The "bandwidth-unit" option described in the KB below (also in CLI
references) doesn't seem to exist at least on FG60E/60E-POE with 6.4.x
while I can see this option on 1000D/1500D we have. Is this limited to
Not sure if this is because WPA3 SAE's spec is not allowing or making
this combination useless/meaningless. But with our 6.4.10
wireless-controller on a FGT, I don't seem to have an option for
wpa3-sae+captive-portal in the VAP's security setting, wh...
One of our FGTs managed by FMG somehow lost connection to the FMG. It
has two internet, wan1 and wan2. But probably when wan1 went down the
FMG changed connection to wan2, then wan2 went down. Currently wan1 is
up and operational, but somehow the cen...
Last night one of FWF60Es' upgrade process for 6.0.10->6.2.7->6.2.9
caused the device to be offline in the first step (judged based on saved
config revisions). Likely the first reboot got stuck and can't come up
with 6.2.7 since the public IP on wan1...
We have many customers who have an IPsec VPN from customer's each
location with an FGT/FWFrouted all internet traffic over the VPN toward
the customers centralized FW VDOM in our core network.We manage some of
larger customer's CPE FGTs/FWFs by our F...
Which provider, the default internet provider or Provider A, provides
the public IP the VM has? Or do you own the public subnet the VM is
in?If it's from the default internet provider, you have no control for
the incoming path but always come through...
As it says the tunnel interface can not be deleted. When you delete the
phase1-interface the interface under "config system interface" would be
deleted at the same time. However, to be able to delete the
phase1-interface "xxx-Backup" you have to remo...
If you're coming from the internet, unless you advertise the public
subnet where the VM sits in only through Provider A side toward the
internet, instead of advertising via the default internet provider, your
access to the VM's public IP always comes...
Recently one of our 1500Ds encountered the same issue, got stuck after
RAM activation and never started CPU initialization. A strange thing is
it comes up normally when we power-cycle it. Then again it gets stuck
when we reboot it by a command.Since ...
First, the monitoring interfaces are supposed to be for monitoring
in/out interfaces for user traffic, not for HA/hardbeat interfaces. At
this moment, it doesn't seem to be put in production so only port1 seems
to be up. So just remove it.But based o...
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.