Web Filtering Unreachable

Author
KC Cheong
New Member
  • Total Posts : 8
  • Scores: 0
  • Reward points: 0
  • Joined: 2008/12/27 02:47:29
  • Status: offline
2008/12/28 18:04:15 (permalink)
0

Web Filtering Unreachable

On my Fortigate 50B, under status for Web Filtering it was showing Unreachable.
For both IPS and AntiVirus it show the Licensed and Expires dates.
Any causes for Web Filtering show as Unreachable?
btw the 50B Operation Mode was set as Transparent.
#1

10 Replies Related Threads

    abelio
    Expert Member
    • Total Posts : 3630
    • Scores: 55
    • Reward points: 0
    • Joined: 2005/03/31 13:28:59
    • Location: Buenos Aires, Argentina
    • Status: offline
    RE: Web Filtering Unreachable 2008/12/29 06:29:30 (permalink)
    0
    Hello and welcome,

    many possible causes;
    first and more obvious: browse menu
    System->Maintenance->FortiGuard Center -> Web Filtering and AntiSpam Options
    Is WF enabled there?

    regards
    --
    Abel
    #2
    KC Cheong
    New Member
    • Total Posts : 8
    • Scores: 0
    • Reward points: 0
    • Joined: 2008/12/27 02:47:29
    • Status: offline
    RE: Web Filtering Unreachable 2008/12/29 17:48:46 (permalink)
    0
    alright found out that if set to use port 8888 it work.
    The Default port 53 will give Unreachable problem.
    #3
    KC Cheong
    New Member
    • Total Posts : 8
    • Scores: 0
    • Reward points: 0
    • Joined: 2008/12/27 02:47:29
    • Status: offline
    RE: Web Filtering Unreachable 2008/12/30 18:14:16 (permalink)
    0
    Today I got these Web Filtering & AntiSpam Unreachable again !!!
    When using the " Test Availability" on either port 8888 or 53, it always
    show " DNS Error. Please check the DNS setting of the Firewall. I am
    pretty sure the DNS settings are correct - How come so unstable?
    btw already using the latest firmware 3.00-b0733(MR7 Patch 2)...
    #4
    laf
    Platinum Member
    • Total Posts : 851
    • Scores: 0
    • Reward points: 0
    • Joined: 2008/05/23 02:41:36
    • Location: Bucharest - Romania
    • Status: offline
    RE: Web Filtering Unreachable 2008/12/31 15:33:55 (permalink)
    0
    Post your dns settings:
    show system dns

    The most expensive and scarce resource for man is time, paradoxically, it' s infinite.
    #5
    abelio
    Expert Member
    • Total Posts : 3630
    • Scores: 55
    • Reward points: 0
    • Joined: 2005/03/31 13:28:59
    • Location: Buenos Aires, Argentina
    • Status: offline
    RE: Web Filtering Unreachable 2009/01/01 07:41:06 (permalink)
    0


    . I am
    pretty sure the DNS settings are correct - How come so unstable?
    btw already using the latest firmware 3.00-b0733(MR7 Patch 2)...


    Maybe the issue originates in another place.
    Check carfefully this articles in your network and against your Isp:

    http://kc.forticare.com/default.asp?id=1742
    and
    http://kc.forticare.com/default.asp?id=1839

    regards

    regards
    --
    Abel
    #6
    barak
    New Member
    • Total Posts : 13
    • Scores: 3
    • Reward points: 0
    • Joined: 2014/10/20 10:57:00
    • Status: online
    RE: Web Filtering Unreachable 2011/01/12 08:57:36 (permalink)
    0
    the solutions is to not use the option override internal DNS from the external interface (for example wan1).
    #7
    Austin.M
    Bronze Member
    • Total Posts : 55
    • Scores: 1
    • Reward points: 0
    • Joined: 2010/08/16 21:54:37
    • Status: offline
    RE: Web Filtering Unreachable 2011/03/05 01:51:26 (permalink)
    0
    Hi ,
    There is an article in KB which suggests to use a higher range of ports to do the fortiguard updates as some ISPS block lower range source ports
    #8
    Phuoc Ngo
    Gold Member
    • Total Posts : 154
    • Scores: 2
    • Reward points: 0
    • Joined: 2008/08/18 16:54:00
    • Status: offline
    RE: Web Filtering Unreachable 2012/03/19 10:32:57 (permalink)
    0
    We experience this same issue and the root cause was that we have the IPSec policy with the destination set to ALL. This in turn route all Fortigate traffic to the IPSec tunnel.

    #9
    Fullmoon
    Platinum Member
    • Total Posts : 845
    • Scores: 13
    • Reward points: 0
    • Joined: 2010/08/02 18:02:10
    • Status: offline
    Re: Web Filtering Unreachable 2015/01/04 17:32:29 (permalink)
    0
    KC Cheong
    On my Fortigate 50B, under status for Web Filtering it was showing Unreachable.
    For both IPS and AntiVirus it show the Licensed and Expires dates.
    Any causes for Web Filtering show as Unreachable?
    btw the 50B Operation Mode was set as Transparent.



    this issue occurred if you dont apply web filter profile in any policies.

    Fortigate Newbie
    #10
    josh
    Bronze Member
    • Total Posts : 21
    • Scores: 2
    • Reward points: 0
    • Joined: 2015/09/01 18:57:13
    • Location: Auckland, New Zealand
    • Status: offline
    Re: RE: Web Filtering Unreachable 2017/10/31 17:16:27 (permalink)
    0
    Phuoc Ngo
    We experience this same issue and the root cause was that we have the IPSec policy with the destination set to ALL. This in turn route all Fortigate traffic to the IPSec tunnel.



    I've been experiencing the same issue and can confirm this was the case. Source and destination on the VPN P2 config was set to 0.0.0.0/0. Regardless of setting source-IP on logging, etc. it would tunnel data over the IPSec interface "from the box". I find this odd, but I get it.
     
    Resolution is to not use any source/destination in IPSec P2 config. I'm running FortiOS 5.6.2 on one end and 5.4.1 on the other.
    #11
    Jump to:
    © 2019 APG vNext Commercial Version 5.5