greetings, I created an SD-WAN rule (source = all, destination = all)
for Internet access with two member interfaces. One is the underlay
interface and will forward traffic to local egress (DIA), the other one
is an overlay MPLS ipsec tunnel that wil...
greetings,Previously we used ping to a single www server from public
Internet as the SLA detect method, and some day ISP stops the ICMP to
that www server, so SD-WAN rule brought down the member interface.Now
we'd like to use DNS as the active probe ...
greetings, I'd like to know what is the meaning of the time duration
next to the DNS server in Fortigate.When it is showing thousands ms, we
can still ping it without issue.
hi all,trying to create site to site ipsec vpn with the other site on
Azure virtual gateway, the tunnel is down and i follow the article
https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-IPsec-VPNs-tunnels/ta-p/195955
to troubleshoot, I...
hi all,Suddenly i got the issue that FortiClient vpn on my company
laptop can only work with my mobile hotspot, but if I try with home wifi
it gives me the error message as below screenshot when the progress bar
reaches 20%. I am not the single one h...
thanks amrit,ipsec overlay interface is based on MPLS (a separate link),
not under the underlay interface.the two interface I mentioned in the
post are not in the same zone. The underlay interface is within
ZONE_Internet, the mpls-based ipsec tunnel ...
thanks.OK the packet loss is to measure how much dns response packet get
lost?latency is to measure how long it takes to get a DNS answer?how
about jitter? does it mean the longest DNS response time minus the
shortest DNS response time?It should not ...
(we have 4 sites as spoke connecting to Azure, 3 of which are in West
europe, 1 is in China. In this case, we are talking about China site, it
is an ipsec to Azure East Asia).I compared several things across sites,
the only different thing is the tun...