Help
FortiWeb
A FortiWeb can be configured to join a Security Fabric through the root or downstream FortiGate.
JBarrera
Staff
Staff

Created on ‎08-28-2024 01:35 AM

Article Id 336932

Troubleshooting Tip: Wrong Geo-IP Classification

Description This article describes Geo-location discrepancies observed on FortiWeb logs.
Scope FortiWeb.
Solution

Before creating a TAC ticket, follow the following steps:

 

  • First, check the current GEO-IP database version using this command:


get system upd-db-version

 

  • Then update the GEO-IP database using the below command:

 

execute update fwdb

 

  • It is also possible to use the following command to update all the security databases:

 

execute update-now

 

If the Fortiweb still presents GEO-IP discrepancies, create a TAC ticket and upload the following information.

 

 

  1. Configuration file: Go to System -> Maintenance -> Backup & Restore (Backup).

  2. Debug logs : Go to System -> Config -> Features Visibility -> make sure Debug is enabled. Then go to System -> Maintenance -> Debug -> Download the file.

  3. Test connectivity for the FortiGuard Services by executing the following commands:

execute telnettest service.fortiguard.net:443
execute telnettest update.fortiguard.net:443

 

  1. Run the command: 'diag system update info' then 'exec update-now' and wait for 10 min before running again 'diag system update info'.
112
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.