Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
nbctcp
New Contributor III

Created on ‎01-13-2023 06:36 PM Edited on ‎01-13-2023 11:41 PM

Telegram notification

SW INFO:
-pnetlab 5.2.7
-fortigate qcow eval license
 

 

I am following above links to set notification in telegram if admin login

I can send manually from linux to telegram

# curl --request 'POST'https://api.telegram.org/bot5962153123:AAHf7wKYu7dhheSiLc580pC4G-LUmEvOSLA/sendMessage -H 'Content-Type:application/json' -d '{"chat_id":"-759260123","text":"coba2"}' 
 
CONFIG:
config system automation-action
edit "telegram"
set action-type webhook
set protocol https
set uri "api.telegram.org/bot5962153123:AAHf7wKYu7dhheSiLc580pC4G-LUmEvOSLA/sendMessage"
set http-body "{\"chat_id\":\"-759260123\",\"text\":\"%%msg%%\"}"
set port 443
set headers "Content-Type:application/json"
set verify-host-cert enable
next
end
 
STATUS:
-I can see System Event shown "Automation stitch triggered" but nothing happen in my telegram
 
?
1. can I test using fortigate 7.2 eval license in pnetlab
 
tq
 
UPDATE1:
-with real 80D I can get notif in telegram
that mean I can't test webhook in vm eval license

http://goo.gl/lhQjmU
http://nbctcp.wordpress.com

 

http://goo.gl/lhQjmUhttp://nbctcp.wordpress.com
Labels:
4350
0 Kudos
1 Solution
pminarik
Staff
Staff

Created on ‎01-16-2023 01:49 AM

Just an educated guess: Make a packet capture of traffic going to the api.telegram.org address, and then check the pcap. Pay attention to the TLS handshake first.

The trial VMs are known to have severely restricted crypto algorithms, to the point of being unfit for modern use. While an exception has been made for incoming admin access and FortiManager communication (ref ), I would assume that outgoing stitches are still bound by these restrictions. The pcap should allow you to verify this - if the TLS handshake is failing due to no crypto match, that's it.

[ corrections always welcome ]

View solution in original post

4313
0 Kudos
2 REPLIES 2
pminarik
Staff
Staff

Created on ‎01-16-2023 01:49 AM

Just an educated guess: Make a packet capture of traffic going to the api.telegram.org address, and then check the pcap. Pay attention to the TLS handshake first.

The trial VMs are known to have severely restricted crypto algorithms, to the point of being unfit for modern use. While an exception has been made for incoming admin access and FortiManager communication (ref ), I would assume that outgoing stitches are still bound by these restrictions. The pcap should allow you to verify this - if the TLS handshake is failing due to no crypto match, that's it.

[ corrections always welcome ]
4314
0 Kudos
Caroburgh
New Contributor

Created on ‎07-06-2023 02:23 AM Edited on ‎07-10-2023 02:50 AM

It seems like you're working on setting up Telegram notifications for admin login and running into some issues. Testing webhook functionality with a FortiGate eval license in a virtual environment might not yield the expected results, as mentioned in your update. If you're looking for reliable Telegram accounts, you can Buy Telegram Accounts online. You can find more information about buying Telegram accounts on their website. It's great to hear that you were able to receive notifications with a real 80D FortiGate device. That indicates the webhook functionality is working as expected.

3475
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.