Fortinet Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
rodney_altamera
New Contributor

Problem Cannot Access Web Interface of Fortinet Firewall

Hi to all,

 

I have a problem with my fortinet firewall suddenly cannot access the web interface. I tried this link but cannot see the httpd service. How can I restart the httpd without restarting the firewall.

 

Any help will do.

 

Thanks

 

rodz

1 Solution
sw2090
Honored Contributor

hm usually that happens to you when something causes http(s)d to keep crashing on your FGT.

 

You could exec these commands to see some debug log output that might give you a clue:

 

diag debug ena

diag debug app httpd -1

diag debug app httpsd -1

 

(You could enter diag debug app http and press tab then to see what is there as I am not a 100% sure about it now)

Maybe that show you the issue or you could post the logs in here.


-- 

"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams

View solution in original post

2 REPLIES 2
sw2090
Honored Contributor

hm usually that happens to you when something causes http(s)d to keep crashing on your FGT.

 

You could exec these commands to see some debug log output that might give you a clue:

 

diag debug ena

diag debug app httpd -1

diag debug app httpsd -1

 

(You could enter diag debug app http and press tab then to see what is there as I am not a 100% sure about it now)

Maybe that show you the issue or you could post the logs in here.


-- 

"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams

rodney_altamera

Hi sw2090,

 

I was able to find the culprit. I think it is a log issue and my memory is almost full. My settings on all my policy is enable logs "all sessions". But based on what I know with Fortinet this should not have happened since by default fortinet will refresh the memory once it reaches 70%. This I am not sure. Correct me if I am wrong. I'll just type here the error.

 

app-ctrl memory log is 95% full

app-ctrl memory log is 90% full

app-ctrl memry log is 75% full

 

I think based on the logs Fortinet is trying to clear memory. BUt the problem again I am not able to access the GUI thru web interface. Since I need to do live monitoring of my network. so I tried to restart my fortinet but it was taking a long time to boot, almost an hour. So I tried to force shutdown which is oncorrect but I have no choice since I cannot access the Firewall GUI. I did this by removing the power cord. After turning on again the power after 5min. it took my fortinet around 15min to boot and now I can see my GUI. After I logged in and change the log settings on all policy to log only "Security Events Only". After that until now my firewalls are running stable.

 

Now my question since my setup is HA why my second firewall did not kick in and do the work while I restart firewall A. Is this possible with Fortinet?

 

Thanks again for your time. I appreciate this!

 

rodney