Fortinet Community

Sachin_Alex_Cherian_ · 06-28-2022

Description This article describes how to view the actual client IP details in the FortiGate logs when the FortiGate is receiving the traffic from a proxy device connected to its LAN segment. Scope FortiGate v.6.0.0 or higher FortiGate is handling pa...

Sachin_Alex_Cherian_ · 05-30-2022

Description This article explains the format to properly add the SAN (Subject Alternative Name) while generating CSR (Certificate Signing Request). Scope FortiGate, FortiProxy. Solution The CSR can be generated from System -> Certificates -> Generate...

Sachin_Alex_Cherian_ · 05-17-2022

Description This article explains how to overcome vulnerabilities related to SSH Weak Message Authentication Code Algorithms. Scope When doing vulnerability assessments against the FortiGate. For FortiOS version 7.0 and upper. Solution The vulnerabil...

Sachin_Alex_Cherian_ · 04-20-2022

Description This article explains about the feasibility of managing multiple fortilinks from GUI. Scope FortiOS 6.4.2 and later. Solution This article describes that before version 6.4.2, it is not possible manage/create multiple FortiLink from GUI. ...

Sachin_Alex_Cherian_ · 03-02-2022

Description This article describes how to define a policy route based on MAC address. Scope The FortiGate should be able to see the source MAC address as such if an L3 unit is connected downstream to FortiGate, this will not be applicable as the sour...

Sachin_Alex_Cherian_ · 06-03-2022

Hi Jerry, If you are using SNMP to monitor it should be sending you a trap for temperature alert. But bear in mind this is a Trap event, not something which you can poll from the SNMP monitoring tool. The oid for temperature is: fnTrapTempHigh 1.3.6....

Sachin_Alex_Cherian_ · 05-26-2022

Hi, A PBR configuration has more precedence over an SDWAN rule configuration.

Sachin_Alex_Cherian_ · 05-24-2022

Hi, How are you validating that the FortiGate is blocking the connection? An easy way to check would be to set up a clean policy without any inspection or security profiles. Another option would be to check for the Logs under Log&Reports section. If ...

Sachin_Alex_Cherian_ · 05-24-2022

Hi, The mgmt interface seems to be used for dedicated management access. You might have this configured under 'config system ha'. When you add mgmt interface for ha dedicated management, this interface is not part of any vdom and bound to vsys_hamgmt...

Sachin_Alex_Cherian_ · 04-08-2022

Hi, If the IP list can be maintained on a server, FG can be configured to pull the IP list from the server by adding an external thread feed. If this option interests you, you can have a look at the below link: https://community.fortinet.com/t5/Forti...

Fortinet Community

User Statistics

User Activity

Technical Tip: How to view/log actual client IP on FortiGate when traffic is received from a proxy server

Technical Tip : Adding SAN(Subject Alternative Name) while generating CSR(Certificate Signing Request)

Technical Tip: How to avoid the use of SSH Weak Message Authentication Code Algorithms

Technical Tip: Manage multiple FortiLink from GUI

Technical Tip: MAC address based policy route

Re: 500 E temperature logs

Re: Policy based routing vs SD-WAN Rules

Re: fortinet Block downlod for pc linux

Re: Use MGMT interface as source-ip for radius

Re: how to block 5000 public IP

Re: how to block 5000 public IP

Re: Use MGMT interface as source-ip for radius

Re: Dialup VPN : Strange tracroute

Technical Tip: Best Practices for firmware upgrade...

Re: Dialup VPN : Strange tracroute

Re: Dialup VPN : Strange tracroute

Fortinet Training Institute