Hi EMS/FGT adminsWhen creating ZTNA proxy rule (in Policy & Object >
Proxy Policy) for clients that are off-fabric, is there anything valid
that we can put in "Source" field other than "all"?Trying to put the
public source address of the client, or e...
Hi FAP & FSW adminsIf I'm not misunderstanding, since managed FAP's and
FSW's configs are pushed from FGT, then it should not be required to
follow upgrade paths for FAP and FSW. Is this correct?
Hi FML adminsOn my new FML 7.6.0 I cant get CLI working from the
GUI.Each tim I try run it I get this message:I try Ctrl-C, Enter,
right-click, Ctrl-d or whatever but doesn't change anything.Updated to
7.6.1 but the issue still the same.While ssh con...
Hi FNAC adminsIn FortiNAC or FortiNAC-F, is there a way to restrict
access to admins to some containers (or switches), in such way some
admins can manage some switches, and some other admins can manage some
other switches.
HelloIn some cases I noticed the temporary license expires about 5 to 10
days before time. I mean instead of expiring after 60 days it expires
after 50 or 55 days.I've seen this behavior two times, one on a FortiWeb
an one other on a FortiMail.Did an...
Hi RamadanYour firewall will log the traffic even if your server rejects
the connection request. That's the normal behavior, because the firewall
sees the request and sees the connection closure, so it just logs what
it sees.
Hi PotatoI don't think it will work like that, because the FG Master may
not see the CheckPoint Master.Even in AA-HA, FG master is the one who
receives the incoming traffic, so you need a switch between the two
firewall clusters.
If you buy a second hand FGT, make sure you can ask Fortinet to move the
ownership from the original owner to you. I know this is not always the
case, but I don't actually know under which conditions it is possible.
Maybe some experienced user can pr...
HiCan you check on FGT if the RADIUS authentication still works?In
RADIUS config, just perform an authentication test, enter user and
password and see if authentication is successful.