Hi,we have two /29 IP blocks from our ISP. IPs from the first block are
used for SNAT and a few VIPs. There are two default routes, one for each
gateway because both subnets have different gateways. We didn't want
ECMP, so we increased the distance f...
Hi,please refer to the screenshots - why is the FortiGate blocking legit
HTTPS and HTTP traffic? The policy and the corresponding SDWAN rule
should alllow everything. It just doesn't make any sense and the
provided article is not helpful at
all.https...
Hi,we have a VLAN on a 40F that is being provided through some 3rd party
access points. We enabled the disclaimer portal for that VLAN for guest
access. We don't want them to type in an E-Mail or provide guest
accounts.The disclaimer portal works wel...
Hi,I've set the Data Policy for my root ADOM to 120 days for Analytic
logs. All my Fortigates are in that ADOM. However, when I view the logs,
there are only logs available for the last 61 days. It never exceeds 61
days plus a few hours, even though ...
Some weird behavior I saw today. I'm doing NAT for two VLANs on a branch
FGT with two VPN tunnels, so four VIPs in total. Two VIPs for the
primary tunnel and two for the backup tunnel. In noticed that only the
VIPs that reference the backup tunnel ha...
I think the main reason why RPF doesn't block the traffic and asymmetric
routing is not used here is because ingress and egress interface is
still the same for both directions.There are two public IP blocks on
wan1. Only the gateway of block 1 is ins...
Thanks, so is the routing table is negelcted for lookups for reply
traffic and always following the initial session? I've had scenarios
where I forgot to add a static route back to the source and reply
traffic didn't work.
Might be the variable user.local but that only states how much users can
be stored and not how many can be logged in simultaneously. I think the
limit isn't hard coded per model but dependent on system resources.
Thanks, this actually works. Is there a limit on how many clients can
authenticate using the same account and how much users FortiGate can
handle in total?
I found it - it's violation traffic that is logged when a user is
connected but did not accept the disclaimer through the voucher portal.
Took some time to put put one and one together :D But thanks for your
quick help!
