After upgrading FortiOS from 7.0.17 to 7.2.11 problems with server-rst is being experienced

kish02 · ‎09-28-2025

Hi!

Just checking if someone may have an idea as to why traffic to a remote server is now blocked with forward traffic log showing server-rst. This only happens after FortiGate firmware version was upgraded from 7.0.17 to 7.2.11. If I removed all the security profiles(IPS, DNS, File Filter, certificate inspection, App) attached to the firewall policy, the traffic is allowed. But adding back the security profiles(IPS, DNS, File Filter, certificate inspection, App) without modifying any of them, the traffic is still allowed. But the problem reoccur on the next day.

HTTP.Browser.IE is allowed on the AppControl logs.

Thank you.

kish02 · ‎09-28-2025

I think I got this sorted. The link being accessed by the HTTP.Browser_IE is actually downloading an .exe file. Removing the security profiles including the FileFilter from the firewall policy fixed the issue temporarily. And adding back the security profiles has no effect on the same machine as the file has already been downloaded. I will test this further. Thanks!

BillH_FTNT · ‎09-28-2025

Hi @kish02

Could you please share the configuration details related to HTTPS (Policy ID 48), including the associated profiles and policies?
Also, please include the version of your FortiGate firewall ? both software and hardware.

Regards

Bill

After upgrading FortiOS from 7.0.17 to 7.2.11 problems with server-rst is being experienced

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website