Unable To Load Fortiguard Ddns Servers List On — Fortigate Firewalls

diagnose test application fortiguard 1 diagnose test application update 1 execute reboot (if necessary)

Troubleshooting "Unable to Load FortiGuard DDNS Servers List" on FortiGate Firewalls

If your debug logs continue to show persistent internal I/O errors or socket communication failures, your device may be affected by a software bug. Upgrading to a stabilized patch release or contacting the Fortinet Support Community will help you safely resolve the issue. If youg., v7.0.5, v7.4.2) If both succeed, move to Step 2

Based on whether anycast is enabled or disabled, you must specify the correct IP address.

If both succeed, move to Step 2. If ping to IP works but FQDN fails, jump to . : Disable Anycast and switch to a dedicated

: Newer FortiOS versions use Anycast by default, which can sometimes fail due to ISP filtering or TLS handshake issues (e.g., TLSv1.3 failures). : Disable Anycast and switch to a dedicated IP via CLI: config system fortiguard fortiguard-anycast disable ddns-server-ip protocol udp end Use code with caution. Copied to clipboard FortiGuard Subscription Status

However, a notoriously frustrating error message often appears when administrators attempt to configure or refresh the DDNS provider list on a FortiGate appliance: you have a DNS problem.

If ping fails with ping: cannot resolve guard.fortinet.net: Unknown host , you have a DNS problem.