Fortinet Community

bhuo · 05-26-2021

Hey Guys, Quick one, does anyone have succeed in creating an IPsec tunnel with dynamic IP address from remote peer.Please note the remote peer doesn't have dynamic DNS and they are not using Fortigate as well, they are using a standard Cisco router. ...

bhuo · 05-24-2021

Hey Guys, I have been testing this debug command for a while. I have setup a firewall security policy to deny "gmail" traffic from inside to outside (all services deny), I have tested via cmd (tired to ping the gmail FQDN or ip address, confirmed it ...

bhuo · 11-02-2021

Hey ibusby Self-signed cert should be fine as long as you install the private CA to fortigate remote CA vault prior.However you will need to ensure all your end users have this CA installed on their PC, so the chain of trust can be performed accordin...

bhuo · 11-02-2021

Hi Sam, If your WiFi gateway is setup on the foritgate.You can use policy based route to achieve that.Just to match your WiFi subnet and sent it to your secondary internet. Thanks, BH

bhuo · 08-25-2021

Hi, Site B computers need to be able to access a none domain joined DNS server via s2s VPN.For example if you are able to add those A records to Fortigate and set up Fortigate address as DNS address for Site B computer to use, it may solve your case,...

bhuo · 08-25-2021

Hi You can use web rating overrides to move dropbox site to your "company allow category".So fortigate will move this site to your custom category then you set action "allow" to this custom category. Thanks, BH

bhuo · 05-26-2021

Hey Ken, Thanks for pointing out, I will give a try and get back with update. Bill

Fortinet Community

User Statistics

User Activity

IPSEC tunnel with dynamic IP address without using dynamic DNS

Unable to see policy deny message when running debug flow check, fortiOS 7.0

Re: Replacing Default Certificate

Re: add seconde internet connection for only wifi vlan

Re: resolve hostname and ip address in vpn site to site

Re: URL belongs to a denied category in policy

Re: IPSEC tunnel with dynamic IP address without using dynamic DNS

Re: add seconde internet connection for only wifi ...

News & Articles

Security Research

Company

Contact Us