Hello guys, I'm actually working on administrating our Fortigates and
monitoring them using LibreNMS. My problem is with one FortiGate that
have an IPv4 Policy with the following configuration : If I change the
destination from the "Virtual IP Group ...
Hello guys,I have a bad time trying to figure out a Fortinet FAP-U421EV
issue.I have 03 old FAP-U421EV that I want to reset to default factory
configuration, but the problem is that I don't have the old credentials
(it was configured by another perso...
emnoc wrote:We would need to see the 2 vips to better understand but the
configuration you have in place seem bad design. The IPv4 policy should
have nothing todo with the monitoring of SNMPagent on the FortiGate. Did
you run any diag debug flow ? Ke...
emnoc wrote:You don't need a fwpolicy to manage a firewall via SNMP. do
a "show interface wan1 | grep allowaccess" Yes it is enabled on the
firewall Interface, I can see the following line : set allowaccess ping
https ssh snmp httpAs I said before, t...
emnoc wrote:So your managing the few that has the DNAT VIP on it? You do
not need a policy for that & if that is what your trying todo. The FW is
proprietary to our client, the policy was already in place, to describe
what I found (look the attached ...
SJFriedl wrote:Djamil wrote:I updated the post with the attached image,
thank you Hmm. If you're trying to poll the Fortigate itself, I'm not
sure what the purpose of the VIP is - that sounds like it's going to
terminate into some resource on the loc...
emnoc wrote:Do you have a policy allowing SNMP for the src to dst(s)?
Since when you change it to all it work it tells me your policy is bad.
did you do a trace e.g cli cmds diag debug reset diag debug enable diag
debug flow filter port 161diag debug...
