Technical Tip: WAD (wad-config-notify) process con...

nathan_h · 08-21-2025

Description This article describes how to fix an issue where the user is unable to login on SSL VPN with 2 ISPs having different MTUs. For example: one ISP is a PPPOE interface, and the other one is a regular physical interface. FortiClient gets stuc...

nathan_h · 07-24-2025

Description This article describes that fragmented packets are not sent out when IPsec npu-offload is enabled. This is for an IPsec tunnel configured with vpn-id-ipip encapsulation and with NP7 Hardware model. Scope FortiGate. Solution Network Topolo...

nathan_h · 06-25-2025

Description This article describes unexpected behavior of the CLI configuration on a custom Category or Local Category where 'set allow' cannot be configured. Scope FortiGate. Solution The Custom Category testcat Action is set to Allow. In the GUI: ...

nathan_h · 06-25-2025

Description This article describes how to determine the URL to block when blocking a specific part of a website. Modern websites use JavaScript to send a HTTP request to the server without reloading the whole page. It will use the API fetch functions...

nathan_h · 05-21-2025

Description This article describes the behavior of how SSH login generates 'Admin login failed' log. It will only log 1 entry per SSH connection of password input. Scope FortiGate. Solution 2 wrong passwords have been entered twice (2 successive pass...

nathan_h · 12-17-2024

You can use ISDB on SDWAN rule. We have ISDB for Google.

nathan_h · 09-14-2024

You can try to disable the blocking on the browser. It might be the browser already blocked it and the request didn't reach the Fortigate

nathan_h · 09-14-2024

Hi solo1, As far as I know, you normally don't need select which logs you will forward to them. You just need to send all of the logs to them via Syslog. Their SIEM solution should be able to handle the logs for threat hunting.

nathan_h · 09-13-2024

Hi RSJohan, If you have FortiAnalyzer. you can use Fortiview to check the sessions and from there you will be able to check what ports are used. Keep adding a Firewall Policy at the top and then monitor the original policy if there is still a hit and...

nathan_h · 09-12-2024

Hi Ruelb2214, I understand that Fortigates on the right side are on HA. Since the switch is not a stack, you won't be able to cross connect the LACP. See guidelines below. https://community.fortinet.com/t5/FortiGate/Technical-Tip-Aggregate-link-confi...

User Statistics

User Activity

Troubleshooting Tip: Unable to login on SSLVPN with 2 ISPs having different MTUs

Troubleshooting Tip: Fragmented packets are not sent out on IPSEC tunnel with vpn-id-ipip encapsulation (NP7 Hardware model)

Troubleshooting Tip: Web Filter Category shows 'allow' in the GUI but shows 'monitor' in the CLI

Troubleshooting Tip: Unable to block specific part of the website even with deep inspection enabled

Technical Tip: 'Admin login failed' log generation with SSH

Re: SDWAN Rules

Re: FortiOS 7.4.4 Web Filter didnt show replacment message (Blocked Page)

Re: What FortiOS Event Logs should i send to my SOC from my Fortigate Firewall?

Re: Locking down loose policies

Re: LAG connection setup

Technical Tip: WAD (wad-config-notify) process con...

Troubleshooting Tip: Read-only access when accessi...

Troubleshooting Tip: Web Rating Override is not ta...

Re: Locking down loose policies

Re: BGP routing strategy with two IPSec Connection...

Re: BGP routing strategy with two IPSec Connection...

KCS

User Statistics

User Activity

You are leaving our website