Hello @All,
we have updated this morning our FGT Cluster from 7.2.1 to 7.2.2 and after that there is no more connection to Fortiguard possible.
exec ping to:
service.fortiguard.net
update.fortiguard.net
guard.fortinet.net
are not possible and also no other ping to internet sites like 8.8.8.8 are not possible.
VPN is working, but web proxy not.
On Version 7.2.1 everything was working fine!
How can we solve that?
many thanks
TBC
Hi TBC,
Is DNS working correctly? Are you able to resolve the Domain names?
What is the error you are getting.
Try doing a ping to IP address directly from FGT and see if that works.
Thank you.
Shahan
Hello Stepan,
DNS is not the Problem, the Problem is the new FW because that one change our routing.
Before the update, we had routing over Groups defined under Static Routes "named address".
After update, that routing was changed to 0.0.0.0 instant group named address.
So we had two routes with 0.0.0.0 one with Internet, one with internal.
We have about 20 Groups defined, but only 7 can be seen under named address.
I have to defined static routes with bigger subnet, and now it's working but that one seems to be a bug in new version.
We have opened a ticket today.
Many thanks for helping
TBC
Same situation in here,
Just upgraded to 7.2.2 and all internet connection is blocked with SSL certificate error *.fortinet.com..
Removed all inspection filtering from the rules, but still no luck.
support unable to resolve is now :)
Retards,
Surprised to see an SSL certificate part of FortiGate is expired;
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.