Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Oscar_Wee
Staff
Staff

Created on ‎01-16-2025 07:02 AM Edited on ‎01-16-2025 11:53 PM By Community Manager

Article Id 370672

Troubleshooting Tip: How to resolve video not loading on CCTV due to firewall policy

Description

This article describes how to resolve an issue where video does not load on CCTV due to a firewall policy.
Scope FortiGate.
Solution

Example:

When CCTV is directly connected to an ISP router, the video loads properly on CCTV. However, the video cannot load properly when connected to FortiGate, even when the security profile is disabled on the firewall policy.

 

cctv not loading.png

 

To troubleshoot: This could be due to tcp-mss sender and receiver settings on the firewall policy.

 

MSS.jpg

 

To resolve this, change the mss to a smaller value such as 1388 or below until the video loads. In addition, ensure that no security profile is selected in the firewall policy which involves the CCTV.

 

config firewall policy  (CCTV)

    edit 1

        set tcp-mss-sender 1388  
        set tcp-mss-receiver 1388

    next
end

 

Verification: A CCTV loading sign does not appear on the video after setting the smaller tcp-mss values in the firewall policy which involves the CCTV.

 

Related article:

Technical Tip: Setting TCP MSS value 
550
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.