An administrator is tasked with troubleshooting an issue with push updates failing on a FortiManager device that is located behind a NAT device. Which two settings should the administrator check? (Choose two.)
A.
That the virtual IP address and correct ports are set on the NAT device
B.
That the NAT device IP address and correct ports are configured on FortiManager
C.
That the external IP address on the NAT device is set to DHCP and configured with the virtual IP
D.
That the override server IP address is set on FortiManager and the NAT device
A and B: FortiManager_7.0_Study_Guide-Online.pdf page 343: If FortiManager is behind a NAT device, sending its IP address for push updates causes push updates to fail because this is a non-routable IP address from the FDN. You must configure the following:
• On FortiManager, configure the NAT device IP address and port used for push updates. By default, the port for push updates is UDP 9443, but you can configure a different port number.
• On the NAT device, configure the virtual IP and port that forwards to FortiManager. FortiManager may not receive push updates if the external IP address of the NAT device changes.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
morningstar
Highly Voted 2 years, 8 months agofbartel
Most Recent 2 years, 8 months ago