Buenas tardes, de repente estoy teniendo muchos problemas con el forti, grupos que funcionaban no navegan, tengo que sacarles todos los bloqueos, crear nuevos grupos y volver a configurar de a poco, me podrian decir como saber que esta pasando? Tengo un forti 60F
Muchas gracias
Problemas con el forti
Re: Problemas con el forti
Hola,
Lamentablemente es muy vaga la información que entregas y podrían ser mil razones.
- ¿Revisaste logs?
- ¿Estás alcanzando correctamente los servicios de FortiCloud? ([Debes identificarte para poder ver enlaces.])
Lamentablemente es muy vaga la información que entregas y podrían ser mil razones.
- ¿Revisaste logs?
- ¿Estás alcanzando correctamente los servicios de FortiCloud? ([Debes identificarte para poder ver enlaces.])
Saludos!
_____________________________________________________________
Grupo de Telegram referente a FortiGate --> https://t.me/FortiGate_es
_____________________________________________________________
Grupo de Telegram referente a FortiGate --> https://t.me/FortiGate_es
Re: Problemas con el forti
Gracias por responder: Funcionaba normal y ahora tengo que sacar PC's de los grupos porque directamente les bloquea todo.
No se que otra informacion te puede hacer falta.
HAce unas horas no funcionaba el CLI, ahora funciona.
Voy respondiendo de acuerdo a las pruebas del documento que me pasaste:
exec ping service.fortiguard.net
PING guard.fortinet.net (208.184.237.61): 56 data bytes
64 bytes from 208.184.237.61: icmp_seq=0 ttl=51 time=213.5 ms
64 bytes from 208.184.237.61: icmp_seq=1 ttl=51 time=213.5 ms
64 bytes from 208.184.237.61: icmp_seq=2 ttl=51 time=213.3 ms
64 bytes from 208.184.237.61: icmp_seq=3 ttl=51 time=213.4 ms
64 bytes from 208.184.237.61: icmp_seq=4 ttl=51 time=213.4 ms
--- guard.fortinet.net ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max = 213.3/213.4/213.5 ms
exec ping update.fortiguard.net
PING fds1.fortinet.com (208.184.237.66): 56 data bytes
64 bytes from 208.184.237.66: icmp_seq=0 ttl=51 time=214.8 ms
64 bytes from 208.184.237.66: icmp_seq=1 ttl=51 time=214.6 ms
64 bytes from 208.184.237.66: icmp_seq=2 ttl=51 time=214.6 ms
64 bytes from 208.184.237.66: icmp_seq=3 ttl=51 time=214.6 ms
64 bytes from 208.184.237.66: icmp_seq=4 ttl=51 time=214.7 ms
--- fds1.fortinet.com ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max = 214.6/214.6/214.8 ms
exec ping guard.fortinet.net
PING guard.fortinet.net (12.34.97.71): 56 data bytes
64 bytes from 12.34.97.71: icmp_seq=0 ttl=51 time=189.2 ms
64 bytes from 12.34.97.71: icmp_seq=1 ttl=51 time=189.0 ms
64 bytes from 12.34.97.71: icmp_seq=2 ttl=51 time=189.1 ms
64 bytes from 12.34.97.71: icmp_seq=3 ttl=51 time=189.1 ms
64 bytes from 12.34.97.71: icmp_seq=4 ttl=51 time=191.6 ms
--- guard.fortinet.net ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max = 189.0/189.6/191.6 ms
diagnose debug rating
Locale : english
Service : Web-filter
Status : Enable
License : Contract
Service : Antispam
Status : Enable
License : Contract
Service : Virus Outbreak Prevention
Status : Enable
License : Contract
Num. of servers : 2
Protocol : https
Port : 443
