Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
micahawitt
New Contributor III

3rd party DNS errors

Since i upgrade from 5.2.9 to 5.4.2 on my FGT100D, i am noticing deny's in the log, can someone explain this?

 In the app control security profile,the unknown was set to Allow

 

 

 

8 REPLIES 8
micahawitt
New Contributor III

Second Screenshot

 

gsarica

We are seeing similar entries. Had a support ticket opened and they told us that 'Deny: IP connection error' is a known issue in 5.4.X and is still being reviewed.

tanr
Valued Contributor II

Previous thread on this issue was https://forum.fortinet.com/tm.aspx?m=139287 I think.

 

@gsarica, have you heard if 5.4.2 is supposed to address this?  I didn't see anything about it in the release notes.

gsarica

They didn't say specifically. We had other issues that they did say would be resolved by 5.4.2, this wasn't one of them. We're also waiting a few weeks to deploy 5.4.2 since we see that other issues with passwords are coming up for some people.

MikePruett
Valued Contributor

I am still seeing similar while running 5.4.2

 

I haven't noticed any degradation of services though

Mike Pruett Fortinet GURU | Fortinet Training Videos
emnoc
Esteemed Contributor III

fyi it's not only 5.4.x we have it in 5.2.x also

 

Ken

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
micahawitt
New Contributor III

Ugh, its ramping up this AM for some reason, and this is just my house firewall.

 

 

 

Not sure if this is actually blocking anything or a false positive....

 

ede_pfau
Esteemed Contributor III

That (false positive) was my suspicion also...


Ede

"Kernel panic: Aiee, killing interrupt handler!"
Ede"Kernel panic: Aiee, killing interrupt handler!"
Labels
Top Kudoed Authors