- Forums
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiClient
- FortiAP
- FortiAnalyzer
- FortiADC
- FortiBridge
- FortiAuthenticator
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDDoS
- FortiDAST
- FortiDB
- FortiDNS
- FortiDevSec
- FortiDeceptor
- FortiDirector
- FortiEDR
- FortiGate Cloud
- FortiExtender
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiMonitor
- FortiManager
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPortal
- FortiProxy
- FortiRecorder
- FortiRecon
- FortiSandbox
- FortiScan
- FortiSASE
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- Wireless Controller
- FortiWebCloud
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Forums
- Support Forum
- Fortigate in ByBass Mode, no access at all
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Fortigate in ByBass Mode, no access at all
Dear all,
I am pretty new to configurate firewalls. We bought a Fortigate 80F which has been initially configured in terms of ISP PPPoE Access.
now if have 2 problems, which i cannot solve by myself:
1. For any reason the device do not forward now traffic from WAN to LAN Ports. (not that dramatic for now)
2. In Addition the Device is in a bypass mode, which do not allows me to connect to the firewall at all. Reset Button do not show any effect, mobile device config via BLE is producing error message. Typing the local IP while being connected to a lan port brings nothing. i assume that is changed the ports into dhcp mode, but once i do a IP Scan in my internal network the firewall is not shown. Ping is sucessfull. console cable not available.
I just want to reset the device. any ideas ?
Thanks for your help in advance.
Labels:
- Labels:
-
FortiGate
3 REPLIES 3
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi @cge1
If you are not able to take the GUI or SSH of the Firewall then in 80F fortigate reset button is available.
You can try to reset FGT from the Pinhole method using the reset button.
Before pressing the reset button check the status LED status.
As soon as the status LED started blinking hit the reset button. The firewall will get reboot post completing the reset. Once FGT comes up make before trying the access make power and status LED up and in solid status.
Please find the datasheet of FGT 80F
https://www.fortinet.com/content/dam/fortinet/assets/data-sheets/fortigate-fortiwifi-80f-series.pdf
Regards
Priyanka
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Keep in mind that you might have to coldrestart your fgt before using the reset button since it gets deactivated within some minutes after bootup.
Alternatively: connect a serial console to the FGT. Then you can watch it booting and see what it does as it gives you cli access...
--
"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
--
"It is a mistake to think you can solve any major problems just with
potatoes." - Douglas Adams
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
It sounds like you're in a tricky situation with your FortiGate 80F. Since the reset button is not working and you're unable to access the device through the LAN ports or BLE, your options are somewhat limited.
Here's what you might try:
### 1. **Double-Check the Reset Process**
- **Power Cycle**: Turn off the device, wait a few moments, and then turn it back on. This can sometimes resolve minor issues.
- **Reset Button**: Ensure that you're following the correct process for using the reset button. Typically, you need to press and hold the reset button for a certain number of seconds (often 10-15 seconds) until the device starts the reset process. The exact process can vary depending on the model, so check the FortiGate 80F documentation to make sure you're doing it correctly.
1) Reboot FortiGate.
- It should be noted that a power-cycle is required and that using the CLI command #execute reboot may not be sufficient to enable the reset button.
2) Wait until the FortiGate OS is running again.
- You will know the FortiGate OS is at the running stage when "STATUS"/"STA" LED flashing it means console prompt the login
3) In the first 30 or 60 seconds press external button which is used to Factory Reset the FortiGate
- The reset button can only be used in the first 30 or 60 seconds depends on the model after a power-cycle.
- If the uptime of the unit more than 30 or 60 seconds, the RESET button is disabled and when pressed the console output will prompt you with below message and NO ACTION IS TAKEN IF PRESS AT THIS STAGE.
- It should be noted that a power-cycle is required and that using the CLI command #execute reboot may not be sufficient to enable the reset button.
2) Wait until the FortiGate OS is running again.
- You will know the FortiGate OS is at the running stage when "STATUS"/"STA" LED flashing it means console prompt the login
3) In the first 30 or 60 seconds press external button which is used to Factory Reset the FortiGate
- The reset button can only be used in the first 30 or 60 seconds depends on the model after a power-cycle.
- If the uptime of the unit more than 30 or 60 seconds, the RESET button is disabled and when pressed the console output will prompt you with below message and NO ACTION IS TAKEN IF PRESS AT THIS STAGE.
### 2. **Try Different Ethernet Ports**
- If you suspect that the LAN ports may be in DHCP mode or otherwise misconfigured, try connecting to different ports on the device. It's possible that one of them will allow you to access the management interface.
### 3. **Check Your Computer's IP Configuration**
- If the FortiGate's LAN ports are in DHCP mode, your computer should be set to obtain an IP address automatically. Check your computer's network settings to make sure this is the case.
- If you believe the FortiGate's LAN ports may be configured with static IPs, you might try manually configuring your computer with an IP address in the expected range. This would require knowing or guessing the correct subnet, which may be challenging if you're unsure of the FortiGate's configuration.
### 4. **Consider Professional Assistance**
- If you continue to have trouble, it may be wise to seek professional assistance. If the device is under warranty or you have a support contract with Fortinet, their technical support team should be able to assist you. An experienced network technician may also be able to help.
