Technical Tip: Bi-directional Forwarding Detection...

aionescu · 06-26-2025

Description This article describes how to disable preemption in the HA configuration. Scope FortiAnalyzer. Solution In FortiAnalyzer v7.4.7 and v7.6.2, preemption was introduced. It is enabled by default when selecting the 'Preferred role' as Primary...

aionescu · 11-06-2024

Description This article describes how to change the LDAP user and group cache on FortiGate configured as explicit proxy. Scope FortiGate v7.4.2+ Solution Starting with v7.4.2 the following commands were introduced: diagnose debug enablediagnose test...

aionescu · 09-12-2024

Description This article describes how to interpret the values of the 'craction' field in traffic logs. Scope FortiGate. Solution The field 'craction' can be seen in the traffic logs in the context of threat weight and IPS inspection. For further exp...

aionescu · 07-25-2023

Description This article describes cases that generate logid 0100032568. Scope FortiGate, FortiAnalyzer. Solution The FortiGate configuration revision makes it possible to maintain multiple versions of the configuration file on the device. When the r...

aionescu · 11-29-2022

Description This article explains the change in behavior regarding dial-up tunnel interfaces configured as SD-WAN interface members. Scope FortiGate, FortiOS v7.0.8, v7.2.1. Solution The following configuration is assumed: SD-WAN zone has as a member...

aionescu · 05-21-2025

Hi @ScotDiGe , welcome to the Fortinet Community! Your issue is not very clear but, but a good troubleshooting starting point, is to understand how the FortiGate handles the traffic. To do this you could run a debug of the traffic flow, as described ...

aionescu · 05-08-2023

Hi, can you share the output of the following commands, ran on both FortiGates. diagnose debug resetdiagnose debug console timestamp enablediagnose debug flow filter addr x.x.x.x <------------where x.x.x.x is the IP of an OSPF routerdiagnose debug fl...

aionescu · 05-05-2023

Hi @jm-barreto, welcome to the community. Can you share with us the ospf configuration? Also, please update us with the output of the get router info ospf neighbor command and of the ones from https://community.fortinet.com/t5/FortiGate/Technical-Tip...

aionescu · 05-05-2023

Hi @crti , welcome to the community. Please find more info about that log at: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Explanation-of-Unknown-SPI-message-in-Event-log/ta-p/190530

aionescu · 03-16-2023

Hi @psetoo , it is not very clear what you are trying to achieve. Can you upload a basic network diagram that explains the setup?

User Statistics

User Activity

Technical Tip: FortiAnalyzer HA preemption

Technical Tip: How to change the LDAP user and group cache update times on FortiGate

Technical Tip: Explanation of 'craction' value

Technical Tip: Explanation of logid 0100032568

Technical Tip: Considerations regarding dynamic tunnels configured as SD-WAN interface members

Re: Shoretel IP Phone Issue over BGP with ADVPN

Re: OSPF with vxlan over IPSec

Re: OSPF with vxlan over IPSec

Re: VPN Problems

Re: Routing issue

Technical Tip: Bi-directional Forwarding Detection...

Technical Tip: FortiAnalyzer HA preemption

Re: How do I schedule a reboot in FortiGate firewa...

Re: Point to point connection between 2 sites

Technical Tip: Explanation of the DPD effect on a ...

Re: How do I schedule a reboot in FortiGate firewa...

Re: how to reset hit counts for SD-WAN rules?

Re: FortiGate FGCP A-P Virtual Switch MAC Address

Re: SSLVPN to Azure VPN traffic not flowing

Re: Hardware Switch Interface Vlan Configuration

KCS

User Statistics

User Activity

You are leaving our website