Skip to main content
kish02
kish02
New Member
September 28, 2025
Question

After upgrading FortiOS from 7.0.17 to 7.2.11 problems with server-rst is being experienced

  • September 28, 2025
  • 2 replies
  • 821 views

Hi!

 

Just checking if someone may have an idea as to why traffic to a remote server is now blocked with forward traffic log showing server-rst. This only happens after FortiGate firmware version was upgraded from 7.0.17 to 7.2.11. If I removed all the security profiles(IPS, DNS, File Filter, certificate inspection, App) attached to the firewall policy, the traffic is allowed. But adding back the security profiles(IPS, DNS, File Filter, certificate inspection, App) without modifying any of them, the traffic is still allowed. But the problem reoccur on the next day.

 

HTTP.Browser.IE is allowed on the AppControl logs.

 

Thank you.

fortigate.png

 

2 replies

kish02
kish02Author
New Member
September 29, 2025

I think I got this sorted. The link being accessed by the HTTP.Browser_IE is actually downloading an .exe file. Removing the security profiles including the FileFilter from the firewall policy fixed the issue temporarily. And adding back the security profiles has no effect on the same machine as the file has already been downloaded. I will test this further. Thanks!

BillH_FTNT
Staff
BillH_FTNT
Staff
September 29, 2025

Hi @kish02 

Could you please share the configuration details related to HTTPS (Policy ID 48), including the associated profiles and policies?
Also, please include the version of your FortiGate firewall ? both software and hardware.

 

Regards

Bill

Terms & ConditionsAccessibility statement