Anycast : Enable
Default servers : Included
-=- Server List (Mon Oct 2 19:17:42 2023) -=-
IP Weight RTT Flags TZ FortiGuard-requests Curr Lost Total Lost Updated Time
173.243.140.16 0 169 DI 0 1189966 0 959 Mon Oct 2 19:16:19 2023
2620:101:9000:140:173:243:140:16 0 0 D F 0 12921 12921 12921
Tambien hice un diag deb crashlog read y tengo esto de las ultimas semanas
1097: 2023-09-14 18:32:51 Interface a is brought down. process_id=3099, process_name="httpsd"
1098: 2023-09-14 18:32:51 Interface b is brought down. process_id=3099, process_name="httpsd"
1099: 2023-09-14 18:32:51 Interface dmz is brought down. process_id=3099, process_name="httpsd"
1100: 2023-09-14 18:32:51 Interface internal1 is brought down. process_id=3099, process_name="httpsd"
1101: 2023-09-14 18:32:51 Interface internal2 is brought down. process_id=3099, process_name="httpsd"
1102: 2023-09-14 18:32:52 Interface internal3 is brought down. process_id=3099, process_name="httpsd"
1103: 2023-09-14 18:32:52 Interface internal4 is brought down. process_id=3099, process_name="httpsd"
1104: 2023-09-14 18:32:52 Interface internal5 is brought down. process_id=3099, process_name="httpsd"
1105: 2023-09-14 18:32:52 Interface wan1 is brought down. process_id=3099, process_name="httpsd"
1106: 2023-09-14 18:32:52 Interface wan2 is brought down. process_id=3099, process_name="httpsd"
1107: 2023-09-14 18:34:41 the killed daemon is /bin/sflowd: status=0x0
1108: 2023-09-20 01:14:21 <00205> scanunit=manager str="Failed to load anti-virus database."
1109: 2023-09-20 01:14:21 scanunit=manager pid=205 cause='signal' str="AV database reload requested 1
1110: 2023-09-20 01:14:21 times by updated (pid 208) failed"
1111: 2023-09-26 20:43:47 the killed daemon is /bin/dhcpd: status=0x0
1112: 2023-09-26 20:45:57 the killed daemon is /bin/dhcpd: status=0x0
1113: 2023-09-27 10:45:59 <00223> firmware FortiGate-60F v7.0.12,build0523b0523,230606 (GA.M) (Release)
1114: 2023-09-27 10:45:59 <00223> application wad
1115: 2023-09-27 10:45:59 <00223> *** signal 11 (Segmentation fault) received ***
1116: 2023-09-27 10:45:59 <00223> AVDB 91.07330(09/26/0023 19:26)
1117: 2023-09-27 10:45:59 <00223> ETDB 91.07330(09/26/0023 19:25)
1118: 2023-09-27 10:45:59 <00223> AVSO 04000000AVEN00601062882305151731
1119: 2023-09-27 10:45:59 <00223> Register dump:
1120: 2023-09-27 10:45:59 <00223> R0: 7364612d746e6574 R1: 00000000042482d0 R2: 0000000000000000
1121: 2023-09-27 10:45:59 <00223> R3: 0000000000000050 R4: 0000000000000000 R5: 061a20d1e924a590
1122: 2023-09-27 10:45:59 <00223> R6: 00000000067ba8d8 R7: 0400000100002600 XR: 0000000000000004
1123: 2023-09-27 10:45:59 <00223> R9: 0000000000000003 R10: 0000000000000007 R11: 0000000000000006
1124: 2023-09-27 10:45:59 <00223> R12: 0000000000000000 R13: dc0c684b54651e59 R14: 0000000000000000
1125: 2023-09-27 10:45:59 <00223> R15: 0000000000000000 IP0: 000000000424d1a8 IP1: 0000007f9b34f0c0
1126: 2023-09-27 10:45:59 <00223> PR: 0000007fe71d95e0 R19: 0000007f9849c048 R20: 7364612d746e6574
1127: 2023-09-27 10:45:59 <00223> R21: 0000000004514000 R22: 0000000004514000 R23: 0000007f971e2408
