DescriptionThis article describes how to use access control list to
avoid VPN generate log for IPSec blocked IP.SolutionPartial packet flow
ingress as shown below:Access control list will be dropping the packet
before it reach IPsec VPN decryption pr...
DescriptionThis article describes how to configure DoS protection’s
quarantine/elapse/reset time for thresholds based on the number of
concurrent sessions.For example.SolutionDefault tcp source concurrent
session is 5000, no timer will be set by defa...
DescriptionThis article describes expected behavior when email server
uses HA management IP as source IP.SolutionBelow is the document link
for 'set ha-direct enable' functionality, and it is only available in
CLI.# config system ha set ha-direct
DescriptionThis article describes limitation on sslvpn mac address check
before and after FortiClient 6.2.SolutionFree FortiClient before version
6.2.-SSLVPN MAC address check is available before version 6.2 but it is
not applied to mobile units like...
DescriptionThis article shows examples of DoS attack log according to
action set on DoS policy.SolutionBelow are the 2 examples of DoS attack
on UDP flood and action taken by FortiGate according to actions
configured.1) If DoS Policy is enabled with ...