Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
AdilHamid
New Contributor II

Created on ‎02-23-2024 04:15 AM

Fortigate60F , Unable to login Via Web Portal anymore. only CLI working

Hi there , 

we are using Fortinet 60F and it was working all good and I can login via Https , but suddenly its stop working , i cannot access it , I have tried rebooting but no luck , the only way i can access is TELNET and I am not good on CLI , i have check some basic commands , i have tried already killing the Https daemon , and check the ports (http , https) for connectivity but I am still not getting any luck , I have also checked the storage which is all good, I am not sure what the Issue is , could this be a trusted IP issue ? i don't know as i was using the same IP address to access the console before. Any help will be much appreciated :) , Thanks in Advance

Labels:
1019
0 Kudos
1 Solution
AdilHamid
New Contributor II

Created on ‎03-01-2024 04:04 AM

today i got my firewall support renewed , and the issue was the "trusted host" , only one public IP was allowed to access it , and it was the last support company did this in intention , see below the results. I have public their public address as well.

Thanks everyone for your help @saneeshpv_FTNT @AnthonyH @smaruvala @Rajan_kohli 

 

firewall2.jpg

 

View solution in original post

777
0 Kudos
12 REPLIES 12
smaruvala
Staff
Staff
In response to AdilHamid

Created on ‎02-29-2024 04:04 AM

Hi,

 

- First lets confirm the destination MAC in the SYN packet is the MAC address of the interface which you are accessing.  You can try to capture from GUI and download the file and verify the MAC address of the SYN packet.

- Second as @saneeshpv_FTNT mentioned try to take a debug flow output for the communication. commands are already provided before.

 

Regards,

Shiva 

198
0 Kudos
AnthonyH
Staff
Staff

Created on ‎02-29-2024 04:58 AM

Hello AdilHamid,

 

Could you please check if the admin server certificate has been configured:

config sys global

set admin-server-cert Fortinet_Factory

end

 

https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Cannot-access-the-FortiGate-web-admi...

Technical Support Engineer,
Anthony.
196
0 Kudos
AdilHamid
New Contributor II

Created on ‎03-01-2024 04:04 AM

today i got my firewall support renewed , and the issue was the "trusted host" , only one public IP was allowed to access it , and it was the last support company did this in intention , see below the results. I have public their public address as well.

Thanks everyone for your help @saneeshpv_FTNT @AnthonyH @smaruvala @Rajan_kohli 

 

firewall2.jpg

 

778
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.