# diag debug resetObserve what error messages show up in the CLI. A common error can be that CAs (Certificate Authorities) are missing. This can lead to errors like the following:
# diag debug app csf -1
# diag debug en
<2761> 02 __ssl_recv()-596: ssl error: error:14094418:SSL routines:ssl3_read_bytes:tlsv1 alert unknown caThis indicates that one FortiGate does not trust the certificates used by the other FortiGate; to fix this, download the CAs on each FortiGate and import them to the other.
# diag sys process pidof csf ##in version 6.0 and higher2) Kill the daemon (it will restart automatically)
# fnsysctl cat /var/run/csf.pid ## in version 5.6
# diag sys kill 11 <process ID>Restarting the csf daemon in general can resolve some issues as well.
# diag debug crashlog read- Check the release notes for the firmware versions of the devices for possible known issues regarding Security Fabric.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.