FortClient signature updates from FortiManager
I need some help with the following setup.
I installed a FortiManger as a FDS server for FortiClients and I set the following in the CLI:
config system global
set adom-mode advanced
set adom-status enable
config system interface
set ip 192.168.1.90 255.255.255.0
set allowaccess ping https ssh
set serviceaccess fgtupdates fclupdates webfilter-antispam
config fmupdate fct-services
set port 8888
When I set a FC profile in the EMS to use the IP 192.168.1.90 for signature updates and port 8888 and failover port 8899 the FortiClient shows: Could not connect to the update server
Sniffing the packet on the FortiManager I can see that the FortiClient tries to reach the manager on port 80 (why?) after that on port 8899. After the SYN packet a RESET packet is sent from the FortiManager.
When I enable HTTP access on the interface and set the port 80 or 8899 I can see communication to URL /fdsupdate and some response in HTTP: FCPRFCP Response
The FortiClient ends with message: Online update failed
Where is the problem?
How to set up FDS on FortiManager correctly?
FortiManager, EMS and FortiClient are on 6.0.4 version.
post edited by AtiT - 2019/04/06 14:38:06