1128: 2023-09-27 10:45:59 <00223> R24: 000000000000239c R25: 0000000000000000 R26: 0000002200000003
1129: 2023-09-27 10:45:59 <00223> R27: 0000007f93aa7c38 R28: 0000000000000000 FP: 0000007fe71da300
1130: 2023-09-27 10:45:59 <00223> fault_address: 0064612d746e6584 sp: 0000007fe71da300
1131: 2023-09-27 10:45:59 <00223> pc: 0000000001b5035c lr: 0000000001b50520
1132: 2023-09-27 10:45:59 pstate: 60000000 (nZCv daif -PAN -UAO)
1133: 2023-09-27 10:45:59 <00223> Backtrace:
1134: 2023-09-27 10:45:59 <00223> [0x01b5035c] => /bin/wad
1135: 2023-09-27 10:45:59 <00223> [0x01b50520] => /bin/wad
1136: 2023-09-27 10:45:59 <00223> [0x01b510e4] => /bin/wad
1137: 2023-09-27 10:45:59 <00223> [0x0184f260] => /bin/wad
1138: 2023-09-27 10:45:59 <00223> [0x0184ea1c] => /bin/wad
1139: 2023-09-27 10:45:59 <00223> [0x019b59fc] => /bin/wad
1140: 2023-09-27 10:45:59 <00223> [0x019b3e4c] => /bin/wad
1141: 2023-09-27 10:45:59 <00223> [0x0192d9f8] => /bin/wad
1142: 2023-09-27 10:45:59 <00223> [0x0192c050] => /bin/wad
1143: 2023-09-27 10:45:59 <00223> [0x0192e3a8] => /bin/wad
1144: 2023-09-27 10:45:59 <00223> [0x01aada3c] => /bin/wad
1145: 2023-09-27 10:45:59 <00223> [0x02551ddc] => /bin/wad
1146: 2023-09-27 10:45:59 <00223> [0x02553890] => /bin/wad
1147: 2023-09-27 10:45:59 <00223> [0x02534f7c] => /bin/wad
1148: 2023-09-27 10:45:59 <00223> [0x01aab2ac] => /bin/wad
1149: 2023-09-27 10:45:59 <00223> [0x01aabf24] => /bin/wad
1150: 2023-09-27 10:45:59 <00223> [0x01adfbac] => /bin/wad
1151: 2023-09-27 10:45:59 <00223> [0x01a575ac] => /bin/wad
1152: 2023-09-27 10:45:59 <00223> [0x01a578bc] => /bin/wad
1153: 2023-09-27 10:45:59 <00223> [0x01af6a6c] => /bin/wad
1154: 2023-09-27 10:45:59 <00223> [0x0044a9e0] => /bin/wad
1155: 2023-09-27 10:45:59 <00223> [0x7f9b2f0f24] => /usr/lib/aarch64-linux-gnu/libc.so.6
1156: 2023-09-27 10:45:59 (__libc_start_main+0x000000e4) liboffset 00020f24
1157: 2023-09-27 10:45:59 <00223> [0x00446390] => /bin/wad
1158: 2023-09-27 10:45:59 <00223> [0x00446390] => /bin/wad
1159: 2023-09-27 10:45:59 <00223> fortidev 6.0.1.0005
1160: 2023-09-27 10:45:59 <00223> process=wad type=2 idx=0 av-scanning=no total=1917 free=404
1161: 2023-09-27 10:45:59 mmu=34231776 mu=6678907 m=118653461 f=118597090 r=0
1162: 2023-09-27 10:45:59 <00223> cur_bank=(nil) curl_tl=0x6790a70 curl_tm=0x7f98d2f048
1163: 2023-09-27 10:45:59 <00223> (session info) vf=0 session-id=0 app_type=0 dyn_type=0 non_tp=0,
1164: 2023-09-27 10:45:59 pol_id=0, h2=0, src/port=, dst/port=173.243.140.18:443, usr/grp=(/)
1165: 2023-09-27 10:45:59 [AV Engine <223>] AV Engine version: 6.4.288
1166: 2023-09-27 10:45:59 [AV Engine <223>] Last file info:
1167: 2023-09-27 10:45:59 [AV Engine <223>] filename: 9270264185961396331, filesize: 3072, filebuffer:
1168: 2023-09-27 10:45:59 0x7fe71d99d8
1169: 2023-09-27 10:45:59 [AV Engine <223>] Native script imagebase: 0x7f99847000
1170: 2023-09-27 10:45:59 [AV Engine <223>] Native script imagesize: 0x9000
1171: 2023-09-27 10:45:59 [AV Engine <223>] AV Engine imagebase: 0x7f99021000
1172: 2023-09-27 11:45:59 wad crashed 1 times. The latest crash was at 2023-09-27 10:45:59.
