Hi all!Maybe a simple question, but I don't see it: Why is the traffic
to Cloudflare-Web implicitly denied while the traffic to Xbox is
allowed? Both connections use port 443...Policy 44: config firewall
policyedit 44set srcintf "Name1"set dstintf "w...
Good evening! I remember, that the Asset Identity List showed the
devices in my network including information about the Software OS
(Windows, iOS, etc.). After a reboot a couple of days ago, the Software
OS is not discovered anymore. All devices do h...
Good evening! I've created the following policy to scan web traffic
(test setup): config firewall policyedit 2set name "Trust:Webzugriff"set
uuid a7a53264-XXXXXXXXXXXXXXXXset srcintf "internal2"set dstintf
"wan1"set action acceptset srcaddr "Trust ad...
Well, I just found this article:
https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Threat-131072-is-seen-in-logs-when-traffic/ta-p/192533
thus the info about threat id and threat level is meaningless. But why
is the https traffic not ac...
Hi! OK, I now got the mechanism. The basic reason for "certificate
replacement" is the way how the "proceed" mechanism in "Web
profile/Policy override" is implemented. For everybody who is
interested: The Fortigate provides a corresponding service on...
Hi @pminarik , @sw2090 Thanks for your replies. Just to make clear: my
question is not about trusting (or not trusting) certificates. This
topic is clear to me. I just wondered, why the certificate is exchanged,
when the user clicks on "proceed" (!) ...