Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
cybernet2025
New Contributor III

Created on ‎12-06-2020 05:34 PM

Found issue about internet connection lost

I found the internet connection lost. When I found our workstation cannot access the internet. This is my step process that I've done.

1. Workstation cannot access internet and cannot ping 8.8.8.8 (request time out)

2. I've remoted to FG. (I can ping internal interface of firewall)

3. I'm able to ping 8.8.8.8 from FG

4. Workstation not able to ping 8.8.8.8

====

I'm waited around 30 second and my internet is back. Workstation can access to the internet. I'm not sure what happened.

 

Could you please help me to find a root cause?

 

 

4287
0 Kudos
3 REPLIES 3
Yurisk
SuperUser
SuperUser

Created on ‎12-06-2020 11:57 PM

There could be too many possible reasons to be more specific, but I'd star with Fortigate logs - especially look in (System) Events logs at the time of the disconnection - if any interface went down, or IP pool/ports were exhausted, it would be recorded there. Also of use is the Routing Monitor - just make sure you have "Up Since" column set to display by right clicking (See screen attached), this will show for how long routes are in the routing table - if there were loss of connection to ISP, its route would have up time accordingly. 

 

Yuri https://yurisk.info/  blog: All things Fortinet, no ads.
Yuri https://yurisk.info/ blog: All things Fortinet, no ads.
Preview file
61 KB
3149
0 Kudos
cybernet2025
New Contributor III
In response to Yurisk

Created on ‎12-07-2020 04:47 AM

Yurisk wrote:

There could be too many possible reasons to be more specific, but I'd star with Fortigate logs - especially look in (System) Events logs at the time of the disconnection - if any interface went down, or IP pool/ports were exhausted, it would be recorded there. Also of use is the Routing Monitor - just make sure you have "Up Since" column set to display by right clicking (See screen attached), this will show for how long routes are in the routing table - if there were loss of connection to ISP, its route would have up time accordingly. 

 

1. I tried to find thr IP pool/ports were exhausted issue but I didn't see in Event log and CLI command by "diagnose sys session stat"

2. Port down issue I think it's now possible because when I found this issue I've remoted to firewall and I'm able to ping 8.8.8.8 from the firewall while client is not able to access the internet and can't ping 8.8.8.8 from inside.

 

3149
0 Kudos
rwpatterson
Valued Contributor III
In response to cybernet2025

Created on ‎12-07-2020 06:46 AM

Look to see if resources at being taxed: CPU and memory during the episodes.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
3149
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.