Description This article describes how to change the DNS protocol used
by FortiGate to initiate DNS requests. Scope FortiOS. Solution DNS over
TLS (DoT) is a security protocol that encrypts and encapsulates DNS
requests and responses using the TLS pr...
Description This article describes how to change the SD-WAN Service rule
order using CLI. Scope FortiOS. Solution Dragging the policy to modify
its order in the SD-WAN rule via GUI is achievable via CLI, as seen
below. Original SD-WAN service rule or...
Description This article describes the support of EMAC in HA setup.
Scope FortiOS. Solution The enhanced MAC VLAN is handled as a physical
interface in high availability (HA) deployments. It will be assigned a
unique physical interface ID, and its MA...
Description This article describes how to troubleshoot a HA
synchronization issue that happens when a cluster becomes out of sync by
modules that may be causing synchronization issues. Scope FortiOS.
Solution The configurations of twenty-five FortiOS...
Description This article describes how to fine-tune BGP configurations
to facilitate the fastest BGP route failovers on FortiGate. Scope
FortiGate. Solution BGP is perhaps the most widely used and dependable
routing protocol on the Internet, and it e...
To avoid the IPsec tunnel from getting terminated due to no continuous
interested traffic on FortiGate, you can configure the Dead Peer
Detection (DPD) feature. DPD monitors the IPsec connection and sends a
series of probe messages to the remote peer...
It appears that there is a memory leak in the WAD user info history
daemon, and opening a TAC Case will help you in eliminating the issue
and optimizing the device resource.
WiFi Location Map is a feature on FortiOS lets you import custom maps or
floor layouts and then position FortiAP devices on the map. Wifi Maps
display the FortiAP devices' real-time state and warnings on the map.
This function provides a visual repre...
An event on a FortiGate device may be marked as "Unhandled" if a DNS
request has been redirected to a block portal, because the device may
not have a way to handle the redirection or may not recognize it as a
valid response to the DNS request. When a...
Yes, the server certificate in Fortigate SSL-VPN settings plays a
important role in the SSL connection. The server certificate is used to
establish an encrypted connection between the client and the server. The
certificate contains information about ...