Technical Tip: Extracting SSL Server certificate f...

kwcheng__FTNT · 12-02-2024

Description This article describes how to check whether an address SSL connection is exempted by FortiGate SSL/SSH profile Scope FortiGate. Solution SSL exemption can be configured in both certificate inspection and deep inspection profiles for many ...

kwcheng__FTNT · 12-01-2024

Description This article describes how to check whether the firewall policy is oversized. Scope FortiGate. Solution A policy can potentially become oversized when modifying a variety of objects. It can cause the policy to malfunction when it is overs...

kwcheng__FTNT · 11-05-2024

Description This article describes the typical circumstances behind the 'Modem failed to open'. Scope FortiGate. Solution The sample system event message will be looked like below: type="event" subtype="system" level="information" vd="root" logdesc="...

kwcheng__FTNT · 11-04-2024

Description This article describes the typical circumstances behind the 'Temperature too low'. Scope FortiGate. Solution The sample system event message will be looked like below: level="warning" logdesc="Temperature too low" logid="0100022152" logve...

kwcheng__FTNT · 10-06-2024

Description This article describes how to list all IP addresses used on the FortiGate for troubleshooting purposes. Scope FortiGate. Solution Knowing what IP address is used on the FortiGate is crucial for troubleshooting and configuration purposes i...

kwcheng__FTNT · 11-12-2024

As said, receiving 401 errors simply indicating the FWB still unable to authenticate the users successfully. Whether the FWB is waiting for a specific response from FAC or the received packet is not identifiable, you might want to initiate a TAC tick...

kwcheng__FTNT · 11-11-2024

When FortiWeb repeats HTTP 401, it simply means the authentication failed. Since you had confirmed that the authentication passed in the Fortiauthenticator, perhaps it is caused by timeout setting if it took more than 2 seconds for the FAC to respons...

kwcheng__FTNT · 11-11-2024

It should be the same as the standard DNS resolution process, whether your FortiGate is a reclusive or non-reclusive DNS.

kwcheng__FTNT · 11-11-2024

Hi I would think the configuration sequence is not correct. Try to configure or reset the configuration of mgmt port the same as the rest of the ports like port1-12. Consider to add the "dedicated" option after you successfully use it under HA config...

kwcheng__FTNT · 11-08-2024

I believe you are talking about FortiADC global load balancing. You can refer to the handbook link below: https://docs.fortinet.com/document/fortiadc/7.2.5/handbook/741804/global-load-balancing-basics Regards Patrick

User Statistics

User Activity

Technical Tip: How to check whether an address SSL connection is exempted by FortiGate SSL/SSH profile

Technical Tip: How to check whether the firewall policy is oversized

Technical Tip: Understanding the log message 'Modem failed to open'

Technical Tip: Understanding the log message 'Temperature too low'

Technical Tip: How to list out all IP address used in the FortiGate

Re: FWB HTTP authentication via RADIUS with FAC

Re: FWB HTTP authentication via RADIUS with FAC

Re: DNS Server in the Interface set as Interface IP

Re: Need guidance on how to create dedicated HA management port for HA cluster memebers

Re: FortiADC HA Network Link

Technical Tip: Extracting SSL Server certificate f...

Technical Tip: Understanding why Radius password r...

Re: Need guidance on how to create dedicated HA ma...

Re: FortiADC HA Network Link

Technical Tip: Understanding the log message 'Mode...

Re: Need guidance on how to create dedicated HA ma...

Fortinet Training Institute

KCS