Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Olimmu
New Contributor

Created on ‎01-30-2024 02:00 AM Edited on ‎02-26-2024 03:24 AM By Community Manager

Monitoring FortiGuard status

We have had a few issues with connections to FortiGuard. Recently we had to revert to default HTTPS/443 communication, after the UDP/53 we used as a workaround for previous issues became broken for unknown reason. 

 

We have now activated the 'Allow websites when a rating error occurs' option, and would like to add the FortiGuard status of all of our FGT's in our monitoring tool. I can't seem to find any related OID though, does somebody have suggestions how to tackle this?

 

(ticket ongoing concerning the issue with TAC, but I'm not very confident in a permanent solution)

Labels:
1211
0 Kudos
1 Solution
AEK
SuperUser
SuperUser

Created on ‎01-30-2024 04:28 AM Edited on ‎01-30-2024 04:29 AM

@Olimmu , there are two sys events related to web filter that may have relationships with your need. Didn't try them but I think you should try explore them with automation stitch or with syslog.

12558 - LOG_ID_URL_FILTER_RATING_ERR
12800 - LOG_ID_WEB_FTGD_ERR

AEK

View solution in original post

AEK
1183
0 Kudos
4 REPLIES 4
jrue031
New Contributor

Created on ‎01-30-2024 03:32 AM

We are transitioning all our customers from Symantec endpoint to Kaspersky endpoint (centrally managed by us) and I'm struggling with connecting the network agents... with the Watchguard is very easy, traffic monitor -> filter by test machine IP, send an heartbeat with the Kaspersky utility, wait for the red entries, make a list of ports and protocols. Make the necessary outgoing exceptions and everything works!

https://omegle.onl/ vshare
https://omegle.onl/ vshare
1192
0 Kudos
AEK
SuperUser
SuperUser

Created on ‎01-30-2024 04:28 AM Edited on ‎01-30-2024 04:29 AM

@Olimmu , there are two sys events related to web filter that may have relationships with your need. Didn't try them but I think you should try explore them with automation stitch or with syslog.

12558 - LOG_ID_URL_FILTER_RATING_ERR
12800 - LOG_ID_WEB_FTGD_ERR

AEK
AEK
1184
0 Kudos
hbac
Staff
Staff

Created on ‎01-30-2024 06:20 AM

Hi @Olimmu.,

 

You can use automation stitch to trigger an email alert when the connection to FortiGuard is down. Please refer to https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-configure-an-automation-stitch-to-g...

 

Regards, 

1165
AEK
SuperUser
SuperUser

Created on ‎01-30-2024 09:56 AM

There are two other sys events that may help.

32231 - LOG_ID_RESTORE_FGD_SVR_FAIL

32204 - LOG_ID_RESTORE_FGD_SVR

 

I didn't test them, just double check before use.

AEK
AEK
1147
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.