Fortinet Community

live89 · 04-22-2021

Hi We are facing this issue that the FAC is rejecting CSR generated from our IIS server, and giving this error messageImport has failed: module 'lib' has no attribute 'X509_delete_ext' If I generate the CSR let say from another OS , linux for example...

live89 · 02-02-2021

Hi What is the difference between:set additional-path-select<#> under config router bgp andset adv-additional-path <#>under config neighbor attached screenshot Also, I sow on the other peer this:set additional-path receiveI disable it by:set addition...

live89 · 11-23-2020

Has anyone faced issue with SCEP in FGT VDOM mode ? I have two environments where I use SCEPone environment has fortigate and fortiauthenticator , while the fortigate is not in vdom mode . And I use there SCEP for auto certificate enrollment and its ...

live89 · 09-17-2020

Hi I'm trying to site to site VPN to be up all the time even when there is no trafficI went through this KB but didn't helphttps://kb.fortinet.com/kb/documentLink.do?externalID=12069What happens here is that our S2S goes down from time to time , if t...

live89 · 08-18-2020

Hello Can someone explain to me differences between setting bfd in BGP and setting fast-external-failoverNot configuration level, but operational level?

live89 · 02-02-2021

Thank you bothI investigated the issue with support, and it was a misunderstanding of this commandAs i ran two IPSEC VPNs towards the HQ additional to the main IPVPN line, I was always receiving three routes if ibgp-multipath is enabled, no matter if...

live89 · 02-02-2021

Hi Ken Thanks for your answer I did some extra research for the first part of my question regarding 'set additional-path-select' and I think it is only for calculation bestpath process. And the 'set adv-additional-path ' is stating for how many bestp...

live89 · 11-28-2020

if you're facing this issue explained in this article: https://kb.fortinet.com/k....do?externalID=FD49851and still cannot delete certificate when the certificate is revoked and expired (as described in the article) then maybe you can try this out:htt...

live89 · 09-22-2020

I have the same situation were we have FML behind FGT and in FAZ we see lots of "Deny: DNS error" and "IP connection error" from FML source IP.I tried deleting the DNS session-helper but that didn't help.And in FML system events we see: UDP DNS respo...

live89 · 09-20-2020

Because of "set auto-negotiate enable".If this setting is enabled then keepalive disappears from phase2 settings.But i tried that also.

Fortinet Community

User Statistics

User Activity

FortiAuthenticator rejecting IIS generated CSR

BGP additional-path-select

SCEP certificate enrollment failed | VDOM

Forcing site to site altime UP

BGP bfd and fast-external-failover

Re: BGP additional-path-select

Re: BGP additional-path-select

Re: FortiAuthenticator (6.1.0) cannot delete expired or revoked certificate

Re: Fortigate 100D Fortios 5.4.1 Deny: DNS error

Re: Forcing site to site altime UP

Re: Console Not working

Re: BGP additional-path-select

Re: BGP additional-path-select

BGP additional-path-select

Re: ftp server

Re: Object services in fortigate.

News & Articles

Security Research

Company

Contact Us