Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
SA_Metal
New Contributor II

Created on ‎05-18-2023 07:19 AM

FortiGuard Servers Down

Fortiguard Servers unreachable via 2 Different Locations with two Different ISP's

DNS Debugging followed and ping responses from Fortigate's both show 290ms response times.
Fortiguard Servers are set to use lowest latency location as well.

Still unreachable, Is there an outage ?

Labels:
992
4 REPLIES 4
msolanki
Staff
Staff

Created on ‎05-18-2023 07:37 AM

Please disable anycast and enable fortiguard communication over port 8888/53  .

config system fortiguard

set fortiguard-anycast disable

set port 53

set protocal udp

set sdns-server-ip "208.91.112.220"

 

After that run below command and you will see more server(18 or 20)  available .

 

Thanks

madhav

986
SA_Metal
New Contributor II

Created on ‎05-18-2023 07:58 AM

Hi msolanki,

Response times have increased thank you.

However web filter and Outbreak Prevention Servers are still well over 900ms.
If I want to revert to use anycast again, How do i revert these changes ? 

979
0 Kudos
msolanki
Staff
Staff

Created on ‎05-18-2023 08:03 AM

for revert

config system fortiguard

set fortiguard-anycast enable

 

Thanks

Madhav

978
0 Kudos
SA_Metal
New Contributor II

Created on ‎05-18-2023 08:04 AM

Thank you Msolanki

I appreciate the assistance will see if this changes things and revert.

977
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.