1173: 2023-09-27 16:30:39 the killed daemon is /bin/dhcpd: status=0x0
1174: 2023-09-28 08:38:01 the killed daemon is /bin/dhcpd: status=0x0
1175: 2023-09-28 08:42:02 the killed daemon is /bin/dhcpd: status=0x0
1176: 2023-09-28 14:39:21 the killed daemon is /bin/dhcpd: status=0x0
Crash log interval is 3600 seconds
Max crash log line number: 16384
Que mas me puedo fijar?
Muchas gracias
No se que otra informacion te puede hacer falta.
HAce unas horas no funcionaba el CLI, ahora funciona.
Voy respondiendo de acuerdo a las pruebas del documento que me pasaste:
exec ping service.fortiguard.net
PING guard.fortinet.net (208.184.237.61): 56 data bytes
64 bytes from 208.184.237.61: icmp_seq=0 ttl=51 time=213.5 ms
64 bytes from 208.184.237.61: icmp_seq=1 ttl=51 time=213.5 ms
64 bytes from 208.184.237.61: icmp_seq=2 ttl=51 time=213.3 ms
64 bytes from 208.184.237.61: icmp_seq=3 ttl=51 time=213.4 ms
64 bytes from 208.184.237.61: icmp_seq=4 ttl=51 time=213.4 ms
--- guard.fortinet.net ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max = 213.3/213.4/213.5 ms
exec ping update.fortiguard.net
PING fds1.fortinet.com (208.184.237.66): 56 data bytes
64 bytes from 208.184.237.66: icmp_seq=0 ttl=51 time=214.8 ms
64 bytes from 208.184.237.66: icmp_seq=1 ttl=51 time=214.6 ms
64 bytes from 208.184.237.66: icmp_seq=2 ttl=51 time=214.6 ms
64 bytes from 208.184.237.66: icmp_seq=3 ttl=51 time=214.6 ms
64 bytes from 208.184.237.66: icmp_seq=4 ttl=51 time=214.7 ms
--- fds1.fortinet.com ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max = 214.6/214.6/214.8 ms
exec ping guard.fortinet.net
PING guard.fortinet.net (12.34.97.71): 56 data bytes
64 bytes from 12.34.97.71: icmp_seq=0 ttl=51 time=189.2 ms
64 bytes from 12.34.97.71: icmp_seq=1 ttl=51 time=189.0 ms
64 bytes from 12.34.97.71: icmp_seq=2 ttl=51 time=189.1 ms
64 bytes from 12.34.97.71: icmp_seq=3 ttl=51 time=189.1 ms
64 bytes from 12.34.97.71: icmp_seq=4 ttl=51 time=191.6 ms
--- guard.fortinet.net ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max = 189.0/189.6/191.6 ms
diagnose debug rating
Locale : english
Service : Web-filter
Status : Enable
License : Contract
Service : Antispam
Status : Enable
License : Contract
Service : Virus Outbreak Prevention
Status : Enable
License : Contract
Num. of servers : 2
Protocol : https
Port : 443
Anycast : Enable
Default servers : Included
-=- Server List (Mon Oct 2 19:17:42 2023) -=-
IP Weight RTT Flags TZ FortiGuard-requests Curr Lost Total Lost Updated Time
173.243.140.16 0 169 DI 0 1189966 0 959 Mon Oct 2 19:16:19 2023
2620:101:9000:140:173:243:140:16 0 0 D F 0 12921 12921 12921
Tambien hice un diag deb crashlog read y tengo esto de las ultimas semanas
1097: 2023-09-14 18:32:51 Interface a is brought down. process_id=3099, process_name="httpsd"
1098: 2023-09-14 18:32:51 Interface b is brought down. process_id=3099, process_name="httpsd"
1099: 2023-09-14 18:32:51 Interface dmz is brought down. process_id=3099, process_name="httpsd"
1100: 2023-09-14 18:32:51 Interface internal1 is brought down. process_id=3099, process_name="httpsd"
1101: 2023-09-14 18:32:51 Interface internal2 is brought down. process_id=3099, process_name="httpsd"
1102: 2023-09-14 18:32:52 Interface internal3 is brought down. process_id=3099, process_name="httpsd"
1103: 2023-09-14 18:32:52 Interface internal4 is brought down. process_id=3099, process_name="httpsd"
1104: 2023-09-14 18:32:52 Interface internal5 is brought down. process_id=3099, process_name="httpsd"
1105: 2023-09-14 18:32:52 Interface wan1 is brought down. process_id=3099, process_name="httpsd"
1106: 2023-09-14 18:32:52 Interface wan2 is brought down. process_id=3099, process_name="httpsd"
1107: 2023-09-14 18:34:41 the killed daemon is /bin/sflowd: status=0x0
1108: 2023-09-20 01:14:21 <00205> scanunit=manager str="Failed to load anti-virus database."
