Using the menu "VPN Location Map" does show me a nice overview of the currently connected VPN connections (IPSEC, SSL VPN).
However, the locations of the fortigate are most of the time somewhere in the Gulf of Guniea (0°S, 0°E). The physical location of all our fortigates is configured in FortiCloud (product details) with the address (street, ZIP, town, etc.). I did not find a way to set the device location in the fortigate GUI, nor via CLI.
I checked with dia "geoip geoip-query <IP>" on each fortigate it's own location and it shows a somewhat accurate location (sometimes off by a lot, based on the ISP).
So, I have several questions:
How does the fortigate determine it's own location used for the VPN location map?
Two examples:
How is the location of VPN endpoints (SSL VPN, IPSEC VPN) determined?
Thanks
Dan
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi Dan,
I'm not entirely sure if this applies to the VPN map as well (I haven't dug into how the VPN map is put together and FortiGates determine their location precisely), but there are settings in FortiGate CLI to specify its longitude and latitude:
#config system global
#set gui-device-latitude <>
#set gui-device-longitude <>
#end
Those settings apply to threat map displays at least (in FortiView/FortiAnalyzer overviews) and I couldn't confirm if they also apply to VPN map, but they might help?
Hi Dan,
I'm not entirely sure if this applies to the VPN map as well (I haven't dug into how the VPN map is put together and FortiGates determine their location precisely), but there are settings in FortiGate CLI to specify its longitude and latitude:
#config system global
#set gui-device-latitude <>
#set gui-device-longitude <>
#end
Those settings apply to threat map displays at least (in FortiView/FortiAnalyzer overviews) and I couldn't confirm if they also apply to VPN map, but they might help?
Thanks @Debbie_FTNT ,
That workes like a charm.
VPN Map is now accurate.
Many thanks
Daniel
We can also refer to this article link that discusses the same thing:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Change-geographical-location-of-FortiGate/...
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1732 | |
1105 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.