Couldn't access management | root cause

Miata · ‎05-31-2016

Hi guys,

Recently the management was inaccessible but it could be pinged. After a reboot the device was accessible again and all was well.

Is there anything I could run/see that could help me identify what happened around the time of the incident?

Regards

Miata

BWiebe · ‎05-31-2016

Depending on Firmware version:

from cli

diag debug crashlog read

might help you pinpoint something.

theotherkent · ‎05-31-2016

Are you not able to manage the firewall by the GUI? Have you tried to use Fortiexplorer, or just trying to SSH into a putty session with it? If you can SSH to it, run a sniff to make sure your management traffic is getting to the firewall. Run a flow to determine what is blocking the traffic.

Let us know how it works out.

emnoc · ‎05-31-2016

The cli diag debug flow command is your 1st step. Since ping works I would check allowaccess on the interface(s) and run a diag debug flow and with a sniffer on the interface(s) in question

e.g ( ssh and https on wellknown ports for wan1 interface and local address 1.1.1.1 )

diag sniffer packet wan1 "host 1.1.1.1 and port 22 or 443"

PCNSE

NSE

StrongSwan

Couldn't access management | root cause

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website