Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
chrbar
New Contributor

Question about Source vs Authentication objects in same rule?

Hello,

We use FortiGate 3700D running FortiOS v5.2.3 build670 (GA), managed from FortiManager v5.2.2-build0706 150415.

 

We'd like to create a rule (policyID) dedicated to specifics clients, them we use Source and Authentication objects inside but we meet some difficulties: client use another rule without Source object!

 

We already have a rule for Internet access, including specifics objects: Source Interface, Destination Interface, Destination, Services, Authentication, Profile (AntiVirus, Web Filter, Application Control, IPS, DLP Sensor, SSL/SSH Inspection).

 

If we copy/paste above this rule and change default Source object (any) by two specifics "Source" objects (IP address and FQDN of the client), the client continue to use the old rule, below this new one.

We've checked the firewall logs, Source and Authentication fields/values are presents (and known by firewall).

Before each tests, we've deleted client Authentication on FAC and Fortigates (via FortiManager).

 

Do you have any idea about that?

Regards, Chris

 

0 REPLIES 0
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors