Hi, Fortimanager VM v6.0.0 Can anyone shed any light on why some policy
rules fail to import with the following errors? Other policy rules do
import correctly, I got 26 out of 42 successful imports. The others fail
with these errors: "firewall policy...
Hi, How can I replicate this Juniper policy-statement config on the
Fortigate? I can't see a way to replicate multiple terms on a route map
or prefix-list. policy-statement TEST-POLICY { term term-1 { from {
route-filter 1.1.1.0/24 exact; } then { as...
Hi, Fortigate 50E v 6.0.2I'm trying to block executable files being
uploaded to to an ftp server using DLP but having some issues. I've set
the inspection mode to proxy and used the DLP configuration below. The
problem is the file transfers are not b...
Hi, I have an unusual situation where we have one company that wants to
split into two in the longer term. I am looking at putting in a
Fortigate split into a vdom for each new company. The plan is to use the
same switch infrastructure but have vlans...
Hi, Is there a way to enable AES256GCM ipsec vpn encryption on the 60D
or 90D Fortigates? I'm assuming it is a hardware limitation as it is
available on the 100D. Thanks Dan
toshiesumi wrote:I would simply split into two and no communication at
those two org vdom level, just like you have two different FW devices
for each. If you need them to share the same internet circuit, I would
let "root" vdom terminate it and stati...
I'm having a similar issue with VOIP if anyone has got any great ideas
for killing sip sessions on the less preferred link following primary
link restoration? Cheers
emnoc wrote: You could try this , 1: configure a loopback interface with
some bogus address 2: config a PBR with the src being the mail server or
whatever 3: set output device to be the loopback e.g config system
interface edit "lo0" set vdom "root" ...
