We have two Fortigates of interest FGT1 and FGT2 participating in both
area 0 and area 12.FGT1 receives a route from FGT3 via FGT2 via area 0
(as expected).But FGT2 receives a route from FGT1 via area 12 (not
expected).This creates asymmetric routing...
I am using a generic cisco style USB to serial cable to gain console on
a 60F. The host in a small raspberry pi. This works fine except when the
FortiGate is rebooting. Between "Restarting System" and "System is
starting..." the console reads garbage...
Hi All, Looking for wisdom, tips or links (in this forum, tech tips, KB
articles, or more general as appropriate).Please forgive my lack of
knowledge on this topic.I do know other things. We use Fortigate
firewalls heavily in our field network with q...
I am interested to create a policy that restricts access to number of
websites (eg social media, youtube shorts) to a limited period say ten
minutes per hour.A simple schedule (the first ten minutes of the hour)
is not suitable, the timer should star...
On a FGT60E running FortiOS v6.4, is there a way to create a "switch"
with interface members internal2 and vlan_xyz? Once we have the two
interfaces bridged we wish to control (typically, block) multicast
propagation between the two. In FortiOS 6.4 I...
The Fortigate RJ45 pinout is a subset of the Cisco RJ45 pinout. There
are posts on this forum (admittedly from long ago) advising that the
Cisco cable works fine (and this was my prior experience).If the
terminal emulator in use implements hardware f...
TLDR: The FGT-60F console port behaves differently to FGT-60D and
FGT-60E. It requires the Fortinet USB console cable instead of a Cisco
generic USB console cable to access the boot menu whereas older hardware
does not. Normal RS232 cables work with ...
Thank you. I did not even know there was a Fortinet USB console cable
(we use 60 series hardware). I've purchased a couple of cables and
waiting for them to arrive. Pondered asking our Account Manager but
figured this was quicker. While waiting I hav...
Hi AEK, Thank you for your reply. What are the options to manage DHCP
reservations at scale? In our case we have several thousand reservations
required. I am interested to find out if the endpoint presents a MAC,
being a cellular connected device; we...
Old thread, exactly same question.I already realised my advertised host
IP did not match the routing table so I created a blackhole route, but
after that traffic is not forwarded by the matching policy because
`reverse check fail, drop` ie the source...
