Fortinet Community

Vbharath_FTNT · 07-17-2019

DescriptionThis document describes how to upgrade FortiAnalyzer firmware. v\:* {behavior:url(#default#VML);} o\:* {behavior:url(#default#VML);} w\:* {behavior:url(#default#VML);} .shape {behavior:url(#default#VML);} Normal 0 false false false false E...

Vbharath_FTNT · 07-10-2019

Description This document explains how to mitigate the improper check of the certificate revocation vulnerability in FortiOS. FortiGate configuration steps outlined in this article can also be completed using FortiManager, if the FortiGates are manag...

Vbharath_FTNT · 02-01-2019

PurposeThis article explains how to add X-fowarded-for and X-forwarded-proto headers to HTTP(S) traffic towards a webserver protected by the FortiGate unit (Virtual IP). Normal 0 false false false EN-US X-NONE X-NONE /* Style Definitions */ table.Mso...

Vbharath_FTNT · 07-26-2017

DescriptionThis article explains how to configure URL based address objects to work with HTTPS requests when using with webproxy.SolutionFrom FortiOS v5.2.x, URL based address objects can be configured on the FortiGate unit to allow specific URL usin...

Vbharath_FTNT · 02-20-2017

DescriptionThis article provides some design considerations for HA Active-Active cluster load-balancing UTM sessions when using Redundant interfaces.SolutionIn Active-Active HA, the Master unit can load balance Proxy based UTM sessions to the slave u...

Vbharath_FTNT · 11-09-2016

Hi,Can you give more details of your setup ?FGT Model, number connections/sessions per sec etc.. ?If you can just copy/paste firewall policy cli config here, that would be helpful to understand as well.RegardsViswa

Vbharath_FTNT · 05-06-2015

Hi, User authentication timeout is idle timeout by default which means the user/host should not generate any traffic for xxx number of minutes minutes configured under user authentication timeout. In case if any application is generating traffic from...

Re: User Identity Policy and NTLMv2 · 05-06-2015

Hi, NTLM V2 is supported. You can do a packet capture on client PC and use wireshark filter "ntlmssp.ntlmv2_response" to confirm this..Viswa

Vbharath_FTNT · 05-06-2015

Hi Yassine, This will be the perfect solution for you without using the open authentication. http://kb.fortinet.com/kb/microsites/search.do?cmd=displayKC&docType=kc&externalId=FD36141 in your setup, create firewall policy from your WIFI network > For...

Vbharath_FTNT · 05-06-2015

Hi, you should be able to use explicit proxy in NAT VDOM. Can you explain your setup/connectivity of NAT VDOM ? what is the exact error you are getting at client side ? ./Viswa

Fortinet Community

User Statistics

User Activity

Upgrading FortiAnalyzer Firmware

Technical Tip: Solutions for improper check of the certificate revocation vulnerability in FortiOS

Technical Tip: How to add X-forwarded headers to the traffic towards protected Webserver behind FortiGate unit.

Technical Note: Using URL based address objects to allow HTTPS requests with webproxy

Technical Note: Design considerations for HA Active-Active cluster load-balancing UTM sessions when using Redundant interfaces

Re: slow performance tns helper (port 1521) after upgrading

Re: Session duration longer than timeout

Re: User Identity Policy and NTLMv2

Re: Captive Portal

Re: explicit proxy in nat mode

Technical Tip: How to update a local certificate i...

Technical Tip: How to upgrade the FortiGate firmwa...

Technical Tip: How to add X-forwarded headers to t...

Fortinet Training Institute