1109: 2023-09-20 01:14:21 scanunit=manager pid=205 cause='signal' str="AV database reload requested 1
1110: 2023-09-20 01:14:21 times by updated (pid 208) failed"
1111: 2023-09-26 20:43:47 the killed daemon is /bin/dhcpd: status=0x0
1112: 2023-09-26 20:45:57 the killed daemon is /bin/dhcpd: status=0x0
1113: 2023-09-27 10:45:59 <00223> firmware FortiGate-60F v7.0.12,build0523b0523,230606 (GA.M) (Release)
1114: 2023-09-27 10:45:59 <00223> application wad
1115: 2023-09-27 10:45:59 <00223> *** signal 11 (Segmentation fault) received ***
1116: 2023-09-27 10:45:59 <00223> AVDB 91.07330(09/26/0023 19:26)
1117: 2023-09-27 10:45:59 <00223> ETDB 91.07330(09/26/0023 19:25)
1118: 2023-09-27 10:45:59 <00223> AVSO 04000000AVEN00601062882305151731
1119: 2023-09-27 10:45:59 <00223> Register dump:
1120: 2023-09-27 10:45:59 <00223> R0: 7364612d746e6574 R1: 00000000042482d0 R2: 0000000000000000
1121: 2023-09-27 10:45:59 <00223> R3: 0000000000000050 R4: 0000000000000000 R5: 061a20d1e924a590
1122: 2023-09-27 10:45:59 <00223> R6: 00000000067ba8d8 R7: 0400000100002600 XR: 0000000000000004
1123: 2023-09-27 10:45:59 <00223> R9: 0000000000000003 R10: 0000000000000007 R11: 0000000000000006
1124: 2023-09-27 10:45:59 <00223> R12: 0000000000000000 R13: dc0c684b54651e59 R14: 0000000000000000
1125: 2023-09-27 10:45:59 <00223> R15: 0000000000000000 IP0: 000000000424d1a8 IP1: 0000007f9b34f0c0
1126: 2023-09-27 10:45:59 <00223> PR: 0000007fe71d95e0 R19: 0000007f9849c048 R20: 7364612d746e6574
1127: 2023-09-27 10:45:59 <00223> R21: 0000000004514000 R22: 0000000004514000 R23: 0000007f971e2408
1128: 2023-09-27 10:45:59 <00223> R24: 000000000000239c R25: 0000000000000000 R26: 0000002200000003
1129: 2023-09-27 10:45:59 <00223> R27: 0000007f93aa7c38 R28: 0000000000000000 FP: 0000007fe71da300
1130: 2023-09-27 10:45:59 <00223> fault_address: 0064612d746e6584 sp: 0000007fe71da300
1131: 2023-09-27 10:45:59 <00223> pc: 0000000001b5035c lr: 0000000001b50520
1132: 2023-09-27 10:45:59 pstate: 60000000 (nZCv daif -PAN -UAO)
1133: 2023-09-27 10:45:59 <00223> Backtrace:
1134: 2023-09-27 10:45:59 <00223> [0x01b5035c] => /bin/wad
1135: 2023-09-27 10:45:59 <00223> [0x01b50520] => /bin/wad
1136: 2023-09-27 10:45:59 <00223> [0x01b510e4] => /bin/wad
1137: 2023-09-27 10:45:59 <00223> [0x0184f260] => /bin/wad
1138: 2023-09-27 10:45:59 <00223> [0x0184ea1c] => /bin/wad
1139: 2023-09-27 10:45:59 <00223> [0x019b59fc] => /bin/wad
1140: 2023-09-27 10:45:59 <00223> [0x019b3e4c] => /bin/wad
1141: 2023-09-27 10:45:59 <00223> [0x0192d9f8] => /bin/wad
1142: 2023-09-27 10:45:59 <00223> [0x0192c050] => /bin/wad
1143: 2023-09-27 10:45:59 <00223> [0x0192e3a8] => /bin/wad
1144: 2023-09-27 10:45:59 <00223> [0x01aada3c] => /bin/wad
1145: 2023-09-27 10:45:59 <00223> [0x02551ddc] => /bin/wad
