Goodmorning!
I have Fortniet Fortigate 310B.I buy this, because I need make a VPN connection. It is of course not a new unit, but used. And now I have problems with connection with this unit.
First: according instruction in internet I connect ethernet cable to Port 1, set the host IP:192.168.2.1, but Port 1 is inactive. No connection in this way.
Second way: I connect serial cable to console port, configure COM1 to 9600/8/1/none/none, start PuTTY, PuTTY is conected to Fortinet.
And now I see serial numner, and login, and a question mark.So I type: admin <Enter>, password <Enter> (without of password).
I try type "admin", "Admin","ADMIN", ....always "Login incorrect".
In instruction is, login: admin, password: none (just press Enter).
The seller assured that the device is reset to factory settings.
Factory settings are: admin/none.
What I am dooing wrong?
Regards!
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
a. There are guides on how to recover lost admin password. > google
b. FGT 310B is end of life,, end of support, end of everything
c. Cannot be upgraded to versions that resolve critical vulnerabilities
>>> sorry but very bad choice , due to VPN firewall will be exposed to these vulnerabilities.
--------------------------------------------
If all else fails, use the force !
(shamelessly copied from Flexible's post 2012-Apr-11):
To reset the FortiGate unit password 1. Connect the terminal to the FortiGate unit using the null modem cable.
- any Cisco type serial DB9-to-RJ45 cable will do
- should be at 9600/8/N/1, if not, try other speeds up to 115k until you get a prompt
NOW: power OFF the FGT! next step will only work for a short period of time (seconds) after a power up!
2. Log on at the console* with
username: "maintainer"
password: bcpbFG300B3910602455 You must enter the alphabetic characters of the serial number ...exactly as given, that is, in upper case 3. Enter the following commands: config system admin edit admin set password <mypassword> end
4. Log off, and on again as "admin"/<mypassword>. The maintainer cannot do much except for resetting the admin password.
5. in the CLI: "exec factoryreset" to clean the config up
6. the default IP address is 192.168.1.99 now
You've got v4.3.5, published Feb 2, 2012.
The latest v4.3 build is v4.3.19, from Nov 9, 2016.
The latest version available for a FG-310B is v5.2.15, released Oct 23, 2019.
For upgrading, you need a valid contract which is a prerequisite for logging in to the support portal where you can download firmware images. So, firmware and signature updates for not for free.
A 1-year-FortiCare contract is about 1890 EUR plus sales tax. (Still available!!)
I'd say if you want to use the FGT as VPN gateway you don't need to upgrade. Who's asking for AV signature updates for such ancient hardware, and for free?
a. There are guides on how to recover lost admin password. > google
b. FGT 310B is end of life,, end of support, end of everything
c. Cannot be upgraded to versions that resolve critical vulnerabilities
>>> sorry but very bad choice , due to VPN firewall will be exposed to these vulnerabilities.
--------------------------------------------
If all else fails, use the force !
(shamelessly copied from Flexible's post 2012-Apr-11):
To reset the FortiGate unit password 1. Connect the terminal to the FortiGate unit using the null modem cable.
- any Cisco type serial DB9-to-RJ45 cable will do
- should be at 9600/8/N/1, if not, try other speeds up to 115k until you get a prompt
NOW: power OFF the FGT! next step will only work for a short period of time (seconds) after a power up!
2. Log on at the console* with
username: "maintainer"
password: bcpbFG300B3910602455 You must enter the alphabetic characters of the serial number ...exactly as given, that is, in upper case 3. Enter the following commands: config system admin edit admin set password <mypassword> end
4. Log off, and on again as "admin"/<mypassword>. The maintainer cannot do much except for resetting the admin password.
5. in the CLI: "exec factoryreset" to clean the config up
6. the default IP address is 192.168.1.99 now
jklapas:
Thanks. You are right, it is an old device. But I think, for me is ok. But Your advice (look in google) is very helpfull. Thanks!
Now I have connected with my device. THANKS FOR YOUR HELP!
Actually it's not yet end of support. - Support ends 13 Sep 2021 and runs 5.2
Are there any known security issues for 5.2.15?
Hasn't v5.2 been long out of support?
Anyway, the 310B is a workhorse, and not a bad choice for a VPN gateway.
If memory is getting tight, you can put in standard DIMMs to expand it :)
Ede
No the 310B suprised to see it is still support to sept 13 2021. I just went thru this with a customer and I was even shocked.
Ken Felix
PCNSE
NSE
StrongSwan
I try to chceck my version of firmware.
I connect to FG, run PuTTY, log in, and I have read:
<photo>.
It is an old firmware version 4?
I am trying to find a way to upgrade firmware, but I still see like this: login to the WebUI, go to system.... In my web UI isn't "system" in menu tree. What I am dooing wrong? This is because I have firmware 4, not 5? If yes, what now? I am trayed find a solution (download and upgrade firmware), but a advice be wery usefull... Download firmware is for free? What with firewall and antivirus database? Can I upgrade this for free, too?
Regards...
You've got v4.3.5, published Feb 2, 2012.
The latest v4.3 build is v4.3.19, from Nov 9, 2016.
The latest version available for a FG-310B is v5.2.15, released Oct 23, 2019.
For upgrading, you need a valid contract which is a prerequisite for logging in to the support portal where you can download firmware images. So, firmware and signature updates for not for free.
A 1-year-FortiCare contract is about 1890 EUR plus sales tax. (Still available!!)
I'd say if you want to use the FGT as VPN gateway you don't need to upgrade. Who's asking for AV signature updates for such ancient hardware, and for free?
- totally worth the money.
I think 4.3.5 even contains the SSH backdoor.
https://www.fortinet.com/.../ssh-issue-update.html
So if you take it online, better make sure it's not offering any other services to the internet.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1688 | |
1087 | |
752 | |
446 | |
227 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.