Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
onurd0gan
New Contributor II

Created on ‎04-29-2019 05:54 AM

Cannot add devices

Hello,

I have fortigate and fortimanager vm trial version 6.0.2. I could not add FortiGate to Fortimanager.

There is no connectivity problem between fortigate and fortimanager, but I get "Probe Failed" error. FMG protocol is enabled on related interface. I checked task monitor logs on FortiManager, I saw "Cannot communicate with remote device (tunnel is down)" and in the description "2019-04-29 15:14:24:fgfmstarterror".

 

what might be the problem?

 

thank you,

25723
0 Kudos
2 Solutions
onurd0gan
New Contributor II
In response to brazz_FTNT

Created on ‎04-30-2019 09:25 AM

Hello,

 

Thank you for your support, I solved the problem by setting enc-algorithm to low on FMG.

 

thanks

 

 

 

View solution in original post

15560
0 Kudos
makco10
Contributor II
In response to onurd0gan

Created on ‎09-02-2019 03:11 PM

Thanks!

 

This config solved my issue:

FortiManager:

Fortigate:

 

Regards.

Defend Your Enterprise Network With Fortigate Next Generation Firewall

View solution in original post

Defend Your Enterprise Network With Fortigate Next Generation Firewall
15558
0 Kudos
15 REPLIES 15
Joey
New Contributor
In response to makco10

Created on ‎10-18-2019 04:22 AM

makco10 wrote:

Thanks!

 

This config solved my issue:

FortiManager:

Fortigate:

 

Regards.

worked like a charm!

 

thx

2902
0 Kudos
amelguizo
New Contributor
In response to Joey

Created on ‎11-28-2019 05:09 PM

Worked for me too

 

Thx

2902
0 Kudos
jonathan007
New Contributor
In response to amelguizo

Created on ‎01-22-2020 02:31 PM

Worked for me too thanks so much

2902
0 Kudos
moonsoftin
New Contributor
In response to jonathan007

Created on ‎04-08-2020 11:51 PM

Thanks for the info, my issue resolved by setting  below on my FM

FMG-VM64-KVM # config system global

(global)# set enc-algorithm low

(global)# set fgfm-ssl-protocol sslv3

2902
0 Kudos
hirvimies
New Contributor
In response to onurd0gan

Created on ‎09-11-2019 12:36 AM

When I tried out FortiManager and FortiGates as VMs in a Virtual Environment, I also had problem getting it to work. I managed to work around it but I couldn't get full functionality (IPSEC VPN) since the FG-VM was lacking strong encryption. Using physical FortiGates was the best solution but I think you can license the VM to get stronger encryption?

 

I had to configure the following on the FortiManager CLI:

 

config system global

  set enc-algorithm low

 

I see that your enc-algorithm is set on high under system global so this might help you.

2902
0 Kudos
sw2090
Honored Contributor
In response to onurd0gan

Created on ‎04-28-2020 12:55 AM

I ran into this for several times when fmg-soure-ip on the FortiGate was incorrect. 

you might try to change this from 0.0.0.0 to the ip of the interface that is used for communication with FortiManager.

-- 

"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams

-- "It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
2901
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.