1146: 2023-09-27 10:45:59 <00223> [0x02553890] => /bin/wad
1147: 2023-09-27 10:45:59 <00223> [0x02534f7c] => /bin/wad
1148: 2023-09-27 10:45:59 <00223> [0x01aab2ac] => /bin/wad
1149: 2023-09-27 10:45:59 <00223> [0x01aabf24] => /bin/wad
1150: 2023-09-27 10:45:59 <00223> [0x01adfbac] => /bin/wad
1151: 2023-09-27 10:45:59 <00223> [0x01a575ac] => /bin/wad
1152: 2023-09-27 10:45:59 <00223> [0x01a578bc] => /bin/wad
1153: 2023-09-27 10:45:59 <00223> [0x01af6a6c] => /bin/wad
1154: 2023-09-27 10:45:59 <00223> [0x0044a9e0] => /bin/wad
1155: 2023-09-27 10:45:59 <00223> [0x7f9b2f0f24] => /usr/lib/aarch64-linux-gnu/libc.so.6
1156: 2023-09-27 10:45:59 (__libc_start_main+0x000000e4) liboffset 00020f24
1157: 2023-09-27 10:45:59 <00223> [0x00446390] => /bin/wad
1158: 2023-09-27 10:45:59 <00223> [0x00446390] => /bin/wad
1159: 2023-09-27 10:45:59 <00223> fortidev 6.0.1.0005
1160: 2023-09-27 10:45:59 <00223> process=wad type=2 idx=0 av-scanning=no total=1917 free=404
1161: 2023-09-27 10:45:59 mmu=34231776 mu=6678907 m=118653461 f=118597090 r=0
1162: 2023-09-27 10:45:59 <00223> cur_bank=(nil) curl_tl=0x6790a70 curl_tm=0x7f98d2f048
1163: 2023-09-27 10:45:59 <00223> (session info) vf=0 session-id=0 app_type=0 dyn_type=0 non_tp=0,
1164: 2023-09-27 10:45:59 pol_id=0, h2=0, src/port=, dst/port=173.243.140.18:443, usr/grp=(/)
1165: 2023-09-27 10:45:59 [AV Engine <223>] AV Engine version: 6.4.288
1166: 2023-09-27 10:45:59 [AV Engine <223>] Last file info:
1167: 2023-09-27 10:45:59 [AV Engine <223>] filename: 9270264185961396331, filesize: 3072, filebuffer:
1168: 2023-09-27 10:45:59 0x7fe71d99d8
1169: 2023-09-27 10:45:59 [AV Engine <223>] Native script imagebase: 0x7f99847000
1170: 2023-09-27 10:45:59 [AV Engine <223>] Native script imagesize: 0x9000
1171: 2023-09-27 10:45:59 [AV Engine <223>] AV Engine imagebase: 0x7f99021000
1172: 2023-09-27 11:45:59 wad crashed 1 times. The latest crash was at 2023-09-27 10:45:59.
1173: 2023-09-27 16:30:39 the killed daemon is /bin/dhcpd: status=0x0
1174: 2023-09-28 08:38:01 the killed daemon is /bin/dhcpd: status=0x0
1175: 2023-09-28 08:42:02 the killed daemon is /bin/dhcpd: status=0x0
1176: 2023-09-28 14:39:21 the killed daemon is /bin/dhcpd: status=0x0
Crash log interval is 3600 seconds
Max crash log line number: 16384
Que mas me puedo fijar?
Muchas gracias
Re: Problemas con el forti
Es súper extraño el comportamiento. Pareciera ser un problema de recursos. Revisa el consumo de CPU y memoria, quizás por ahí está el problema.
Si tienes un contrato de soporte con Fortinet, te recomiendo abrir un ticket al TAC para que te presten asistencia remota.
Si tienes un contrato de soporte con Fortinet, te recomiendo abrir un ticket al TAC para que te presten asistencia remota.
Saludos!
