FortiGate Transparent Mode and FortiGuard Update

Author
nael
New Member
  • Total Posts : 1
  • Scores: 0
  • Reward points: 0
  • Joined: 2021/04/18 19:48:32
  • Status: offline
2021/04/18 19:58:53 (permalink)
0

FortiGate Transparent Mode and FortiGuard Update

Hi,
I have installed a FortiGate in Transparent mode, I'm using a reserved ha interface for management.
I need to know how to access to the internet for fortiguard updates using the mgmt interface (port 3 in this case)
 
FGT-1 (ha-mgmt-interfaces) # edit 1

FGT-1 (1) # get
id                  : 1
interface           : port3
dst                 : 0.0.0.0 0.0.0.0
gateway             : 192.168.30.254
gateway6            : ::
 
the ping to outside network like 8.8.8.8 for example does not work.
I don't know how to instruct FW to use the port 3 as egress interface.
 
I don't find documentation for similar setup.
please help!
thanks
 
 
#1

1 Reply Related Threads

    emnoc
    Expert Member
    • Total Posts : 6097
    • Scores: 414
    • Reward points: 0
    • Joined: 2008/03/20 13:30:33
    • Location: AUSTIN TX AREA
    • Status: online
    Re: FortiGate Transparent Mode and FortiGuard Update 2021/04/19 02:24:04 (permalink)
    0
    What did you set up for the manageip in the global settings?
     
    config system settings
        set opmode trans
        set manageip x.x.x.x/24
        set gateway a.b.c.d
        end
     
    That address is what's used for fortiguard updates. Can you ping fortiguard from that address ? have you allowed the require services thru any upstream device 
     
    ( these should be anycast address )
    execute ping service.fortiguard.net
    execute ping update.fortiguard.net
     
    ken Felix
     

    PCNSE 
    NSE 
    StrongSwan  
    #2
    Jump to:
    © 2021 APG vNext Commercial Version 5.5