No Wireless special firmware yet...
Regards, Paulo Raponi
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Has anyone ditched SSL VPN completely for IPSEC?
No I use both.
Did you diagnostic the traffic using diag debug flow ?
And did you try any other packet captures on ssl.root ?
e.g
diag sniffer packet ssl.root
PCNSE
NSE
StrongSwan
My problem turned out to be related to an odd bug that was mentioned in the last firmware update.
auto-tunnel-policy was set to disabled for my SSL VPN after my upgrade. When I re-enabled, all was well.
I thought I already had standard traffic policies in place to handle the VPN routing, but I must've missed something for the return traffic. As far as I know, there's no way to see the policy that auto-tunnel creates.
Bill ========== Fortigate 600C 5.0.12, 111C 5.0.2 Logstash 1.4.1
Upgraded a 80c from 5.0.9
- some SSID broken/orphaned
I have to reconfigure wi-fi controller :(
Tried to upgrade my FG 200B today but I have to downgrade it back to 5.0.8.
Currently my user is authenticate using the web browser and their username is link with our Active Directory.
All the users are unable to open the authentication page after I have upgrade to 5.0.10.
I noticed an serious bug in versions 5.0.9 and 5.0.10.. If you login with read-only account you can still delete fw policies.
At least this works with 5001B blades.
Toni Sulosalmi wrote:Hmm that issue doesn't seem to affect the 60C I just tested. It gives me the option to try and delete it but it doesn't actually delete the policy. Did you confirm that you can in fact successfully delete a policy? I assume we are talking via the GUI here.I noticed an serious bug in versions 5.0.9 and 5.0.10.. If you login with read-only account you can still delete fw policies.
At least this works with 5001B blades.
Some IPSec VPN are broken on 5.0.10.... 5.0.11 will be released this week to fix.
Regards, Paulo Raponi
p****oni wrote:Do you have a bug ID or care to elaborate?Some IPSec VPN are broken on 5.0.10.... 5.0.11 will be released this week to fix.
FortiAdam wrote:Do you have a bug ID or care to elaborate?
FortiAdam, I don't know the BugID, but the TAC talked about this on ticket #1291741
Regards,
Paulo Raponi
Regards, Paulo Raponi
Has anyone performed the upgrade from 5.0.9 to 5.0.10 on a 3600C? If so, did you experience any problems or instability issues? Thanks!
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1660 | |
1077 | |
752 | |
443 | |
220 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.