Re: FortiGate HA and LACP with two clusters

sw2090 · 03-04-2026

Hello, I just ran into this: on a FGT I have two policies: One has a VIP as destination to rewrite an ip into a different subnetThe other matches all traffic between the involved subets and interfaces.the policies have exactly this order. In FortiAna...

sw2090 · 10-29-2025

I just ran into this: I have an Adom in FMG. In this is a FGT100F I want to use for lab purposes. It was reseted to factory default before adding it to FMG. It added successfully and I can configure it in FMG. I was able to deploy device configuratio...

sw2090 · 10-20-2025

I ran into this issue on our FortiMail and wanted to let you know: We found a mail going out of the FML that should have been quarantined due to failing DMARC check. However the mail went through to the user even without any filtering. The log only s...

sw2090 · 09-16-2025

I have the following situation: I have a website that in our config is allowed per cathegory due to FortiGuard rating. Now we want to temporarily have webfilter block that site.So I added a web rating override to a local cathegory that is set to acti...

sw2090 · 07-15-2025

I just ran into this: I have a FQDN that used to be rated as "newly observed domain". I create a rating override to a custom cathegory and added that cathegory to the list of reputable sites in the DPI profile. The Site then worked (before that it go...

sw2090 · 03-04-2026

yeah thx for the hint mrsimon007.After this gues that the Session somehow "collides" with the VIP and then FortiOS doesn't know which destinatio to use and fails. I consider this a weird bug in FortiOS and 've opened a Ticket with TAC to have it inve...

sw2090 · 02-27-2026

You also could download one revision of a fgt in the adom that has the objects from FMG device manager. This contains devic config + policy package so has all you objects. Then find the objects in there and copy them and the corresponding headers (e....

sw2090 · 02-27-2026

if you need it in more than one adom in FMG you could also promote these to the global adom so you can assign them to any adom you have enabled for that in the gobal one.Just keep in mind to assign ALL objects because otherwise objects that have no r...

sw2090 · 02-27-2026

I'd suggest using the re-rating Form at FortiGuard Site to request a rating review.YOu can find it here: https://www.fortiguard.com/faq/wfratingsubmit

sw2090 · 02-25-2026

you could generate or import a certificate on the FGT that has the Serial as CN.Then you could tell the FGT to use that to talk to FMG - this step can however only be done on FGT command line): config system central-management set local-cert Certific...

User Statistics

User Activity

Weird beavior of FortiOS with VIP

Issue with proivisioning Template in FMG

Security Whoe in FML 7.4

strange issue with webfilter

Website blocked by webfilter even though exempted from DPI

Re: Weird beavior of FortiOS with VIP

Re: Export / import objects from one ADOM to another?

Re: Export / import objects from one ADOM to another?

Re: Web Filter False Positive - teelam.com flagged since 2018 under previous owner

Re: Couldn't connect Fortigate-VM to Fortimanager (trial licenses)

Re: FortiGate HA and LACP with two clusters

Re: sd-wan vpn

Re: ERR_SSL_PROTOCOL_ERROR on the newest Chrome 13...

Re: ERR_SSL_PROTOCOL_ERROR on the newest Chrome 13...

Re: Disadvantage of using a internal CA issued cer...

Re: Issue with proivisioning Template in FMG

Re: Automatic Updates for FortiManager Integrated ...

Re: Configure DNS server

Re: SFP+ FortiLinks ports

Re: Mapping dynamic object configuration

Super User

User Statistics

User Activity

You are leaving our website