One of our FGTs managed by FMG somehow lost connection to the FMG. It
has two internet, wan1 and wan2. But probably when wan1 went down the
FMG changed connection to wan2, then wan2 went down. Currently wan1 is
up and operational, but somehow the cen...
Last night one of FWF60Es' upgrade process for 6.0.10->6.2.7->6.2.9
caused the device to be offline in the first step (judged based on saved
config revisions). Likely the first reboot got stuck and can't come up
with 6.2.7 since the public IP on wan1...
We have many customers who have an IPsec VPN from customer's each
location with an FGT/FWFrouted all internet traffic over the VPN toward
the customers centralized FW VDOM in our core network.We manage some of
larger customer's CPE FGTs/FWFs by our F...
I have a TAC ticket going on since my remote RADIUS user with an FTM
stopped working after upgrading the FortiAuthenticator from 6.3.3 to
6.4.4. Then I was told to configure a remote RADIUS username with a
realm as just like "tesumi" without a realm ...
I thought SSL VPN sessions were synced so I could do the swap stealthy
to recover the "Error"ed tokens after a swap over when the cluster was
upgraded last night to 6.4.9. I was wrong and all SSL VPN customers are
complaining about the drops. All act...
Thank you for your effort Anthony.Based on what I can see, it seems that
the FGT side newly tried to get registered at FMG because I
manually/directly configured "config sys central-managment" with the
FMG's IP again (I deleted the request at root AD...
I'm assuming both sides are advertising/learning the same routes to/from
the other end on both circuits with eBGP. Then I would set the local
preference on the primary learned routes higher than secondary. Then
when the primary BGP comes back up, alm...
Maybe an issue with the old 6.0.2? The config looks fine.My home 40F
uses the same default "notification.fortinet.net" as SMTP server and no
"reply-to" is configured. But it's 6.4.10 and the config has "set
username" configured and the source email h...
Probably because you didn't configure "set reply-to" under "config
system email-server" in