Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
SA_Metal
New Contributor II

FortiGuard Servers Down

Fortiguard Servers unreachable via 2 Different Locations with two Different ISP's

DNS Debugging followed and ping responses from Fortigate's both show 290ms response times.
Fortiguard Servers are set to use lowest latency location as well.

Still unreachable, Is there an outage ?

4 REPLIES 4
msolanki
Staff
Staff

Please disable anycast and enable fortiguard communication over port 8888/53  .

config system fortiguard

set fortiguard-anycast disable

set port 53

set protocal udp

set sdns-server-ip "208.91.112.220"

 

After that run below command and you will see more server(18 or 20)  available .

 

Thanks

madhav

SA_Metal
New Contributor II

Hi msolanki,

Response times have increased thank you.

However web filter and Outbreak Prevention Servers are still well over 900ms.
If I want to revert to use anycast again, How do i revert these changes ? 

msolanki
Staff
Staff

for revert

config system fortiguard

set fortiguard-anycast enable

 

Thanks

Madhav

SA_Metal
New Contributor II

Thank you Msolanki

I appreciate the assistance will see if this changes things and revert.

Labels
Top Kudoed Authors