We manage a few dozen Fortigate units for our customers. Starting yesterday, sites started getting blocked with SSL errors.
This is across different fortigates (60E to 200F) and different versions 6.4x to 7.0.4
Turning off all UTM features of a policy seem to help. But it's very weird.
Firefox reports it as "NET::ERR_CERT_COMMON_NAME_INVALID"
But the site is just fine and so is the cert. It's happening on big sites like banks and even the fortinet support site.
I also saw a log message that fortinet's DNS server went unavailable for a bit.
anyone else having issues like this?
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Yes, mine started blocking sites too with this message:
FORTINET Webfilter
This Connection is Invalid. SSL certificate expired.
Hi, not sure if that's what you have, but when I read "let's encrypt" this came to my mind:
https://www.fortinet.com/blog/psirt-blogs/fortinet-and-expiring-lets-encrypt-certificates
have a nice day
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1547 | |
1031 | |
749 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.