In v7.0.7 FortiNet seems to have changed an option: config system
antivirus quarantaine FMG now defaults the destination option to disk.
Due to this policy package deployment will error out on every device
that does support FortiGuard Antivirus but d...
I just found out this issue: I set up a dial up IPSec. It is configured
to do ike v2 and only accept one specific peer id.I then downloaded and
installed latest FortiClient VPN 7 (as I just need VPN for testing
this).I configured that IPSec in my For...
This is what I have: Fortigate on Site with static WAN IPFortigate on
other Side whout static WAN IP What I need:redundant IPSec Tunnel
between those two FGT What I tried: 1) S2S with ddns on one site. Does
not work because S2S by default is negotiat...
This happened here in this constellation: FMG v7.0.5FGT v7.0.9Adom
FortiOS v7 when you create a vip in policy manager you see it in the vip
section in the objects menue but it does not appear in the selection
when you edit or create a policy and they...
I ran into an issue here: I have a zone with several members.Now I need
multicast forwarding for airprint between two members of that
zone.intra-zone-traffic is blocked (per default) which is wanted that
way.So any traffic has to be explicitely allow...
actually what I wrote is not correct: Forticlient 7 does send a peer id
in ikev2 but in fact the timing is wrong. It is sent but it is sent too
late (I see it in log way after it already negotiated proposals and
matched a tunnel). If TAC says somethi...
we found that the default Fortinet DNS that are in FortiOS are rather
slow. So is SDNS if you use DNS filtering since it only uses US servers
per default. Setting system dns to e,g, Cloudflare or our ISPs DNS
srvers together with setting the interfac...
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.