|
During execution of the troubleshooting steps to diagnose the FortiGuard connection:
diagnose debug application fds 8
diagnose debug application sslutil 7
diagnose debug application update 7
diagnose debug enable
It is possible to observe the FortiWeb cannot connect with the FortiGuard servers.
upd_comm.c[567] Failed TCP connect
upd_act.c[194] Failed connecting to 173.243.138.71:443
upd_act.c[204] update network error:failed to connect server 173.243.138.71:443.
upd_act.c[187] Trying FDS 208.184.237.66:443
The debug output shows Proxy tunneling was enabled.
upd_comm.c[338] Proxy tunneling enabled to 10.36.117.27:9020
Verify the configuration in CLI under 'system autoupdate tunneling':
config system autoupdate tunneling
set status enable
set address 10.36.117.28
set port 9020
unset username
unset password
end
If there is no proxy device to provide internet service, the configuration is not necessary.
Disable the autoupdate tunneling and verify if the connection works after that.
config system autoupdate tunneling
set status disable
end
|
