Re: Fortigate OSPF routes

Toshi_Esumi · 01-14-2025

I saw some conversation about stopping auto-upgrade on FGTs before after 7.2.8. And, we're doing it manually for those FGTs that are NOT managed by FMG. Then when we tried the same for those managed by FMG, the change was rejected because it's manage...

Toshi_Esumi · 10-23-2024

This version of FMG was released last week and now CVE-2024-47575 is released as well.https://www.fortiguard.com/psirt/FG-IR-24-423However, the release notes doesn't have anything in the resolved issue section. Does this actually have the vulnerabili...

Toshi_Esumi · 07-24-2024

A basic question: Would Websocket app (TCP 443) traffic be filtered by a policy with a Web Filter profile? Or do we need to match it with Application Control in a separate policy before or after the web filter policy?Thanks, Toshi

Toshi_Esumi · 07-21-2024

I'm working on migrating my home OpenSUSE machine I'm using for freeradius server to authenticate admin and VPN users on my FG40F(7.2.8) from Leap 15.3 to 15.5(on a new machine). Obviously 15.5's repo has a newer version of freeradius-server image.Th...

Toshi_Esumi · 05-07-2024

As all the other users at FortiCloud must have gotten, I received an announcement email per email account for 2FA auth enforcement starting June the 7th.My question is if it would apply to this Forum login account. I've kept using my old account emai...

Toshi_Esumi · 05-22-2025

I understand where @Yurisk 's comment is coming from. I think for the same reason I haven't tried with FGTs we manage although some of them have more than 100 neighbors. But, we do use neighbor groups with Juniper routers for our large scale network ...

Toshi_Esumi · 05-22-2025

I haven't used the range and group yet but found this conversation two years ago. Look at @kcheng 's comment:https://community.fortinet.com/t5/Support-Forum/BGP-Neighbor-Ranges/m-p/290127Toshi

Toshi_Esumi · 05-22-2025

I created below admin profile and used it with a test admin account in my multi-vdom environment. But it works as I/you expected. Mine is 7.4.7. It might be a bag in 7.4.5. Open a ticket at TAC and ask them if it's a bag, which was fixed in either 7....

Toshi_Esumi · 05-21-2025

The (default?) static route stays up unless the interface/wan1 goes down. If you have a switch, even when ISP's L1/L2 goes done, the wan1 port never goes down. You need to set up a link-monitor over wan1 interface then it would remove the static rout...

Toshi_Esumi · 05-21-2025

Don't do it at home! FTNT might not support it any more.Toshi

User Statistics

User Activity

Stop auto-firmware-upgrade via FMG

FMG 7.2.8

Websocket app traffic with Web Filter

RADIUS attribute: Message-Authenticator

FortiCloud login 2FA enforcement

Re: BGP neighbor-group implementation

Re: BGP neighbor-group implementation

Re: Fortigate: Custom admin profile does not work

Re: WAN1 to WAN2 Failover Doesn't Work

Re: Fortigate 60F

Re: Fortigate OSPF routes

Re: Redistribute iBGP routes to OSPF in FortiGate

Re: Layer3 Fortiswitch

Re: FortiGate stripping BGP TCP option 19

Re: Fortimanager best practice

Re: Two WANs for different purposes

Re: Vlan interfaces on multiple VDOMS

Re: Automatic Updates for FortiManager Integrated ...

Re: Fortigate not responding to specific IP but ca...

Re: Buy a license for used Ebay fortigate

Super User

User Statistics

User Activity

You are leaving our website