Hi, Please forgive me if this has been covered before. I tried to search
around before this post. Is there a way to run a script against global
policy in FMG 5.4/5.6? The older documentation seems to say yes but I
cannot find a successful way to acco...
Hi Everyone, Lets say I have an application that I need to bypass from
deep inspection, Onenote for example. In 5.2 we had the command "diag
debug application ssl" that would should be the cn/sni of the
certificates as the session was happening. With...
Hello, I am authenticating users onto the VPN using LDAP but using
multiple groups. The multiple groups get different portals. The issue I
have is when I move a user from one LDAP group to another(I am doing
this on my domain controllers) the firewal...
Hi everyone, I am learning the Fortinet product line and I am currently
studying the Fortigate 100D. At a first glance it seems like we do have
an OOB management interface but I did some testing and it is not what I
thought. This is just one unit so ...
I dont know much about forwarding to syslog from forticlient but could
it be a local firewall blocking the connection out? You can try and spin
up wireshark and search for UDP 514 for syslog packets.
On the inbound portforwarding is correct since were using the same
public my mistake, VIPs are almost correct, but it seems to me your
inbound VIP will not work because the service is not allowing that port.
Try create a new service for testing and o...
If that doesnt work then can you show us the CLI config for you have.
config firewall service customedit xxxshowendconfig firewall vipedit
xxxshowendconfig firewall policyedit xxshowend put the name or number
each entry where the x's are. Replace any...
Hi, Try removing the IP from the service, it looks like your src and dst
service ports are backwards. it should be reversed. from any source port
to destination port 5000. Also remove port forwarding from your VIP and
let the security policy(and serv...
