Re: Fortigate 200G active/passive licence

dingjerry_FTNT · 02-14-2025

Description This article describes the requirements of a Server Certificate in an SSL Inspection profile while selecting 'Protecting SSL Server'. Scope FortiGate. Solution When creating or editing an SSL Inspection profile, and selecting 'Protecting ...

dingjerry_FTNT · 02-14-2025

Description This article describes one scenario (GRE + IPSec) that is unsupported for NP7 offloading. Scope FortiGate. Solution NP7 offloading supports the GRE tunnel, including terminating on FortiGate or passing through FortiGate.NP7 offloading sup...

dingjerry_FTNT · 02-09-2025

Description This article explains the behavior of 'Inspect All' in an SSL/SSH inspection profile. Scope FortiProxy. Solution When creating or editing an SSL/SSH inspection profile, there is an option called 'Inspect All'. Full SSL Inspection: Perform...

dingjerry_FTNT · 02-03-2025

Description This article describes the 'Default Device Selection for Install' option in ADOM settings while creating or editing one ADOM on FortiManager. Scope FortiManager. Solution When creating or editing one ADOM on FortiManager, there is an opti...

dingjerry_FTNT · 12-06-2024

Description This article describes how to display images on the a Web Filter Block page. Scope FortiGate. Solution Images can be added to the Web Filter Block Replacement Message with the Replacement Message tag '%%IMAGE:%%'. When the URL is blocked ...

dingjerry_FTNT · 03-25-2025

Hi @Giovanna , If the existing session is TCP based, the default session TTL is 3600 seconds (1 hour). In this case, you need to clear the existing sessions and test it again. diag sys session filter src x.x.x.x // x.x.x.x is the IP of the test PC th...

dingjerry_FTNT · 03-25-2025

Hi @roberto_papa , Could you please attach the FGT config? Or at least share the VIP configurations and relevant firewall policies.

dingjerry_FTNT · 03-24-2025

Hi @MashKhan , Can you show the following configuration? show full log fortianalyzer filter

dingjerry_FTNT · 03-24-2025

Hi @lostboy10 , FGT may not be working for your scenario. You may need FortiWeb.

dingjerry_FTNT · 03-23-2025

Hi @ysingh , First of all, it is PSIRT, not PRIST. This is for the "dynamic" type of IPSec VPN, which is actually for the dial-up type IPSec.

User Statistics

User Activity

Technical TIP: Requirements of Server Certificate in SSL Inspection profile

Technical Tip: GRE +IPSec not supported for NP7 offloading

Technical Tip: Explanation of 'Inspect All' in SSL/SSH inspection profile

Technical Tip: Explanation of 'Default Device Selection for Install' in ADOM settings on FortiManager

Technical Tip: Display images on a Web Filter Block page

Re: Firewall Policies created not working

Re: Unable to reach virtual server on a VLAN

Re: Fortigate logs filtering

Re: Hosting multiple Public URLs on a external interface IP on Fortigate

Re: More information about PRIST

Re: Fortigate 200G active/passive licence

Re: Creation of Custom VSA

Re: How to Allow HIK Vision NVR to Fortigate

Re: Geo-blocking Plan

Re: Failed import configuration to FortiManager

Re: Failed import configuration to FortiManager

Re: FortiAp snmp OID

Re: Fortigate does not resolve local/private FQDN

Re: What is wrong whit this policy?

Re: Product is locked , can't be registered

KCS

Fortinet Training Institute

User Statistics

User Activity

You are leaving our website