Fortinet Community

Yurisk · 03-08-2021

Good day everyone, I'd be glad to hear your input on - what are benefits/disadvantages of IPSec site-to-site 2 tunnels between 2 Fortigates, each having 2 ISP links inside/outside SD-WAN membership? SD-WAN config including both ISP links for Internet...

Yurisk · 03-03-2021

Good day everyone, I am trying to get real-time throughput/bandwidth of the traffic passing the Fortigate stats, but to no avail so far. I need it 30-60 days back, so FortiView does not help here. I tried querying perf-stats log column which is sent ...

Yurisk · 10-14-2020

Good day everyone,I am trying to understand how and what for to use peertype dialup settings in Phase1 interface mode for IPSec VPN client connections. The documentation just lists this option, Google tells contradicting stories. I tried just for luc...

Yurisk · 08-06-2020

Good day everyone,I am trying to understand why - is it a bug/normal behavior/or my misunderstanding, and your help is much appreciated.Problem: FGVM learns via BGP some route, then using route-map, sets its next hop to dummy address 192.0.2.1, which...

Yurisk · 06-03-2020

Hello everyone,I've noticed Fortinet docs less and less mention diagnose debug commands in the documentation. Where do you find them when in need, especially for the new FortiOS versions? There was once Wiki https://wiki.diagnose.fortinet.com with al...

Yurisk · 08-31-2022

There is no documented way of doing so, at least, only in Web GUI. 

Yurisk · 08-28-2022

Status as of 2022: It is still not possible to get detailed stats on CPU/mem usage back in time on the FOrtigate itself (I mean like cpview on Check Point firewalls). If you have a FortiAnalyzer, then Fortigate sends every 5 mins (if I remember corre...

Yurisk · 08-28-2022

Finally, starting with 7.2.1, Fortinet removed this limitation - now even in the evaluation license the admin https session is normal, using TLS 1.2. Screenshot from FIrefox connected to the eval FortiOS VM 7.2.1:

Yurisk · 08-28-2022

Hi,there is no built-in tool/way to export rulebase/objects directly into XLS/CSV/etc formats. You can:Export configuration - it is a structured text file, so it can be parsed with scripts quite easilyGet needed info by using Fortigate API and script...

Yurisk · 08-11-2022

If you don't intend to separate accessible from the Internet hosts into a different network, then doing the regular VIPs (Virtual IPs) will do the job, and is the most simple to implement.

Fortinet Community

User Statistics

User Activity

IPSec VPN tunnels inside versus outside SD-WAN - benefits?

What bandwidth does "perf-stats" actually measure ?

VPN IPsec dialup peertype - how to use

BGP does not install route in RIB if the next hop is a blackhole, RTBH configuration

The case of disappearing diagnose debug commands in the documentation and references

Re: fortiweb update signature manually using cli

Re: Debug CPU usage

Re: Eval VM Fortigate (v6.2.3) and admin GUI self-signed certificate access

Re: How to export rulebase to html or xls?

Re: Additional public IP addresses

Re: Detailed log of configuration changes

Re: Delete Local-in Policy

Re: how to block malicous ip || 5000 IPs ||

Re: FortiOS and Fortigate Image

Re: Web filtering vs DNS filtering

Re: Delete Local-in Policy

Re: Read inside DNS requests

Re: Statefull Firewall

Re: To Block psiphon vpn application at Fortigate ...

Re: session clash in Fortigate

News & Articles

Security Research

Company

Contact Us