Sounds like the regular administration access ports may need to be changed if they conflict or interference with any of the ports on your VIP/IPSec tunnels.
From the CLI, you can check/set the management port access as follows:
config system global set admin-idle-timeout <integer> set port-http <integer> set port-https <integer> set port-ssh <integer> set port-telnet <integer> end As for the interface admin access setting (mgmt as an example):
config system interface edit "mgmt" set allowaccess ping https ssh http fgfm next end
And from the GUI:
NSE4/FMG-VM64/FortiAnalyzer-VM/6.0 (FWF30E/FW92D/FGT200D/FGT101E/FGT81E)/ FAP220B/221C
User | Count |
---|---|
1906 | |
1141 | |
769 | |
447 | |
277 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.