Hi,
- What do you mean by "blank page" ? When you try click on f12 on browser and then enter the application page, what response do you see there ?
Or do you mean it keeps loading and nothing happened?
- Does you application only uses SMBv2 and no other ports ? or you only suspect the problem is with SMBv2 ?
- You upgraded to 6.0.10 to see if this resolves the issue ? or you were all the time at 6.0.10 and never upgraded ?
- Did it happen to work with some other firewall other than fortigate ? or you never tried that , and only bypassed the fortigate ?
- Is it possible for you to post the output of:
diag debug reset
diag debug disable
diag debug flow filter <application destination ip>
diag debug flow trace start 1000
diag debug enable
After finishing disable the debug : diag debug disable
Thanks
you say SMB. What traffic are you actually expecting to transit this ? I am hoping this isn't a firewall to the internet too and the app server isn't on the internet?? SMBv1 is deprecated everywhere and is highly insecure. Do you really mean SMBv2 perhaps?
Agree on diag debug to get info on whats going on.
So before 6.0.9 it worked properly with FortiGate? Or all the issue starts after installing FortiGate? Also, I'm not sure if this is related to your issue, but if application is using SMBv1, Then it worth checking with Fortinet TAC this:
414081 SMB1 support has been by default disabled under part models.Which released at v5.6.6 and 6.0.2 https://fortinetweb.s3.am....0.2-release-notes.pdf https://pub.kb.fortinet.c....6.6-release-notes.pdf
Thanks
I've came across situations were things didn't work after replacing firewall but most of them are related to MTU / TCP MSS issues .. But this should be shown in pcap which you already have done as you mentioned ..
Thanks
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1738 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.