Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
alaaelrayes
New Contributor III

Created on ‎10-18-2023 07:13 AM

FortiClient EMS DNS Dynamic update issue

Hi Team,

I have encountering an issue with devices while updating their records.

This issue occurs after installing FortiClient ZTNA.

I monitored the traffic by Wireshark and I observed that the connection refused as shown:

DNS.PNG

Our DNZ zone security configuration is to allow secure connection only
DNS zone config.JPG

But after changing it to unsecure, machines can update their records.

This issue without connecting to VPN just the FortiClient installed and connected to EMS server.

FortiClient 

Appreciate your support.

Thanks,

Alaa Elrayes

Labels:
1541
0 Kudos
1 Solution
alaaelrayes
New Contributor III

Created on ‎10-23-2023 02:11 AM

Hello Team,

 

This issue marked as a bug ID 0964456 and will be fixed in the next releases.

 

Thanks.

View solution in original post

1493
9 REPLIES 9
Jean-Philippe_P
Moderator
Moderator

Created on ‎10-23-2023 02:06 AM

Hello alaaelrayes, 

 

Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible. 

 

Thanks, 

Jean-Philippe - Fortinet Community Team
1497
0 Kudos
alaaelrayes
New Contributor III
In response to Jean-Philippe_P

Created on ‎12-07-2023 03:45 AM

My version was 7.2.1 and upgrading to 7.2.2 didn't fix that issue and no fix or workaround released tell now.

You can try an older EMS version but this is not acceptable in my environment.

 

Thanks,

1250
0 Kudos
alaaelrayes
New Contributor III

Created on ‎10-23-2023 02:11 AM

Hello Team,

 

This issue marked as a bug ID 0964456 and will be fixed in the next releases.

 

Thanks.

1494
GordonL
New Contributor
In response to alaaelrayes

Created on ‎12-07-2023 03:32 AM

Hi,

which FortiClient version is affected or are you using?
I can't find the BUG ID in the know Issues for Version 7.2.x as we are facing the same Problem with a customer.

Is there any known workaround as downgrading to a specific Version?

1256
0 Kudos
DGPB
New Contributor
In response to alaaelrayes

Created on ‎01-05-2024 02:12 AM

Hello,

 

Do you have an ETA for the fix?

 

Thank you.

920
0 Kudos
DGPB
New Contributor
In response to alaaelrayes

Created on ‎03-05-2024 06:17 AM

Hello,

 

In theory this bug was fixed on v7.2.4 released yesterday, but I still reproduce it. Did you test with 7.2.4?

 

Best regards,

453
0 Kudos
alaaelrayes
New Contributor III
In response to DGPB

Created on ‎03-05-2024 06:59 AM

Hello,

 

I don't find this bug ID 964456 in 7.2.4. However, since I upgraded from EMS 7.2.2 to 7.2.3 the issue seems to be solved.

 

Thanks,

446
0 Kudos
DGPB
New Contributor
In response to alaaelrayes

Created on ‎03-05-2024 07:02 AM

Even with ZTNA installed?

 

Anyway, you can see it in the resolved issues section of the changelog:

https://docs.fortinet.com/document/forticlient/7.2.4/windows-release-notes/022791/resolved-issues

 

964456 FortiClient does not allow Windows DNS only secure dynamic updates.

443
0 Kudos
Jean-Philippe_P
Moderator
Moderator

Created on ‎10-23-2023 02:17 AM

Hello again alaaelayes,

 

Thanks for the heads up!

 

Regards,

Jean-Philippe - Fortinet Community Team
1490
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.