Hi All, 1 of our customers is reporting certificate errors to all
websites. We are using the default certificate inspection (please find
config below) (certificate-insp~ion) # show full-configuration config
firewall ssl-ssh-profile edit "certificate-...
Hi All, We have a remote client VPN defined and have users
authenticating against a local user group. When adding local users to
this user-group on the Fortimanager it shows that there is nothing to
push down to the Fortigate. As this user-group is j...
Hi All, Hope everyone is well. We are hoping to use the Fortimanager to
start building VPNs. Currently each of our customers are mapped from a
Vdom > Adom. We need to build a customer VPN within that Adom. I see
there are 2 options to do this. 1. Use...
Hi, I just wondered the best way to block BBC Iplayer and none of the
other BBC content, looking at it i'm not sure if application control
will work alone. As this is HTTPS content i think we would need to use
SSL deep inspection in proxy mode? Thank...
I think i have answered my own question here. Retrieve - can change back
to last time installed config and also update device config status to
sync, but it will change package status to unknown, you can fix this by
doing an import. Regardless if you ...
Thanks. so the retrieve will pull the full running configuration that is
live on the box except policies which you can import. When you look at
the configuration revision history if i want to go back to the
running-config that was on the box a week a...
Just to be clear here we want to block 2 parts - someone using the
IPlayer app which i think App control can detect and block-
https://bbc.co.uk/iplayer which app control cannot see to detect after
some testing as this is being typed in a browser as ...
Thank you for the prompt response. I see there is 2 inspection types -
SSL certificate inspection- full SSL inspection Can we not use SSL
certificate inspection here or does it have to be full SSL inspection?
Thanks
