Hello, We're running a pair of FortiGate 121G (v7.2.11 build1740) in
active/standby mode, acting as a gateway/DNS and DHCP server for the
wireless guest users.The Security Policy along with the DNS Filter
policy is very generous with literally nothin...
Hi @bwsitadmin I don't block proxy/vpn apps and I do explicitly block
QUIC. For the rest my setup is similar to yours. What I had to do with
DNS: I created two external servers running unbound (under Debian),
modified DHCP scope to include them in th...
It appeared to be a mix of QUIC and Private Relay issues.
https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-block-iCloud-Private-Relay-from-bypassing/ta-p/228629
seemed to help.
Same here (we are using a pair of FortiGate 121G running 7.2.11). The
graceful way would be to trigger "Private Relay Temporarily not
available" message which will enable pass-through mode. I've seen it
before, but cannot reproduce it. Returning NXDO...
Hi @AEK , thanks for you reply!I log everything and so far couldn't find
anything that was blocked, however, I think I noticed that it might have
to do with the DNS resolution.There is a ping utility installed on my
iPhone, and when it happens, I can...
