Hello,
We have noticed that when a FortiGate works as server load balancer, when it receives a TCP connection with ECN, it forwards this connection with ECN disabled, e.g.
Client -------------- FortiGate ------- Server pool
---(SYN,ECN,CWR)---> ---(SYN)---------> <-- The FG strips the ECN, CWR flags
<---(SYN,ACK)--------- <---(SYN,ACK)---
Do you know if this is how the FG works when doing load balancing, or is there a way that we can enable ECN in the FG?
Thanks
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.