Hi Team,
I am having trouble with FortiGate connection to FortiGuard server with this error reflecting in the GUI:
"Unable to connect to FortiGuard servers"
Current topology is:
FortiGate (with Issue) ---- Router ---- Another FortiGate ---- Internet
I can ping below:
exec ping service.fortiguard.net
exec ping update.fortiguard.net
exec ping guard.fortinet.net
Diag Debug Rating:
2 Servers Listed and has F flags in it
Already changed between protocol 8888 and 53 (no 443 available in my FG)
Already enabled and disabled the anycast
Management VDOM is 'root'
Config:
config system fortiguard
set fortiguard-anycast disable
set protocol udp
set port 8888
set sdns-server-ip 208.91.112.220 <-
end
Anything else which I can try to make the server reachable?
Thanks!
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi @heyyo ,
You have already tried to change to protocol tcp, right?
I assume that your license is still valid.
Which FOS version are you running?
Can you post the output of the following commands, please:
get system status | grep Version
diag debug rating
#change the port and/or the protocol on the system fortiguard configuration and save it (end)
diag debug rating 1 #<---leave this running for 20 seconds, then press 'q' to stop.
diag test application dnsproxy 2
diag test application dnsproxy 3
You can also try to add a second server IP on the fortiguard config:
config system fortiguard
set sdns-server-ip 208.91.112.220 194.69.172.53
end
Best regards,
Hello
Did you check on you frontal FG if it is blocking the traffic from your internal FG to internet?
You may run below debug command to have an idea of the issue
diag debug reset
diag debug application update -1
diag debug enable
execute update-now
https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Unable-to-connect-to-FortiGuard-serv...
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1688 | |
1087 | |
752 | |
446 | |
227 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.