I saw some conversation about stopping auto-upgrade on FGTs before after
7.2.8. And, we're doing it manually for those FGTs that are NOT managed
by FMG. Then when we tried the same for those managed by FMG, the change
was rejected because it's manage...
This version of FMG was released last week and now CVE-2024-47575 is
released as well.https://www.fortiguard.com/psirt/FG-IR-24-423However,
the release notes doesn't have anything in the resolved issue section.
Does this actually have the vulnerabili...
A basic question: Would Websocket app (TCP 443) traffic be filtered by a
policy with a Web Filter profile? Or do we need to match it with
Application Control in a separate policy before or after the web filter
policy?Thanks, Toshi
I'm working on migrating my home OpenSUSE machine I'm using for
freeradius server to authenticate admin and VPN users on my FG40F(7.2.8)
from Leap 15.3 to 15.5(on a new machine). Obviously 15.5's repo has a
newer version of freeradius-server image.Th...
As all the other users at FortiCloud must have gotten, I received an
announcement email per email account for 2FA auth enforcement starting
June the 7th.My question is if it would apply to this Forum login
account. I've kept using my old account emai...
What's 7.6.3's document @AEK referred to is saying is you need to use
IPsec VPN over TCP like on port 443, just like SSL VPN.One possible
issue is I heard a rumor that IPsec over TCP feature would be dropped
with FortiClient VPN (free version without...
Probably I should have showed for other readers of this post (I know you
already know this) how the group is configured:config user group edit
"first_group/second_group" set member "azure-saml" <-- this is the same
SAML for both groups config match e...
I would suggest just open a ticket at TAC and call in. So that a TAC
person who has expertise in this operation can take a look inside the
FGT to troubleshoot. One of those two 100F customers I mentioned uses
Entra ID groups to separate two user grou...
As far as I know SSL VPN wouldn't go away any time soon if your FGT is
100F, a rack-mountable model with 7.6GB memory. Two of our customers are
using 100F for their HQ with SSL VPN, and we're assuring them they can
keep using it.First I have to tell ...
