I tried this and configured a cluster setup with two serials. The first
config starts but ends up "Waiting All Secondaries to Auto-Link" When i
connect the secondary firewall to the internet to do ZTP nothing
happens. It keeps waiting for something t...
Anyone been looking at this and got it worked out? Azure AD domain
joined machines seem a bit different, you can't join the FortiNAC to it,
it doesnt seem able to read from it. wondering how people dealt with
this.
due to the VPN traffic possibly coming in or going out via one of three
interfaces (due to BGP) i felt i should configure the VPN on another
interface of the FortiGate. only the VPN process doesn't want to start
the VPN now, the debug logs shows: 202...
not many FortiNAC users here yet it seems but going to give it a try. im
working on it in a lab environment with FortiGate + managed / fortlink
FortiSwitch (6.2) and FortiNAC 8.8. anyone experiences with that setup
working fine? im getting odd issues...
a bit of a vague subject but is also a vague issue. we got dozens of VPN
tunnels from 100D / 100E (running 6.2.4 currently, but the issue also
happened while on 6.0) to different VPN devices. on some of these it
sometimes happens traffic doesn't flow...
haven't seen any official information on Fortinet products being
affected. for any official Fortinet staff reading this please make that
happen quickly. the IPS signature is
available:https://www.fortiguard.com/outbreak-alert/log4j2-vulnerabilityhttp...
it would probably help if you provide the exact message, a screenshot
perhaps? where is this happening btw, at home or at work? if at work
have you spoken with your IT department about this? if at home, do you
have a general ISP or some smaller / spe...
yeah ok, i get your reasoning. Fortinet seems to be moving away from the
FortiGate models with lots of interface in general is my observation.
and sure you waste some, but in general i don't see it as that much of
an issue. i do understand your point...
the why i can't answer either, doesnt seem needed to me, but that might
be an WAP-W3G thing. you can indeed add a VLAN to an interface and set
it up like that.
