Technical Tip: WAD (wad-config-notify) process con...

nathan_h · 05-21-2025

Description This article describes the behavior of how SSH login generates 'Admin login failed' log. It will only log 1 entry per SSH connection of password input. Scope FortiGate. Solution 2 wrong passwords have been entered twice (2 successive pass...

nathan_h · 04-10-2025

Description This article describes how to resolve issues related to the errors 'peer has not completed Configuration Method' and 'debug error mode-cfg not completed'. FortiGate is configured with dial-up IPsec with mode-cfg enabled. Scope FortiGate. ...

nathan_h · 04-07-2025

Description This article describes how to extract Console logs downloaded from the GUI. Windows Subsystem for Linux can be installed to run Linux commands. When the console logs are downloaded from the GUI, it is not viewable with a text editor becau...

nathan_h · 03-03-2025

Description This article describes how to fix if the web rating override on a Web Filter profile is broken with the configured action after an upgrade to v7.2.11, v7.4.6 , v7.4.7, v7.6.1 ,and v7.6.2 Scope FortiGate v7.2.11, v7.4.6, v7.4.7, v7.6.1, v7...

nathan_h · 02-06-2025

Description This article provides a workaround when it is not possible to log in on SSL VPN with SAML Microsoft Entra ID relying on an internal browser in FortiClient v7.4.x. The issue was observed when the FortiGate was upgraded to v7.0.17, v7.2.11,...

nathan_h · 12-17-2024

You can use ISDB on SDWAN rule. We have ISDB for Google.

nathan_h · 09-14-2024

You can try to disable the blocking on the browser. It might be the browser already blocked it and the request didn't reach the Fortigate

nathan_h · 09-14-2024

Hi solo1, As far as I know, you normally don't need select which logs you will forward to them. You just need to send all of the logs to them via Syslog. Their SIEM solution should be able to handle the logs for threat hunting.

nathan_h · 09-13-2024

Hi RSJohan, If you have FortiAnalyzer. you can use Fortiview to check the sessions and from there you will be able to check what ports are used. Keep adding a Firewall Policy at the top and then monitor the original policy if there is still a hit and...

nathan_h · 09-12-2024

Hi Ruelb2214, I understand that Fortigates on the right side are on HA. Since the switch is not a stack, you won't be able to cross connect the LACP. See guidelines below. https://community.fortinet.com/t5/FortiGate/Technical-Tip-Aggregate-link-confi...

User Statistics

User Activity

Technical Tip: 'Admin login failed' log generation with SSH

Troubleshooting Tip: IPsec Tunnel is not coming up due to the error 'debug error mode-cfg not completed' in IKEv2 dial-up IPsec tunnel

Technical Tip: How to extract Console logs downloaded from GUI with Ubuntu WSL

Troubleshooting Tip: Web Rating Override is not taking effect after upgrading to v7.2.11, v7.4.6 ,v7.4.7, v7.6.1 ,and v7.6.2

Troubleshooting Tip: Unable to login on SSL VPN (48 %) using SAML Microsoft Entra after an FortiGate upgrade to v7.4.7/v7.0.17/v7.2.11/v7.4.8 'error, could not found corresponding saml session 101'

Re: SDWAN Rules

Re: FortiOS 7.4.4 Web Filter didnt show replacment message (Blocked Page)

Re: What FortiOS Event Logs should i send to my SOC from my Fortigate Firewall?

Re: Locking down loose policies

Re: LAG connection setup

Technical Tip: WAD (wad-config-notify) process con...

Troubleshooting Tip: Web Rating Override is not ta...

Re: Locking down loose policies

Re: BGP routing strategy with two IPSec Connection...

Troubleshooting Tip: Read-only access when accessi...

Re: BGP routing strategy with two IPSec Connection...

KCS

User Statistics

User Activity

You are leaving our website