### 5. **Console Cable as a Last Resort**
- I understand that a console cable is not available, but if all else fails, obtaining a compatible console cable and using it to connect to the FortiGate's console port may be your best option. This would typically allow you to access the device's command line interface, where you could perform a factory reset or make other configuration changes.
It's unfortunate that you're facing these challenges, especially if you're new to configuring firewalls. Fortinet's devices are powerful and flexible, but they can be complex, particularly if something goes wrong with the initial setup. If you continue to have trouble, don't hesitate to seek professional assistance, as attempting to resolve the issue without the proper knowledge or tools could potentially make the situation worse.
Announcements
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
Related Posts
- Fixing IP overlap using virtual IPs 74 Views
- Transparent VLAN between Fortigate port and... 121 Views
- Fortigate 90G firmware Bugs 166 Views
- How to perform special internet access... 203 Views
- Branch to Azure cloud connectivity via... 123 Views
Labels
-
FortiGate
7,172 -
FortiClient
1,416 -
5.2
801 -
5.4
639 -
FortiManager
622 -
FortiAnalyzer
457 -
6.0
416 -
FortiAP
376 -
FortiSwitch
375 -
5.6
362 -
FortiClient EMS
291 -
FortiMail
281 -
6.2
251 -
FortiAuthenticator v5.5
234 -
5.0
196 -
FortiWeb
175 -
FortiNAC
128 -
6.4
128 -
FortiGuard
115 -
IPsec
108 -
SSL-VPN
105 -
FortiGateCloud
97 -
FortiSIEM
93 -
FortiCloud Products
89 -
FortiToken
77 -
Customer Service
71 -
Wireless Controller
65 -
4.0MR3
64 -
FortiProxy
49 -
SD-WAN
49 -
FortiADC
45 -
FortiEDR
45 -
Fortivoice
44 -
FortiDNS
39 -
FortiExtender
35 -
FortiGate v5.4
35 -
FortiAuthenticator
35 -
FortiSandbox
34 -
Firewall policy
33 -
FortiSwitch v6.4
32 -
VLAN
31 -
High Availability
31 -
DNS
24 -
FortiWAN
24 -
FortiConnect
24 -
ZTNA
23 -
BGP
21 -
FortiConverter
21 -
Certificate
21 -
SAML
19 -
FortiGate v5.2
19 -
LDAP
19 -
FortiPortal
18 -
Routing
18 -
Interface
18 -
FortiSwitch v6.2
17 -
VDOM
17 -
FortiMonitor
15 -
Authentication
15 -
FortiLink
15 -
FortiGate v5.0
14 -
Fortigate Cloud
14 -
FortiDDoS
14 -
Logging
14 -
NAT
13 -
RADIUS
12 -
FortiCASB
12 -
SSL SSH inspection
11 -
Application control
11 -
Web profile
11 -
Traffic shaping
10 -
Virtual IP
10 -
SSO
10 -
FortiRecorder
10 -
SSID
9 -
FortiWeb v5.0
9 -
FortiManager v5.0
9 -
WAN optimization
9 -
4.0MR2
9 -
IP address management - IPAM
8 -
FortiBridge
8 -
SNMP
8 -
FortiGate v4.0 MR3
8 -
OSPF
8 -
RMA Information and Announcements
7 -
FortiSOAR
7 -
FortiAnalyzer v5.0
7 -
FortiAP profile
7 -
4.0
7 -
Admin
7 -
Web application firewall profile
7 -
Static route
6 -
Security profile
6 -
Proxy policy
6 -
Traffic shaping policy
6 -
Automation
6 -
IPS signature
5 -
Packet capture
5 -
DNS Filter
5 -
FortiCache
5 -
FortiManager v4.0
5 -
trunk
5 -
FortiDeceptor
4 -
FortiDirector
4 -
Web rating
4 -
Intrusion prevention
4 -
Port policy
4 -
Antivirus profile
4 -
FortiPAM
4 -
FortiCarrier
4 -
FortiTester
4 -
3.6
4 -
DLP sensor
4 -
FortiScan
4 -
Fabric connector
3 -
NAC policy
3 -
Multicast routing
3 -
System settings
3 -
FortiToken Cloud
3 -
Traffic shaping profile
3 -
Fortinet Engage Partner Program
3 -
DLP Dictionary
3 -
DLP profile
3 -
FortiDB
3 -
DoS policy
3 -
Email filter profile
3 -
FortiInsight
2 -
Netflow
2 -
Users
2 -
Protocol option
2 -
FortiAI
2 -
Application signature
2 -
FortiHypervisor
2 -
VoIP profile
2 -
Internet Service Database
2 -
Explicit proxy
2 -
4.0MR1
1 -
Multicast policy
1 -
Zone
1 -
FortiCWP
1 -
Kerberos
1 -
Subscription Renewal Policy
1 -
FortiNDR
1 -
TACACS
1 -
Replacement messages
1 -
Schedule
1 -
SDN connector
1 -
FortiManager-VM
1 -
Authentication rule and scheme
1 -
Service
1
Top Kudoed Authors
| User | Count |
|---|---|
| 1067 | |
| 889 | |
| 527 | |
| 441 | |
| 152 |
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.