Hi,FortiClient doesn’t support importing just one IPSec tunnel without
replacing the whole configuration. The XML import always overwrites the
existing file. If you want to distribute a single tunnel, the best
options are to share the connection para...
HiYou can block LinkedIn games by enabling Application Control with SSL
deep inspection. Include the “Social Networking Games” category in your
policy so FortiGate can detect and block that traffic. If it still
doesn’t work, make sure no policy bypas...
HiFrom the debug output, the FortiGate correctly starts the EAP process
and reaches the RADIUS server, but the exchange stops right after the
challenge phase with FNBAM_DENIED. This usually means the RADIUS server
doesn’t fully support MS-CHAPv2 or t...
Great to hear that it worked!Regarding the GUI view, FortiGate doesn’t
always display redistributed prefixes under BGP Paths, especially if
they were learned dynamically or the table hasn’t refreshed yet. The ?
origin code simply means the routes wer...
Hey Adrian,In my experience, you can’t actually manage a FortiSwitch
from two standalone FortiGates at the same time, even with separate
FortiLinks. Only one FortiGate can act as the FortiLink manager.If you
need redundancy without HA, VRRP could han...
