Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
grichards
New Contributor

Unable to visit sites that have HSTS enabled using a FortiGate 100F

As of yesterday we are seeing this on sites that have enabled HSTS, in my example Wikipedia is one of these sites.  Browser is preventing the end user from continuing because it thinks the site has been compromised like a man-in-the-middle attack. Here is what Firefox says and it always mentions our FG100F cert and I've checked and it has not expired yet.

 

 

I'm new to using the FortiGate so any help would be appreciated.

 

Thanks,

Glen

1 Solution
Toshi_Esumi
SuperUser
SuperUser

Looks like the same "Let's Encrypt" cert issue. [link]https://forum.fortinet.com/tm.aspx?m=199129#199137[/link]

View solution in original post

2 REPLIES 2
Toshi_Esumi
SuperUser
SuperUser

Looks like the same "Let's Encrypt" cert issue. [link]https://forum.fortinet.com/tm.aspx?m=199129#199137[/link]

grichards

Thanks Toshi Esumi, after reading that post I believe you are correct. We played around with it a bit and found that switching from Proxy-based to Flow-based seems to be a good temp fix for us right now until they come out with an actual fix for this.

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors