Hello, I have multiple IPSEC site-to-sites terminating on our Fortigate.
I recently setup a new site-to-site with an ASA that has multiple (15)
subnets. I created 15 different phase 2 selectors which I know also
match on the ASA side. Since the tunne...
Hello, I am looking for a guide on setting up a site to site with an
Amazon E2 instance. All of the guides I have found reference a virtual
fortigate within AWS that communicates down with our data center
fortigates. This sounds wonderful but is expe...
Hello, I have my current SSL VPN setup using our Radius server. All that
has currently used VPN was staff. We now have a need to allow vendors to
also access the remote VPN. I can't figure out how to create a Radius
group that looks at which AD group...
Hello, Can someone tell me what the default session-ttl value is? When I
run config system session-ttl and show I get nothing.(session-ttl) #
show config system session-ttl end I see it set in various firewall
policies as "set session-ttl 0" which te...
Hello, I am trying to setup web access via SSL VPN. I am using split
tunneling which appears to be the problem. I made the various policies.
The SSL > Inside is working great. I am trying to do SSL > other
interfaces we have but cannot get any of tho...
Weird bug.. I had the same issue with the same error going to an AWS VPN
connection. I re-pointed the tunnel to a bad IP, saved, then pointed it
back while watching the debug. The connection dropped, the related
policies were disabled, then when I po...
Sorry I know this thread is old, but I would LOVE this feature. Is this
already there and I don't know about it? I have searched through the
monitoring/logging menus but do not see it. I know I can do it with
external monitoring tools, but it would b...
Thank you! This is exactly what I was looking for. I didn't realize
there was a difference between show and show full-configuration. This
has explained a lot!
To accomplish this I have a traffic shaping policy in place for both
"shared" and "per-ip". The shared shaper is what the group or policy can
use max and the per-ip shaper is just as it sounds. I have 10Mbps for
the shared shaper (group) and 1.5Mbps ...