Fortinet Community

aionescu · 06-30-2022

Description This article describes how to configure the FortiGate so local-out IKE traffic matches configured Policy Based Routing Scope FortiGate v 6.4.9, 7.0.2 and 7.2.0. Solution There are cases when IKE local-out traffic needs to match a configur...

aionescu · 05-31-2022

Description This article describes how to configure OSPF over a dynamic tunnel with 'net-device disable' and 'mode config'. Scope FortiGate Solution The topology consists of two firewalls, in a hub and spoke topology. Overlay IPs of the Spokes (10.10...

aionescu · 05-26-2022

Description This article describes how to fix issues with IPsec tunnels configured with an IPpool as a local gateway. Scope FortiOS 6.4.9 and FortiOS 7.0.1. Solution Updating the firewall to FortiOS 6.4.9 or 7.0.1 might create issues with IPsec tunne...

aionescu · 02-24-2022

Description This article describes how to configure the FortiGate to advertise, via BGP, static routes but filter the advertisement of the static default route. Scope Solution In this setup, there are two units involved the HUB and the SPOKE. On the ...

aionescu · 01-31-2022

Description This article describes how to configure OSPF over a dial-up IPsec VPN tunnel Scope FortiGate Solution The setup in this example consists of a hub and spoke topology. The spoke (FortiGate 60F) connects to the hub (FortiGate 100F) via a dia...

aionescu · 11-20-2022

Hi @AMAK , I have searched and the oldest CLI reference document available on the fortinet.com website is for FOS 5.0: CLI Reference | Fortinet Documentation Library On that document it states that the unit of measure is Kbps. On the other hand, I ha...

aionescu · 11-19-2022

Hi @gyanmlila , welcome to the community! The WAN label is...a label. You can use every port as a WAN port or as a LAN port. Hope it helps.

aionescu · 11-17-2022

Hi @jomfra , welcome to the community. Can you, please, check if there is a policy that allows the traffic, (ICMP traffic, in the provided example) from interface BOG_Lan (internal1) towards the tunnel interface?

aionescu · 11-17-2022

@Stefano_iso hard to tell just from this information. What is the npu flag of the tunnel? You can find with the command "diagnose vpn tunnel list"

aionescu · 11-16-2022

Hi @Stefano_iso , Can you share a .pcap of the traffic captured on both clients? What is the MTU of the tunnel?

Fortinet Community

User Statistics

User Activity

Technical Tip: Local-out IKE traffic match Policy Based Routing

Technical Tip: OSPF over dynamic tunnel with 'net-device disable' and 'mode config'

Technical Tip: Fix issues with IPsec tunnels configured with an IPpool as local gateway

Technical Tip: Advertise static routes via BGP and filter default static route

Technical Tip: OSPF over dial-up IPsec VPN

Re: Fortigate 224B upload speed

Re: Fortigate 80F - Are the WAN ports special?

Re: ipsec tunnel up but no return traffic from palo alto firewall

Re: slow vxlan speed over ipsec

Re: slow vxlan speed over ipsec

Re: Point to point connection between 2 sites

Re: How do I schedule a reboot in FortiGate firewa...

Re: how to reset hit counts for SD-WAN rules?

Re: WDS across vLANS not working

Re: How can I make my public facing interface secu...

Re: How do I schedule a reboot in FortiGate firewa...

Re: how to reset hit counts for SD-WAN rules?

Re: FortiGate FGCP A-P Virtual Switch MAC Address

Re: SSLVPN to Azure VPN traffic not flowing

Re: Hardware Switch Interface Vlan Configuration

Broad. Integrated. Automated.

Security Research

Company

News & Articles

Contact Us