Closed seal61 closed 4 months ago
Solved it - was a configuration issue on my fortigate.
Be careful when configuring trusted hosts for the REST API Administrator AND other admin users! Even when my monitoring server mon01 was correctly specified in the trusted hosts for the REST API Admin, the IP of mon01 also needed to be in the trusted hosts for the other admin users (that have - in first place - nothing to do with the REST API access).
This link in the fortinet community brought me to the solution.
Dear all,
I just ran into issues not really knowing where to continue or what I'm doing wrong. The exporter itself is running and the probe also worked until I rebooted / upgraded my monitoring server from debian 10 to debian 11.
Changing some hostnames and URLs - but I always tried with IP and hostname.
When I try to curl the exporter locally, the probe ends after roughly 30 seconds - same output for when I try via firefox on my pc with http://mon01:9710/probe?target=https://fortigate01.domain.de:
This request can NOT be seen in the fortigates API logs.
Server mon01 can ping the fortigate:
When I try to reach the fortigate API from my laptops browser, thats not an issue, So I know the API user itself should be working:
This request can also be seen on the fortigate in the API logs from API user "monitoring".
In some other issue I found on how to go from here, so I tried to also curl this page from my server mon01:
But from there it seems to be broken.
My fortigate-key.yaml looks like this:
My service file for fortigate_exporter like this - already tried adding higher timeout values, but also without them no chance:
Exporter is running, as I said, but giving me errors each scrape - always after 10 seconds:
What does
context canceled
mean here?