_____________________________________________________________
Grupo de Telegram referente a FortiGate --> https://t.me/FortiGate_es
_____________________________________________________________
Grupo de Telegram referente a FortiGate --> https://t.me/FortiGate_es
Re: Problemas con el forti
dale. muchas gracuas
Re: Problemas con el forti
Estuve revisando el equipo y el consumo de memoria esta en un 70% y el de CPU llega al 98%, tuve que eliminar algunas politicas de fiewall, deje de loguear otras y a veces tengo que reiniciar el equipo para que la red tenga Internet. No tenemos contrato de soporte, solo el Fortiguard contratado, me podrias decir que mas puedo hacer para bajar los consumos de memoria y CPU. Estoy googleando a ver si encuentro algo lo comento por aca.
Muchas gracias
Muchas gracias
Re: Problemas con el forti
Ahora todo tiene sentido, y lo primero que haría sería revisar qué proceso(s) es (son) el (los) que está(n) llevando la CPU al 98%
[Debes identificarte para poder ver enlaces.]
Luego el mismo caso con la memoria:
[Debes identificarte para poder ver enlaces.]
No obstante, probablemente el equipo quizás ya te quedó pequeño para la infraestructura con que cuentas, también deberías analizar ese punto, ya que un 60F no es un dispositivo muy grande en general, pero como te decía, todo dependerá de lo que tengas detrás y el consumo que esté generándose.
¿Qué versión de firmware corres?
¿Cuánto BW trafica a través del FortiGate?
[Debes identificarte para poder ver enlaces.]
Luego el mismo caso con la memoria:
[Debes identificarte para poder ver enlaces.]
No obstante, probablemente el equipo quizás ya te quedó pequeño para la infraestructura con que cuentas, también deberías analizar ese punto, ya que un 60F no es un dispositivo muy grande en general, pero como te decía, todo dependerá de lo que tengas detrás y el consumo que esté generándose.
¿Qué versión de firmware corres?
¿Cuánto BW trafica a través del FortiGate?
Saludos!
_____________________________________________________________
Grupo de Telegram referente a FortiGate --> https://t.me/FortiGate_es
_____________________________________________________________
Grupo de Telegram referente a FortiGate --> https://t.me/FortiGate_es
Re: Problemas con el forti
Te voy respondiendo,
CPU
diagnose sys top
Run Time: 2 days, 22 hours and 17 minutes
0U, 0N, 0S, 100I, 0WA, 0HI, 0SI, 0ST; 1917T, 576F
ipsengine 342 S < 0.0 4.0 6
ipsengine 343 S < 0.0 4.0 5
ipsengine 344 S < 0.0 3.8 7
node 176 S 1.7 3.8 3
wad 235 S 0.0 2.7 4
wad 233 S 0.0 2.7 0
wad 232 S 0.0 2.7 5
wad 234 S 0.0 2.6 3
ipshelper 201 S < 0.0 2.5 2
cmdbsvr 138 S 0.0 2.3 7
forticron 188 S 0.5 1.9 7
scanunitd 205 S < 0.0 1.8 4
miglogd 197 S 0.0 1.7 7
extenderd 258 S 0.0 1.5 7
sslvpnd 199 S 0.0 1.4 4
updated 216 S 0.0 1.4 6
cw_acd 248 S 0.0 1.3 2
scanunitd 11777 S < 0.0 1.3 2
scanunitd 11776 S < 0.0 1.3 2
miglogd 297 S 0.0 1.2 3
Memoria
diag sys top-mem 10
node (176): 75826kB
ipsengine (342): 53872kB
ipsengine (343): 52655kB
ipsengine (344): 48815kB
wad (235): 32165kB
wad (233): 31441kB
ipshelper (201): 30958kB
wad (234): 30258kB
wad (232): 30230kB
cmdbsvr (138): 20208kB
Top-10 memory used: 406428kB
Ancho de banda (7 dias)
dmz 45.86 GB/33.64 GB 336562 OTHER
dmz 5.99 GB/46.39 GB 2033946 LOW
internal 1.49 GB/40.85 GB 224145 OTHER
internal 13.89 GB/20.17 GB 2059107 LOW
dmz 2.22 GB/14.88 GB 750928 MEDIUM
internal 719.04 MB/9.75 GB 91211 MEDIUM
ssl.root 1.76 GB/658.89 MB 97908 OTHER
internal 267.64 MB/59.19 MB 97403 HIGH
wan1 115.44 MB/144.85 MB 60808 OTHER
wan2 72.93 MB/178.17 MB 74585 OTHER
dmz 56.81 MB/34.90 MB 33276 HIGH
dmz 3.46 MB/735.60KB 23 CRITICAL
Firmware:
v7.0.12 build0523 (Mature)
Estaba por actualizar el firmware a 7.2.6
Saludos!
