Hey Guys, Quick one, does anyone have succeed in creating an IPsec
tunnel with dynamic IP address from remote peer.Please note the remote
peer doesn't have dynamic DNS and they are not using Fortigate as well,
they are using a standard Cisco router. ...
Hey Guys, I have been testing this debug command for a while. I have
setup a firewall security policy to deny "gmail" traffic from inside to
outside (all services deny), I have tested via cmd (tired to ping the
gmail FQDN or ip address, confirmed it ...
Hey ibusby Self-signed cert should be fine as long as you install the
private CA to fortigate remote CA vault prior.However you will need to
ensure all your end users have this CA installed on their PC, so the
chain of trust can be performed accordin...
Hi Sam, If your WiFi gateway is setup on the foritgate.You can use
policy based route to achieve that.Just to match your WiFi subnet and
sent it to your secondary internet. Thanks, BH
Hi, Site B computers need to be able to access a none domain joined DNS
server via s2s VPN.For example if you are able to add those A records to
Fortigate and set up Fortigate address as DNS address for Site B
computer to use, it may solve your case,...
Hi You can use web rating overrides to move dropbox site to your
"company allow category".So fortigate will move this site to your custom
category then you set action "allow" to this custom category. Thanks, BH
