Fortinet Community

Toshi_Esumi · 12-27-2021

We've been using a FMG-VM about 7 months in production, which is now 6.4.8 running. But still see Auto-update happens to a few managed FGTs without any local config changes.Mostly seems to be harmless when I diff config revisions before and after, wh...

Toshi_Esumi · 12-14-2021

One of our 1500D a-p HA pairs recently experienced a master reboot twice (6.2.9 and 6.2.10 today) and switched over. I have a ticket at TAC and was told WAD crashes were the cause since lots of them are recorded in the crashlog. Also told this was a ...

Toshi_Esumi · 11-17-2021

Did anyone notice your FG40F's SPEED LEDs on the front panel never light up for LAN1-3 and A ports, while it works fine (orange=100M/green=1G) on WAN port? I have two of them showing in the same way. Toshi

Toshi_Esumi · 04-15-2021

Did anyone know constraints with CLI templates in v6.4.x when you want to adjust members of a hardware switch like internal on an FG60x and create a second hard-switch interface with those freed up members?What I'm experiencing seems to be... it work...

Toshi_Esumi · 02-23-2021

Did anyone else get below NPU errors with a combination of v6.4.5 and FG40F? I just uploaded the image and started configuring SDWAN when I saw these errors on the console port. I opened a ticket at TAC but might take a while before getting a respons...

Toshi_Esumi · 01-16-2022

I don't know about PfSense, but at least any FGTs wouldn't like the asymmetric routing. For out-to-in sessions, the PfSend would directly pass packets to 192.168.100.x because it's locally connected, but its return packets are coming to the FGT becau...

Toshi_Esumi · 01-16-2022

You need to have a policy, or a set of policies, between VLAN30 and DMZ.

Toshi_Esumi · 01-14-2022

Because the FGT is not acting as DNS server. It just drops all DNS queries if you point them to the FGT.The "forward" setting would just forward those queries to the real DNS servers either learned from ISP via DHCP or the system DNS you have in the ...

Toshi_Esumi · 01-14-2022

You must have access to the LAN side of the FGT via your SSL VPN. Then allow access (https, ssh) on the LAN interface and use that IP to get in. Toshi

Toshi_Esumi · 01-13-2022

If it's 6.4.x or later and you want to fail them over just for test purpose, you have this option.https://docs.fortinet.com/document/fortigate/6.4.0/new-features/684039/force-ha-failover-for-testing-and-demonstrations If you're using override, sounds...

Fortinet Community

User Statistics

User Activity

trigger/reason of FMG Auto-update

WAD crash with 6.2.x and reboot

FG40F SPEED LEDs

FMG 6.4.x hard-switch adjustment with CLI template

6.4.5/40F NP6XLITE errors

Re: Fortigate behind Pfsense

Re: Fortigate DMZ accesing from LAN

Re: DNS Server Same as System DNS

Re: Admin Gui login with SSL-VPN

Re: Fortigate HA troubleshooting

Re: Fortigate HA troubleshooting

Re: diag sniffer packet

Re: using two different fortigate products togethe...

Re: SDWAN on dialup VPN connection

Re: Drop failover sessions when link comes back up

Re: Admin Gui login with SSL-VPN

Re: using two different fortigate products togethe...

Re: Fortigate had experienced an unexpected power ...

Re: Allow external ping from specific Hosts

Re: BGP Backup link configuration

News & Articles

Security Research

Company

Contact Us