Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
TBC
Contributor

Update to 7.2.2 no connection to Fortiguard

Hello @All,

we have updated this morning our FGT Cluster from 7.2.1 to 7.2.2 and after that there is no more connection to Fortiguard possible.

exec ping to:

service.fortiguard.net
update.fortiguard.net
guard.fortinet.net

are not possible and also no other ping to internet sites like 8.8.8.8 are not possible.

VPN is working, but web proxy not.

 

On Version 7.2.1 everything was working fine!

How can we solve that?

 

many thanks

TBC

4 REPLIES 4
sagha
Staff
Staff

Hi TBC, 

 

Is DNS working correctly? Are you able to resolve the Domain names? 

What is the error you are getting. 

 

Try doing a ping to IP address directly from FGT and see if that works. 


Thank you. 

Shahan

TBC

Hello Stepan,

 

DNS is not the Problem, the Problem is the new FW because that one change our routing.

Before the update, we had routing over Groups defined under Static Routes "named address".

After update, that routing was changed to 0.0.0.0 instant group named address.

So we had two routes with 0.0.0.0 one with Internet, one with internal.

We have about 20 Groups defined, but only 7 can be seen under named address.

I have to defined static routes with bigger subnet, and now it's working but that one seems to be a bug in new version.

We have opened a ticket today.

 

Many thanks for helping

TBC

Hussain1
New Contributor II

Same situation in here, 

Just upgraded to 7.2.2 and all internet connection is blocked with SSL certificate error *.fortinet.com.. 

 

Removed all inspection filtering from the rules, but still no luck. 

 

support unable to resolve is now :)

 

Retards, 

 

Hussain1
New Contributor II

Hussain1_0-1665946571002.png

Surprised to see an SSL certificate part of FortiGate is expired; 

 

Labels
Top Kudoed Authors