Fortinet Community

jintrah_FTNT · 07-15-2022

Description This article describes the FortiGate behavior on its various functions when FortiGuard licenses are expired Scope FortiGate Solution Firewall: Firewall services will be fully functional. High Availability (HA): HA will be fully functional...

jintrah_FTNT · 11-17-2021

Description For some reason, it may be required to clear the route cache on FortiGate. This article describes how to flush FortiGate's route cache. Scope All FortiGate Solution To clear route cache, from cli issue the below command #diag ip rtcache f...

jintrah_FTNT · 11-17-2021

Description This article describes how to disable daylight saving time (DST).This feature is enabled by default but in some cases, the end user may require to disable it for some reasons. Scope FortiOS Solution To disable the DST from CLI, # config s...

jintrah_FTNT · 10-18-2021

Description Terminating a dialup user who is already connected to VPN from VPN access without affecting other users Solution 1) Disable/delete the required dialup user account, or remove the user account from VPN access group defined in phase1 settin...

jintrah_FTNT · 09-22-2021

DescriptionWhen session helpers are involved to allow traffic for an expect session, and traffic logs generated for these sessions references a policy id does not really indicate a correct policy match.Solution Once an expect session is created, it a...

jintrah_FTNT · 06-16-2023

There is no point of keeping that setting in 6.4 when we explicitly configure ha-direct to send logs through the dedicated management interface which is not part of any vdom. And if you remember, even in 6.4 you must have seen this warning when ha-di...

jintrah_FTNT · 06-16-2023

Good that you identified the configuration made earlier that limited the source ip option. Best regards, Jin

jintrah_FTNT · 06-16-2023

Right, so it would make sense to check the config in its entirety to know what limits it from giving the source ip option in your case as the option is possible in 7.2.4 on my device running the same version. I suggest to open a support case for revi...

jintrah_FTNT · 06-16-2023

Thanks, I did check on a 1500D device running 7.2.4, and the source-ip option is existing and configurable.

jintrah_FTNT · 06-16-2023

hi, On the 7.2.5 image, could you share the outcome of "show full" instead of the screenshot showing the outcome of "set ?" Best regards, Jin

Fortinet Community

User Statistics

User Activity

Technical Note: FortiGate behavior when FortiGuard licenses are expired

Technical Tip - How to clear FortiGates route cache

Technical Tip: How to disable daylight saving time (DST) feature

Technical Tip: Removing a dialup VPN user immediately from VPN access

Technical Tip : Logs showing traffic from different source address not allowed in firewall policy

Re: syslogd override source-ip missing from 7.2

Re: syslogd override source-ip missing from 7.2

Re: syslogd override source-ip missing from 7.2

Re: syslogd override source-ip missing from 7.2

Re: syslogd override source-ip missing from 7.2

Re: What is FortiOS's differences between v7.0.x a...

Re: How to disable NGFW and UTM feature on Fortiga...

Re: Inter-VLAN routing issues - FortiGate

Re: Detailed log of configuration changes

Re: Web Filter - Wrong categorization

Re: Web Filter - Wrong categorization

Re: Fortigate80E 2 Wan Problem

Re: FortiGate 200F capacity

Re: Static and dynamic routing, RPF problems, defa...

Re: Can not specify allow and deny ports at a time...

KCS

Fortinet Training Institute