interfaces can be skipped one by one:

diagnose hardware test skip port1
Skipped interface: port1
Skip interface port1 successfully!

 

  • Ports in sequence can also be skipped:

diagnose hardware test skip port2-14
Skipped interface: port2
Skip interface port2 successfully!
Skipped interface: port3
Skip interface port3 successfully!
Skipped interface: port4
Skip interface port4 successfully!
Skipped interface: port5
Skip interface port5 successfully!
Skipped interface: port6
Skip interface port6 successfully!
Skipped interface: port7
Skip interface port7 successfully!
Skipped interface: port8
Skip interface port8 successfully!
Skipped interface: port9
Skip interface port9 successfully!
Skipped interface: port10
Skip interface port10 successfully!
Skipped interface: port11
Skip interface port11 successfully!
Skipped interface: port12
Skip interface port12 successfully!
Skipped interface: port13
Skip interface port13 successfully!
Skipped interface: port14
Skip interface port14 successfully!

 

diagnose hardware test skip port17-24
Skipped interface: port17
Skip interface port17 successfully!
Skipped interface: port18
Skip interface port18 successfully!
Skipped interface: port19
Skip interface port19 successfully!
Skipped interface: port20
Skip interface port20 successfully!
Skipped interface: port21
Skip interface port21 successfully!
Skipped interface: port22
Skip interface port22 successfully!
Skipped interface: port23
Skip interface port23 successfully!
Skipped interface: port24
Skip interface port24 successfully!

 

diagnose hardware test skip x5-8
Skipped interface: x5
Skip interface x5 successfully!
Skipped interface: x6
Skip interface x6 successfully!
Skipped interface: x7
Skip interface x7 successfully!
Skipped interface: x8
Skip interface x8 successfully!

 

     2. Run the command below to verify which interfaces will be skipped by the test:

 

diagnose hardware test skip show
Currently skipped interfaces:
x5
x6
x7
x8
port1
port2
port3
port4
port5
port6
port7
port8
port9
port10
port11
port12
port13
port14
port17
port18
port19
port20
port21
port22
port23
port24

 

     3. Run the HQIP test through the command 'diagnose hardware test suite all', or execute just the network loopback test.

 

  • The following interfaces will be tested: ha, x1, x2, x3, x4, mgmt, port15 and port16:

diagnose hardware test network loopback
Network Interface Loopback Test
Please connect ethernet/SFP cables:
[HA - MGMT] [PORT1 - PORT2] ... [PORT23 - PORT24] [X1 - X2] ... [X7 - X8]
Do you want to continue this test? (y/n) (default is n) y
Test Begin at UTC Time Thu Jun 1 17:07:02 2023


17:07:02 ( 0s) ==> Network Interface Loopback Test

Initializing ha, MAC:AC:71:2E:7D:0D:50 (Linked 1000M)
Initializing x1, MAC:AC:71:2E:7D:0D:6A (Linked 10000M)
Initializing x2, MAC:AC:71:2E:7D:0D:6A (Linked 10000M)
Initializing x3, MAC:AC:71:2E:7D:0D:6C (Linked 10000M)
Initializing x4, MAC:AC:71:2E:7D:0D:6D (Linked 10000M)
Initializing mgmt, MAC:AC:71:2E:7D:0D:51 (Linked 1000M)
Initializing port15, MAC:AC:71:2E:7D:0D:60 (Linked 1000M)
Initializing port16, MAC:AC:71:2E:7D:0D:61 (Linked 1000M)
Interface ha pair: [me=> ha AC:71:2E:7D:0D:50] [he=> mgmt AC:71:2E:7D:0D:51]
Interface x3 pair: [me=> x3 AC:71:2E:7D:0D:6C] [he=> x4 AC:71:2E:7D:0D:6D]
Interface x4 pair: [me=> x4 AC:71:2E:7D:0D:6D] [he=> x3 AC:71:2E:7D:0D:6C]
Interface mgmt pair: [me=> mgmt AC:71:2E:7D:0D:51] [he=> ha AC:71:2E:7D:0D:50]
Interface port15 pair: [me=> port15 AC:71:2E:7D:0D:60] [he=> port16 AC:71:2E:7D:0D:61]
Interface port16 pair: [me=> port16 AC:71:2E:7D:0D:61] [he=> port15 AC:71:2E:7D:0D:60]
netbt negotiation retry: 9
netbt negotiation retry: 8
Interface x1 pair: [me=> x1 AC:71:2E:7D:0D:6A] [he=> x2 AC:71:2E:7D:0D:6A]
Interface x2 pair: [me=> x2 AC:71:2E:7D:0D:6A] [he=> x1 AC:71:2E:7D:0D:6A]
Total 8 interfaces paired.

 

When the test is done, run 'get system status' and attach all output to the FortiCare case.