Re: DNS and VPN Users

seadave · 06-18-2020

Just an FYI, I have a FWF60E and I purchased a FAPC24JE AP but that AP is NOT listed as a model that I can build a profile for. I made sure it had 5.4.2 firmware in order to support 6.4.1, but I can't get it to be recognized. TAC just said I need to ...

DNS and VPN Users · 04-07-2020

This issue has been discussed in may ways and referred to in post such as this: https://forum.fortinet.com/tm.aspx?m=119883#183227 But I wanted to see if anyone has any remaining ideas. To set the stage, in a proper Windows AD environment, DNS integr...

seadave · 02-13-2020

Hello- Yesterday we updated our HA 501E pair from 6.0.5 to 6.0.7. All seemed to be fine, but today, users connected to our SSL VPN tunnel are having Outlook 2016 Connectivity issues. We have Outlook on-prem and only clients coming in over the SSL VPN...

seadave · 01-24-2020

We have a FAZ VM with the 2G/Day/1TB Storage license. We noted that our daily log flows were very flat and topping out at 130Logs/Sec. Rarely if ever exceeding that amount. The current FAZ we have had been upgraded several times and we export all dat...

seadave · 11-07-2019

I have a FAZVM hosted on Dell Compellent (mostly flash) and Dell R630 servers, vSphere 6.5U3. The VM has 16G RAM and 8vCPUs. We have a 2GB/Day license and currently consume ~1.5G/day. As far as I can tell storage capacity and IOPs are not rate limiti...

seadave · 09-30-2024

Does this work for you with FortiClients connecting for full tunnel or only for Web Portal logins? All of the instructions I see seem to indicate this is for web portals, but perhaps I'm reading it wrong.

seadave · 11-17-2021

Long shot, but you might check to see if your DCs were updated last night. This week's updates caused some DC auth issues. https://www.bleepingcomputer.com/news/microsoft/windows-kerberos-authentication-breaks-due-to-security-updates/ If you have FSS...

Re: DNS and VPN Users · 08-02-2021

We had to be very specific about how we configured NICs (including the pseudo ones created by Forticlient) on our laptops. I think we use a script to ensure that is consistent. It is unfortunate that Fortinet hasn't developed some sort of proxy/updat...

seadave · 07-15-2021

I would not be running 5.6. That is VERY old code and vulnerable to exploits. Since I wrote my response 2 years ago, we migrated from 6.0.10 to 6.4.4 (skipped 6.2.X running in production because it was too buggy at that time). There are some big chan...

seadave · 02-02-2021

That should work. We need to get certs in order and then try that approach. Thanks.

User Statistics

User Activity

Support FortiAP-C models on 6.4.1

DNS and VPN Users

Outlook Clients Connection Errors 6.0.7 SSL-VPN Full Tunnel

FortiAnalyzer Throttling

FAZ VM Log Throttle

Re: SSL VPN with External DHCP Server - No traffic flowing back to client

Re: Internet traffic blocked by policy violation

Re: DNS and VPN Users

Re: FortiOS 6.2: memory issues, best approach

RE: Secure Netlogon and FortiAuthenticator Connectivity

Re: DNS and VPN Users

Re: FortiAuthenticator Syslog

Re: Outlook Clients Connection Errors 6.0.7 SSL-VP...

Re: FortiOS 6.0.5 is out!

Re: Radius authentication fails on mac devices

Fortinet Training Institute