Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
PCNSE
NSE
StrongSwan
I cannot ping the Fortigate no matter what IP I use.Make sure that " show system interface" has " set allowaccess ping" for administrative interface you' ll be using. By the way, consider using " execute restore image usb" if you have physical access to the box, or " execute restore image tftp" command instead of rebooting if you must use tftp - less restrictive than reboot environment.
Make sure that " show system interface" has " set allowaccess ping" for administrative interface you' ll be using.he' s doing this from an interrupted bootup process, by the screenshot he provided. So that part is not an issue at this point. back to the problem, I never heard of any FGT units using a high # number port for the TFTP firmware upgrade or restoral from the CLI and a interrupted bootup. I would personally used the lower number port 1st and then check my cable. On the byte size, you can validate the sized used via wireshark or even the log. Solarwinds TFTP server should be fine as-is, and I think your problem is cable or cabling connection related. Once you configured the FWF30B with the interface ip_address, try a continous ping from the window host and tehn repeat but with using a different port. Also don' t rule out your cable. IIRC a straight should be fine but you might need a X-over.
PCNSE
NSE
StrongSwan
Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com
For what it' s worth, I was never able to ping the FGT during a TFTP restore.I' m using 60C v4.0 MR3 Patch 3. The interface only becomes enabled after Fortigate TFTP data is entered and retrieval is attempted, via Internal 1. Observe:
FortiGate-60C (14:57-01.26.2011) Ver:04000024 Serial number: FGT60C3G1100???? CPU(00): 525MHz Total RAM: 512MB Initializing boot device... Initializing MAC... nplite#0 Press any key to display configuration menu... ..Attachment is a pcap file (with Window' s chatter traffic filtered out) taken during above sequence on 10.0.0.2 PC. You can see Fortigate' s TFTP request and my (successful) ping from the PC.: Get firmware image from TFTP server. : Format boot device. [ I]: Configuration and information. [ B]: Boot with backup firmware and set as default. : Quit menu and continue to boot.: Display this list of options. Enter G,F,I,B,Q,or H: G Please connect TFTP server to Ethernet port ' Any of port 1,2,3,4,5' . Enter TFTP server address [192.168.1.168]: 10.0.0.2 Enter local address [192.168.1.188]: 10.0.0.1 Enter firmware image file name [image.out]: xx.out MAC: 00:09:0f:f5:cc:e8 Connect to tftp server 10.0.0.2 ... ^C Abort Reading boot image... 1173664 bytes. Initializing firewall... System is started.
The interface only becomes enabled after Fortigate TFTP data is entered and retrieval is attempted, via Internal 1. Observe:That' s my experience also. Once you get to the " Enter local address [ 192.168.1.188]: and after you enter the filename, the interface should come up hot. for the OP, do you have a warranty or support on the FWF30B? i remember mine was strange when doing a upgrade, but it was not as problematic as yours.
PCNSE
NSE
StrongSwan
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1712 | |
1093 | |
752 | |
447 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.