I did not see anything that changed related to certificates or did I miss something? I am wondering why this occurs right now after the upgrade and I did not change the configuration. Any Ideas how to fix that?
Please try to disable http2 as a workaround and test if it works.
It's configured under #config firewall vip.
A snippet from my lab for example:
config firewall vip edit "Virtual Server" set uuid 59acd588-ac9b-51ed-8251-b880c505cedd set type server-load-balance set extip 192.168.20.1 set extintf "any" set server-type https set extport 443 config realservers edit 2 set ip 192.168.1.129 set port 80 next end set http-supported-max-version http1 <-----changed to http1 set ssl-certificate "Fortinet_Factory" next end
partially. On one Server this helped, but on the two others that are configured the same way it did not.
@gflemingsorry for the late reply. I looked on the server side with tcpdump, listening to the port (http) and there is not really much coming to the server. I think the Forti is blocking something. If I access the Server directly (internal network, same port) it works well.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.