CPU
diagnose sys top
Run Time: 2 days, 22 hours and 17 minutes
0U, 0N, 0S, 100I, 0WA, 0HI, 0SI, 0ST; 1917T, 576F
ipsengine 342 S < 0.0 4.0 6
ipsengine 343 S < 0.0 4.0 5
ipsengine 344 S < 0.0 3.8 7
node 176 S 1.7 3.8 3
wad 235 S 0.0 2.7 4
wad 233 S 0.0 2.7 0
wad 232 S 0.0 2.7 5
wad 234 S 0.0 2.6 3
ipshelper 201 S < 0.0 2.5 2
cmdbsvr 138 S 0.0 2.3 7
forticron 188 S 0.5 1.9 7
scanunitd 205 S < 0.0 1.8 4
miglogd 197 S 0.0 1.7 7
extenderd 258 S 0.0 1.5 7
sslvpnd 199 S 0.0 1.4 4
updated 216 S 0.0 1.4 6
cw_acd 248 S 0.0 1.3 2
scanunitd 11777 S < 0.0 1.3 2
scanunitd 11776 S < 0.0 1.3 2
miglogd 297 S 0.0 1.2 3
Memoria
diag sys top-mem 10
node (176): 75826kB
ipsengine (342): 53872kB
ipsengine (343): 52655kB
ipsengine (344): 48815kB
wad (235): 32165kB
wad (233): 31441kB
ipshelper (201): 30958kB
wad (234): 30258kB
wad (232): 30230kB
cmdbsvr (138): 20208kB
Top-10 memory used: 406428kB
Ancho de banda (7 dias)
dmz 45.86 GB/33.64 GB 336562 OTHER
dmz 5.99 GB/46.39 GB 2033946 LOW
internal 1.49 GB/40.85 GB 224145 OTHER
internal 13.89 GB/20.17 GB 2059107 LOW
dmz 2.22 GB/14.88 GB 750928 MEDIUM
internal 719.04 MB/9.75 GB 91211 MEDIUM
ssl.root 1.76 GB/658.89 MB 97908 OTHER
internal 267.64 MB/59.19 MB 97403 HIGH
wan1 115.44 MB/144.85 MB 60808 OTHER
wan2 72.93 MB/178.17 MB 74585 OTHER
dmz 56.81 MB/34.90 MB 33276 HIGH
dmz 3.46 MB/735.60KB 23 CRITICAL
Firmware:
v7.0.12 build0523 (Mature)
Estaba por actualizar el firmware a 7.2.6
Saludos!
Última edición por carinavb el 08 Oct 2023, 17:49, editado 2 veces en total.
Re: Problemas con el forti
Disculpa, pero eres tú quien tienes que determinar el problema y solucionarlo, no vengas a un foro público a pedir que otros lo hagan GRATIS por ti. Acá se te pueden dar las directrices y guiarte para que logres encontrar una solución, pero esfuérzate un poco y no esperes que se analicen los datos que entregas y te hagamos el trabajo por el que seguramente se te está pagando un salario. Si no estás capacitado o tienes la experiencia necesaria para administrar sistemas o equipos de comunicaciones, entonces debes hacerte asesorar por especialistas.
Quizás alguien más se tome el tiempo y te responda.
Quizás alguien más se tome el tiempo y te responda.
Última edición por AndresW el 08 Oct 2023, 23:55, editado 2 veces en total.
Saludos!
_____________________________________________________________
Grupo de Telegram referente a FortiGate --> https://t.me/FortiGate_es
_____________________________________________________________
Grupo de Telegram referente a FortiGate --> https://t.me/FortiGate_es
Re: Problemas con el forti
ok, gracias
Saludos
Saludos